Penetration Testing mailing list archives

RE: Article on Pentesting Study Frameworks

From: "parthasarathy" <parthasarathy () pcsuae com>
Date: Tue, 19 Apr 2011 14:03:47 +0400

Hi Felipe,

http://www.vulnerabilityassessment.co.uk/Penetration%20Test.html 

FYI.

With Regards,
Parthasarathy M

-----Original Message-----
From: listbounce () securityfocus com [mailto:listbounce () securityfocus com]
On Behalf Of Felipe Martins
Sent: 15 April 2011 07:19
To: pen-test () securityfocus com
Subject: Article on Pentesting Study Frameworks

Hi there,

      I'm planning on developing an article about pentest study 
frameworks, with a full description and test on each one. Till now I've 
traced the following:

   . WEB
      - WebGoat, 
(https://www.owasp.org/index.php/Category:OWASP_WebGoat_Project)
      - Gruyere (antigo Codelab), (http://google-gruyere.appspot.com/)
      - DVWA (Damn Vulnerable Web App), (http://www.dvwa.co.uk/)
      - Hacme, (http://hacmegame.org/)
      - Multilidae, 
(http://www.irongeek.com/i.php?page=security/mutillidae-deliberately-vul
nerable-php-owasp-top-10)
   . War Games
      - Hack This Site (http://www.hackthissite.org/)
      - Over the Wire (http://www.overthewire.org/wargames/)
   . Insecure Distributions
      - Metasploitable, 
(http://blog.metasploit.com/2010/05/introducing-metasploitable.html)
      - de-ICE, 
(http://de-ice.net/hackerpedia/index.php/De-ICE.net_PenTest_Disks)
      - Moth (Bonsai Security Software), 
(http://www.bonsai-sec.com/en/research/moth.php)
      - PwnOS, (http://www.neildickson.com/os/)
      - DVL, (http://www.damnvulnerablelinux.org/)

     Do you happen to know any other pentest study framework ?

Thanks in advance.

-- 
---
Felipe Martins
Security Analyst

Skype: martins.felipe
URL: http://www.felipemartins.info/
E-mail: martins.felipe.security () gmail com


------------------------------------------------------------------------
This list is sponsored by: Information Assurance Certification Review
Board

Prove to peers and potential employers without a doubt that you can
actually do a proper penetration test. IACRB CPT and CEPT certs require
a full practical examination in order to become certified. 

http://www.iacertification.org
------------------------------------------------------------------------


------------------------------------------------------------------------
This list is sponsored by: Information Assurance Certification Review Board

Prove to peers and potential employers without a doubt that you can actually do a proper penetration test. IACRB CPT 
and CEPT certs require a full practical examination in order to become certified.

http://www.iacertification.org
------------------------------------------------------------------------

Current thread:

Article on Pentesting Study Frameworks Felipe Martins (Apr 19)
- Re: Article on Pentesting Study Frameworks psiinon (Apr 19)
- RE: Article on Pentesting Study Frameworks parthasarathy (Apr 22)
- Re: Article on Pentesting Study Frameworks Felipe Martins (Apr 22)
- Re: Article on Pentesting Study Frameworks Stealth (Apr 22)