Tag Archives: Open Source

Vulnerability Scanners

Posted by Steven Swafford on August 4, 2011

Vulnerability scanners can be used to conduct network reconnaissance, which is typically carried out by a remote attacker attempting to gain information or access to a network on which it is not authorized or allowed. Network reconnaissance is increasingly used to exploit network standards and automated communication methods. The aim is to determine what types of computers are present, along with additional information about those computers—such as the type and version of the operating system. This information can be analyzed for known or recently discovered vulnerabilities that can be exploited to gain access to secure networks and computers. Network reconnaissance is possibly one of the most common applications of passive data analysis. Early generation techniques, such as TCP/IP passive fingerprinting, have accuracy issues that tended to make it ineffective. Today, numerous tools exist to make reconnaissance easier and more effective.

Tooling

Nessus LogoThe Nessus vulnerability scanner is the world-leader in active scanners with more than five million downloads to date. Nessus features high-speed discovery, configuration auditing, asset profiling, sensitive data discovery and vulnerability analysis of your security posture. Nessus scanners can be distributed throughout an entire enterprise, inside DMZs and across physically separate networks. Commercial organizations that use the Tenable Nessus network vulnerability scanner must purchase a ProfessionalFeed subscription to scan their network, obtain support, updates to their database of vulnerability checks and compliance auditing. Each ProfessionalFeed subscription costs $1,200 per year, per Nessus scanner and may be purchased from Tenable’s ProfessionalFeed Partners or directly from Tenable’s online store.

Nmap logoNmap (“Network Mapper”) is a free and open source (license) utility for network exploration or security auditing. Many systems and network administrators also find it useful for tasks such as network inventory, managing service upgrade schedules, and monitoring host or service uptime. Nmap uses raw IP packets in novel ways to determine what hosts are available on the network, what services (application name and version) those hosts are offering, what operating systems (and OS versions) they are running, what type of packet filters/firewalls are in use, and dozens of other characteristics. It was designed to rapidly scan large networks, but works fine against single hosts. Nmap runs on all major computer operating systems, and official binary packages are avalable for Linux, Windows, and Mac OS X. In addition to the classic command-line Nmap executable, the Nmap suite includes an advanced GUI and results viewer (Zenmap), a flexible data transfer, redirection, and debugging tool (Ncat), a utility for comparing scan results (Ndiff), and a packet generation and response analysis tool (Nping).

Wireshark LogoWireshark is a network packet analyzer. A network packet analyzer will try to capture network packets and tries to display that packet data as detailed as possible. You could think of a network packet analyzer as a measuring device used to examine what’s going on inside a network cable, just like a voltmeter is used by an electrician to examine what’s going on inside an electric cable (but at a higher level, of course). In the past, such tools were either very expensive, proprietary, or both. However, with the advent of Wireshark, all that has changed. Wireshark is perhaps one of the best open source packet analyzers available today.

Fortify logoFortify 360 is a suite of tightly integrated solutions for identifying, prioritizing, and fixing security vulnerabilities in software. It automates key processes of developing and deploying secure applications. It helps you resolve software vulnerabilities using the only solution that fully integrates vulnerability analysis across the entire software life cycle—from development to QA testing and even to already deployed applications. Fortify 360 and related Fortify SSA solutions provide you with everything you need to ensure your software is inherently safe and empowers your organization to cost-effectively implement Software Security Assurance (SSA) methods.

Metasploit: Penetration Testing Tool Of Choice

Posted by Steven Swafford on August 1, 2011

Penetration testing is key to security and Metasploit is an easy-to-use penetration testing solution that provides network penetration testing capabilities, backed by the world’s largest fully tested and integrated public database of exploits. Built on feedback from the Metasploit user community, key security experts, and Rapid7 customers, Metasploit Express enables organizations to take the next step forward in security.

If you’re running or responsible for any type of IT system that hackers or cyber criminals may want to break into, deface, or bring down for business or pleasure, Metasploit Framework is for you. The tool enables you to carry out penetration tests (often called “pentests”) on your own systems. This means you’re attacking your own systems in the same way a hacker would to identify security holes. Of course, you do this without actually harming the network.

