Backtrack OS 5
Submitted by – AYUSH GOYAL
Introduction
• Linux based operating system.
• Aimed at digital forensics and penetration testing.
• Named after “Backtrack” an algorithm.
History
• Merger of two former distros focused on penetration testing.
• WHAX- a slax based operating system.
• Auditor Security Collection- a live CD based on Knoppix included 300 tools.
What is Penetration Testing?
• Also known as pentest.
• Active analysis of the system for potential vulnerabilities.
• Carried out from the position of attacker.
• Two types- Black box and White box
Categories• Information gathering• Vulnerability assessment• Exploitation tools• Privilege Escalation• Maintaining Access • Reverse Engineering• RFID tools • Stress Testing • Forensics • Reporting tools • Services • Miscellaneous
Tools
• Metasploit integration• RFMON• Aircrack-NG• Gerix Wifi Cracker• Kismet• Nmap• Ophcrack• Ettercap• Wireshark• BeEF
Metasploit Integration
• Open-source project which provides information about security vulnerabilities
• A tool for developing and executing exploit code against a remote target machine.
• Steps:– Choosing and configuring exploit– Checking target’s susceptibility– Choosing and configuring payload – Choosing encoding technique– Execution
RFMON
• Radio Frequency MONitor
• Allows wireless NIC to monitor all traffic received from the wireless network
• Collected traffic can be used for WEP cracking
• To monitor own network
Aircrack-ng
• Network software suite consisting detector, packet sniffer, WEP cracker and analysis tools.
• easside-ng: a tool for communicating to an access point, without the WEP key
• wesside-ng: automatic tool for recovering wep key.
Gerix wifi cracker
• GUI for aircrack-ng suite
• Contains penetration tools such as network analysis, packet capturing and packet injection
• Macchanger: a tool for mac spoofing
Kismet
• A free software used for network detection, packet sniffing and intrusion detection system
• Works passively: without sending any loggable packets it detects wireless access points and wireless clients.
• It can sniff packets in Wireshark format.
Nmap
• Network MAPper is a security scanner used to discover hosts and services on a network
• Features:– Host discovery– Port Scanning– OS detection – MAC address
Ophcrack• Ophcrack can crack most Windows passwords
within a few minutes• It uses LM hash through rainbow tables. • LM hash is hash to encrypt Windows passwords. • Rainbow table is used to reverse cryptographic
hash. • By default, ophcrack is bundled with tables that
allows it to crack passwords no longer than 14 characters.
Thank you