Linux Hacking Tools

For system help, all hardware / software topics NOTE: use Coders Corner for all coders topics.

Moderators: Krom, Grendel

Post Reply
Arch
DBB Captain
DBB Captain
Posts: 988
Joined: Thu Nov 05, 1998 12:01 pm

Linux Hacking Tools

Post by Arch »

I need the help of all you hacking types. I have a class wherein I'm going to need to do some "recon" on the System Security class' computers. Unfortunately I know nothing of Linux and the assorted hacking tools. What I need are some suggestions from you fellas that will help me figure out such things as OS version, open ports, running services, etc...etc.
User avatar
DCrazy
DBB Alumni
DBB Alumni
Posts: 8826
Joined: Wed Mar 15, 2000 3:01 am
Location: Seattle

Post by DCrazy »

Well you're gonna need a port scanner for one. If the computer's running a web server, that opens up a whole list of possibilities, from SQL Injections to Buffer Overflows.

Check here: http://www.astalavista.net
User avatar
Jeff250
DBB Master
DBB Master
Posts: 6539
Joined: Sun Sep 05, 1999 2:01 am
Location: ❄️❄️❄️

Post by Jeff250 »

Arch
DBB Captain
DBB Captain
Posts: 988
Joined: Thu Nov 05, 1998 12:01 pm

Post by Arch »

Thanks for the suggestions, I'll check out the sites in a little more detail when I get a chance. Does anyone else have any suggestions?
MD-2389
Defender of the Night
Defender of the Night
Posts: 13477
Joined: Thu Nov 05, 1998 12:01 pm
Location: Olathe, KS
Contact:

Post by MD-2389 »

Yeah, download Phlack.
User avatar
Tricord
DBB Alumni
DBB Alumni
Posts: 3394
Joined: Thu Nov 05, 1998 12:01 pm

Post by Tricord »

Ethereal for packet sniffing.
Definitely must-have.

If someone else is using the server you just might sniff their password.
Arch
DBB Captain
DBB Captain
Posts: 988
Joined: Thu Nov 05, 1998 12:01 pm

Post by Arch »

Well, the games have begun and people have started poking and proding the machines since monday. Unfortunately the machines are on a different subnet so I can't do any kinda of packet capturing.

Several of the machines have already been completely owned. All of them were Windows machines too, shocking isn't it. So far the Linux machines seem relatively untouched. All I've done thus far is poke at them with nmap to see whats running.
Cuda68-2
DBB Ace
DBB Ace
Posts: 320
Joined: Fri Sep 20, 2002 2:01 am
Location: St. Paul Minnesota
Contact:

Post by Cuda68-2 »

User avatar
Tricord
DBB Alumni
DBB Alumni
Posts: 3394
Joined: Thu Nov 05, 1998 12:01 pm

Post by Tricord »

Arch, maybe you can get another machine in that subnet to sniff traffic for you.

That's what we did at univ... Installed a sniffer on one of the computers in the PC room and then ARP-spoof the target machine (they were using switches) to sniff whatever traffic to it.

I also sniff my brothers MSN conversations, but that's another matter ;)
R e v
DBB Admiral
DBB Admiral
Posts: 1121
Joined: Wed Mar 24, 1999 3:01 am

Post by R e v »

Tricord wrote:I also sniff my brothers MSN conversations, but that's another matter ;)
www.vericept.com

Fun stuff...
Post Reply