Installing Metasploit in Ubuntu and Debian. Installing Metasploit Framework on Ubuntu 1. Download Latest Microsoft Live Meeting Client Download. LTS and Debian 7. This Guide covers the installation of Metasploit Framework OSS Project on Ubuntun Linux LTS. If you do not wish to run the Open Source version or set up a development environment and do not mind giving your email address to Rapid 7 for marketing I would recommend downloading their comercial installer from http: //www. Metasploit Express and Pro. If you prefer an all in one installer only for framework the Metasploit team offers nightly built installers at https: //github.

• BackTrack was a Linux distribution that focused on security, based on the Knoppix Linux distribution aimed at digital forensics and penetration testing use.
• Kali Linux is a Debian-derived Linux distribution designed for digital forensics and penetration testing. It is maintained and funded by Offensive Security Ltd.

Nightly- Installers making a quick setup a breeze if you do not plan to pull separate branches to test experimental code or do development. Install Oracle Java 8.

Ncat is a free, open-source Netcat replacement for Linux, Windows, OS X and more. TLS/SSL encryption, proxy support, IPv6, Lua scripting.

We start by adding the Oracle Java Package sourcesudo add- apt- repository - y ppa: webupd. Once added we can install the latest versionsudo apt- get update. Installing Dependencies.

We start by making sure that we have the latest packages by updating the system using apt- get: sudo apt- get update. Now that we know that we are running an updated system we can install all the dependent packages that are needed by Metasploit Framework: sudo apt- get install build- essential libreadline- dev libssl- dev libpq. Installing a Proper Version of Ruby. The distribution sadly does not comes by default with a proper version of Linux for us to use with Metasploit Framework and we will have to download and compile a proper one. There 2 mains ways recommended for this are using RVM or rbenv (Do not install both choose one or the other). If installing using RVM be warned that symlinks will not work do to the way it places the binary stubs of the metasploit- framework gem. Installing Ruby using RVM: curl - s.

SL https: //rvm. io/mpapis. Here we will cover downloading the latest source code for Nmap, compiling and installing: mkdir ~/Development. Development. git clone https: //github. Configuring Postgre SQL Server. We start by switching to the postgres user so we can create the user and database that we will use for Metasploitsudo - s. Now we create the user and Database, do record the database that you gave to the user since it will be used in the database. Metasploit and Armitage use to connect to the database.

P - S - R - D. createdb - O msf msf. If you experience problems with the database setup this fedora guide offers a good guide for troubleshooting and setup https: //fedoraproject. Metasploit. For this you will need a Git. Hub account and you will fork the project in to your own account. I personally keep my dev copy of Metasploit in ~/Development folder and after an initial run of msfconsole I keep my database.

MSF. My recommendation is to run it first under a regular user so the folders create under your home directory have the proper permissions. First time it runs it will create the entries needed by Metasploit in the database so it will take a while to load.

Sec. Tools. Org Top Network Security Tools. Sec. Tools. Org: Top 1. Network Security Tools. For more than a decade, the Nmap. Project has been cataloguing the network security community's. Click any tool name for more details on that particular application, including the chance to read (and write) reviews. Many site elements are explained by tool tips if you hover your mouse over them.

It allows you to examine data from a live network or from a capture file on disk. You can interactively browse the capture data, delving down into just the level of packet detail you need. Wireshark has several powerful features, including a rich display filter language and the ability to view the reconstructed stream of a TCP session. It also supports hundreds of protocols and media types. A tcpdump- like console version named tshark is included. One word of caution is that Wireshark has suffered from dozens of remotely exploitable security holes, so stay up- to- date and be wary of running it on untrusted or hostile networks (such as security conferences).

It implements the best known cracking algorithms to recover wireless keys once enough encrypted packets have been gathered. The suite comprises over a dozen discrete tools, including airodump (an 8. WEP and WPA- PSK cracking), and airdecap (decrypts WEP/WPA capture files). They are usually right, but Cain & Abel is a glaring exception.

This Windows- only password recovery tool handles an enormous variety of tasks. It can recover passwords by sniffing the network, cracking encrypted passwords using dictionary, brute- force and cryptanalysis attacks, recording Vo.

IP conversations, decoding scrambled passwords, revealing password boxes, uncovering cached passwords and analyzing routing protocols. It is also well documented. It boasts a huge variety of Security and Forensics tools and provides a rich development environment. User modularity is emphasized so the distribution can be easily customized by the user to include personal scripts, additional tools, customized kernels, etc.