[myyoutubeplaylist cMQKBFcVPkg, Z0x_O75tRAU, RxyD0F38WYg, 8Zj9ypEVL20, Zlgv6WcFgc8, jIdB62rNBZA, 9odB5N-UedI, vC6wmmgp20M, IHNwQJoaAuk, O_UvJxFD2Es]

Jump on over to Metasploit and download a copy today!

Poor Man Backup Using Robocopy, 7Zip and DropBox

Posted by Steven Swafford on March 28, 2011

Rather than talking about how important data backups are I thought I would take the time to show you how you can use tools that are free or low cost to automate backups using Dropbox. If you don’t have a Dropbox account then I strongly urge you to grab on and why not since it free for the first 2Gb. By using Dropbox you can access your data from any device that has internet connectivity. However the purpose of this article is to show you just how easy it is to perform backups.

Tools

  1. Robocopy: is a command-line directory replication command. It has been available as part of the Windows Resource Kit starting with Windows NT 4.0, and was introduced as a standard feature of Windows Vista, Windows 7 and Windows Server 2008.
  2. 7Zip: An open source file archive designed originally for Microsoft Windows. 7-Zip operates with the 7z archive format, and can read and write several other archive formats. The program can be used from a command line interface, graphical user interface, or Windows shell integration. 7-Zip began in 1999 and is actively developed by Igor Pavlov. It is related to a cross-platform port, p7zip.
  3. Of course a Dropbox account.
  4. Your favorite text editor.

The Batch File Broken Down

Now it is important to understand that my intent is to demonstrate how to backup items such as your favorites, email, and anything else that you deem important. I will not go into the details of the command line switches as they apply to 7Zip and Robocopy rather I will explain the use in my example.

First, define the variables. I prefer this method because it is clean and provides a single line item.

:: variables
set dailyDrive=C:\Users\SomeUser\Dropbox\Backup
set backupCmd=robocopy /S /Z /COPY:DAT /MIR
set zipCmd="C:\Program Files\7-Zip\7z.exe" a -tzip

So what is really happening here?

  • dailyDrive defines where my backup is stored (remember by using Dropbox it automatically syncs to the cloud)
  • backupCmd defines the robocopy executable and the switches
    /S :: copy Subdirectories, but not empty ones
    /Copy:DAT :: What to COPY (default is /COPY:DAT)
    /Z :: copy files in restartable mode
    /MIR :: Mirror a directory tree (equivalent to /E plus /PURGE)
  • zipCmd defines the 7Zip executable and the switches
    a :: This command stands for ‘archive’ or ‘add’. Use it to put files in an archive.
    -tzip :: format zip

I use to goto statements to both run the backup as well as exiting once complete.

:FULL_BACKUP

echo ### Backing up Favorites...
%backupCmd% "%USERPROFILE%\Favorites" "%dailyDrive%\Favorites"

echo ### Compress and Backing up Email...
%zipCmd% C:\Users\SomeUser\Dropbox\Backup\Email\email.zip "%USERPROFILE%\Documents\Outlook Files"\*.pst"

echo ### Backing up Wallpaper...
%backupCmd% "%USERPROFILE%\Documents\Wallpaper" "%dailyDrive%\Wallpaper"

cls
Echo Congratulations you have backed up your data!
goto EXIT_BACKUP

:EXIT_BACKUP
exit

It is important to state that “%USERPROFILE%” is simply the environment variable within Windows for the individual. In the example above I am performing three basic actions:

  • Backing of up my favorites
  • Compressing and backing up my email
  • Backing up my wallpapers

While there is much more data you may wish to backup this should clearly demonstrate how to get started. For example, say you have a folder called “TaxRecords”, all you need to do is add the following to the batch file.

echo ### Backing up the user defined data...
%backupcmd% " c:\TaxRecords" %drive%\TaxRecords"