Back. Track is succeeded by Kali Linux. It is designed to be a reliable back- end tool to use directly or easily drive by other programs and scripts. At the same time, it is a feature- rich network debugging and exploration tool, since it can create almost any kind of connection you would need, including port binding to accept incoming connections. It can sometimes even be hard to find a copy of the v. The flexibility and usefulness of this tool prompted the Nmap Project to produce Ncat, a modern reimplementation which supports SSL, IPv. SOCKS and http proxies, connection brokering, and more.

Other takes on this classic tool include the amazingly versatile Socat, Open. BSD's nc, Cryptcat, Netcat. SBD, and so- called GNU Netcat. It may not have the bells and whistles (such as a pretty GUI and parsing logic for hundreds of application protocols) that Wireshark has, but it does the job well and with less security risk. It also requires fewer system resources. While Tcpdump doesn't receive new features often, it is actively maintained to fix bugs and portability problems.

It is great for tracking down network problems or monitoring activity. There is a separate Windows port named Win. Dump. It identifies networks by passively sniffing (as opposed to more active tools such as Net. Stumbler), and can even decloak hidden (non- beaconing) networks if they are in use. It can automatically detect network IP blocks by sniffing TCP, UDP, ARP, and DHCP packets, log traffic in Wireshark/tcpdump compatible format, and even plot detected networks and estimated ranges on downloaded maps. As you might expect, this tool is commonly used for wardriving.

Oh, and also warwalking, warflying, and warskating, etc. Microsoft Windows Network 2457 This Server S Clock Is Not. It provides secure encrypted communications between two untrusted hosts over an insecure network, replacing the hideously insecure telnet/rlogin/rsh alternatives. Most UNIX users run the open source Open.

SSH server and client. Windows users often prefer the free Pu. TTY client, which is also available for many mobile devices, and Win. SCP. Other Windows users prefer the nice terminal- based port of Open. SSH that comes with Cygwin.

There are dozens of other free and proprietary clients to consider as well. It also checks for server configuration items such as the presence of multiple index files, HTTP server options, and will attempt to identify installed web servers and software. Scan items and plugins are frequently updated and can be automatically updated. It was inspired by the ping command, but offers far more control over the probes sent. It also has a handy traceroute mode and supports IP fragmentation.

Hping is particularly useful when trying to traceroute/ping/probe hosts behind a firewall that blocks attempts using the standard utilities. This often allows you to map out firewall rule sets.

It is also great for learning more about TCP/IP and experimenting with IP protocols. Unfortunately, it hasn't been updated since 2. It features sniffing of live connections, content filtering on the fly and many other interesting tricks. Some are free of cost and/or include source code, while others are proprietary.

Survey respondents were most enamored with: Process. Explorer for keeping an eye on the files and directories open by any process (like lsof on UNIX). Ps. Tools for managing (executing, suspending, killing, detailing) local and remote processes. Autoruns for discovering what executables are set to run during system boot up or login. Rootkit. Revealer for detecting registry and file system API discrepancies that may indicate the presence of a user- mode or kernel- mode rootkit. TCPView, for viewing TCP and UDP traffic endpoints used by each process (like Netstat on UNIX). Microsoft acquired Sysinternals in July 2.

Customers will be able to continue building on Sysinternals' advanced utilities, technical information and source code”. Less than four months later, Microsoft removed most of that source code.

Open. VAS plugins are still written in the Nessus NASL language. The project seemed dead for a while, but development has restarted. Note that Scapy is a very low- level tool—you interact with it using the Python programming language. It provides classes to interactively create packets or sets of packets, manipulate them, send them over the wire, sniff other packets from the wire, match answers and replies, and more. Everyone should be very familiar with these tools as they come with most operating systems (except that Windows omits whois and uses the name tracert).

They can be very handy in a pinch, although more advanced functionality is available from Hping and Netcat. It can perform rapid dictionary attacks against more than 5. Like THC Amap this release is from the fine folks at THC. Other online crackers are Medusa and Ncrack. Quick, portable scripts can test, exploit, or even fix systems.

Archives like CPAN are filled with modules such as Net: :Raw. IP and protocol implementations to make your tasks even easier. Many security tools use scripting languages heavily for extensibility. For example Scapy interaction is through a Python interpreter, Metasploit modules are written in Ruby, and Nmap's scripting engine uses Lua. It supports editing/viewing HTTP/HTTPS messages on- the- fly to change items such as cookies and form fields. It includes a web traffic recorder, web spider, hash calculator, and a scanner for testing common web application attacks such as SQL injection and cross- site scripting.

They also distribute a Win. CE version for PDAs and such named Mini. Stumbler. The tool is currently free but Windows- only and no source code is provided. It uses a more active approach to finding WAPs than passive sniffers such as Kismet or Kis.

MAC. You can use it to dig up information about a target company by using directives such as “site: target- domain. Similarly, when a bug is found in yet another popular webapp, Google can often provide a list of vulnerable servers worldwide within seconds.