Finally, add the batch file as a scheduled task or as a start-up item to execute each time you log into Windows. Upon execution you will see a command window similar to the following:

backup command window

Complete Batch File

@echo off

:: variables
set dailyDrive=C:\Users\SomeUser\Dropbox\Backup
set backupCmd=robocopy /S /Z /COPY:DAT /MIR
set zipCmd="C:\Program Files\7-Zip\7z.exe" a -tzip

cls

goto FULL_BACKUP

:FULL_BACKUP

echo ### Backing up Favorites...
%backupCmd% "%USERPROFILE%\Favorites" "%dailyDrive%\Favorites"

echo ### Compress and Backing up Email...
%zipCmd% C:\Users\SomeUserDropbox\BackupEmail\email.zip "%USERPROFILE%DocumentsOutlook Files"\*.pst"

echo ### Backing up Wallpaper...
%backupCmd% "%USERPROFILE%\Documents\Wallpaper" "%dailyDrive%\Wallpaper"

cls
Echo Congratulations you have backed up your data!
goto EXIT_BACKUP

:EXIT_BACKUP
exit

Conclusion

That is all it takes to backup your important data all without spending anything. Of course as your data needs grow there may be a time that you find yourself needed more than the free 2GB that Dropbox provides and cost for additional space is very reasonable.

Do you have any tips on data backups? If so, leave a comment.

VMware Player Makes It Possible To Stand Up Sandboxes

Posted by Steven Swafford on November 20, 2010

As a software engineer I find that I want the capability to run several operating systems such as Windows XP , Windows 7 , Windows Server 2008, Ubuntu and others. The problems from my point of view is I do not want to dual boot into any operating system and I want to keep my primary host operating system as clean as possible. Typically I use my host operating system for task such as email, document generation, and web browsing. By doing so, I am able to prevent many issues that could arise from installing the latest and greatest software that I am interested in. The is nothing worse than installing a beta product and having it crash the system. Of course what else should on expect from beta software? Virtualization is the obvious answer and it is so simple that if your familiar with installing operating systems you can be up and running in no time. In fact there are two products that provide virtual capability and best of all they are free! My personal favorite is VMware Player, but to be fair I have not dug into Virtual PC first hand.

VMware Player

VMware Player is the easiest way to run multiple operating systems at the same time on your PC. With its user-friendly interface, VMware Player makes it effortless for anyone to try out Windows 7, Chrome OS or the latest Linux releases, or create isolated virtual machines to safely test new software and surf the Web. VMware Player can also be used to run a virtual copy of an old PC so that you can recycle the old machines you have under your desk or stored in the closet.

Virtual PC

Virtual PC is a virtualization program for Microsoft Windows. The newest release, Windows Virtual PC, is available for Windows 7 operating systems. Virtual PC virtualizes a standard PC and its associated hardware. Supported Windows operating systems can run inside Virtual PC. Other operating systems such as Linux may run, but are not officially supported, and Microsoft does not provide the necessary drivers (called “Virtual Machine Additions”) for Linux.

Getting Started

The first step is to decide which virtualization client you prefer. For the purpose of this article I will be discussing VMware Player since this product is my own personal choice.

Installing VWware Player could not be any easier. Simply go download the software and run setup. Once you have completed the setup phase you will need to reboot then you’re ready to begin installing the operating systems.

I personally have a need for Windows Server 2008 R2 and Ubuntu. I have these operating systems ready to go as you can see.

Now that you have your operating systems installed, all that remains is to click play virtual machine. Here is an example of Ubuntu running OpenOffice.

Open Source Operating Systems

Listing of Open Source Operating Systems
Operating System License
Linux GPL/LGPL
FreeBSD BSD
OpenBSD BSD
Ubuntu GPL/LGPL
Fedora CLA
OpenSUSE GNU
RedHat GPL

Conclusion

As you can see the process of virtual operating systems is not as difficult as you may think. I hope that you find this article beneficial and while I have provided details on a number or free products this is not all inclusive, but it should be just enough to begin exploring virtualization.

How To Use Calibre eBook Manager and Your iPad

Posted by Steven Swafford on August 28, 2010

If you’re anything like myself you have a number of ebooks that you have collected over time and organizing your content can be difficult at times. Over time I have tried an number of both commercial and open source products and most recently I gave Calibre a look primarily because I needed a way to easily converted my ebooks and sync them to my iPad.

The software is very user friendly and installed easily on my Windows x64 based operating system. Once installed, I begun adding books to my collection and ultimately sync them to my iPad for portable reading. The interface is simple and you have options such as converting books, editing metadata, and fetching news from popular online sources that you are interested in.

I love how easy  this product is to push up my eBooks to the iPad. In a matter of a few minutes I have them sitting in my very own mobile personal library.

If you’re looking for a free option then Calibre is the answer. I would urge you to make a donation to the author to help support this product should you find yourself using it on a daily basis.

Pages:123»