Shulou(Shulou.com)06/01 Report--

Practice of kali*** testing Technology

IDF

Wan Tao * Eagle

Thank you!

Chapter 1 introduction

Live version of kali Linux

Find, download, install and customize

Basic configuration and settin

Life cycle reconnaissance scans * * maintain visits to remove traces, reports, etc.

The most commonly used part. Report generation authorization contract ROE template.

Professional and technical personnel server. Network, database desktop support

Safety engineering engineer

Major in information security and information engineering

Not suitable: skills and experience will not be provided with NSA or local bank branches. Nor is it years of experience and in-depth mastery of BT

Life cycle: EC C | EH

Term definition

* Test

Red guest team

It's clear. Social engineering and physical phishing and harpoon physical unlocking, etc.

Ethics *

Black hat

Grey hat

Vulnerability assessment and vulnerability analysis VAT

Control evaluation

FISMA HIPAA BOE

Malicious user testing

Social engineering

Phishing

Turn over the polar bucket

The only equipment that Live CD can carry for evaluation

Offensive SEcurity community

Derived from white hat sLax auditor

Www.eccouncil.org

The basics of hacking and penetration testing: ethical hacking and penetration testing made easy

Chapter 2

Hard disk

USB

SD card

Live CD can access the resources of the local network, but it does not leave any trace on the local hard disk.

Running on a desktop or a laptop?

How much hard disk space?

Whether there is enough free space for the hard drive to be used

Several hard disk partitions are required

Log management

System security

Used to crack the code. High performance video card is required

120GB controls permissions, generates large amounts of data, collects evidence and generates logs and reports

Baseline environment

The operating system is required to be cleared.

Partitions: prevent the log files of the takeover system from destroying the operating system

Exchange area

Swp

Advanced partitioning and dual boot system

Third-party Tribal chicken customization in Appendix A

Use of passwords

2.3 download

Iso is recorded as CD-ROM www.kali.org/downloads

Community bulletin board

Architecture i386 amd64

Vmwar acquires familiar kali and needs a better controlled sandboxie environment

Complete download of win7. Linux k3B

2.4 installed on hard disk

Run it directly. Suitable for learning, but some very important jobs will be lost.

Install graphical install for speech synthesis

Initialize network settings

FQDN can be left blank

Root password. Default toor. Contains at least one case, number, and character.

Traceability is difficult to guess. 10 lengths

System clock

Hard disk partition

LVM

Swao 1 . 5x physical memory

Last check.

Configure package Manager yes

U disk

Non-permanent and permanent

Win32diskIMager

Linux GParted

Apt-get install gparted

Aptitude install gparted

Yum install gparted

Check usb device location

Mount | prep-I udisks | awk'{print $1}'

Dd if=kali_linux_p_w_picpath.iso of=/dev/sdb bs=512k

After the transmission is completed

Gparted / dev/sdb

You have the partition where kali is installed. After adding a new partition to the graphical interface. Apply an action to be performed

Mddir / mnt/usb

Mount / dev/sdb2 / mnt/usb

Echo "/ union" > > / mnt/usb/persistence.conf

Umount / mnt/usb

SD card

RaspberryPi Google's Chrome Notebook

ARM customization

Mount | prep-I vfat

Dd if=kali.img of=/dev/sdb bs=512k

Umout / dev/sdb

Sync / / synchronization

Chapter 3 Software patches and upgrades

APt is lightweight but powerful. Apt-get

Ruby dependency relationship

Apt=get install {package_name}

Apt-get insatll gimp

Install additional software packages

Update

Apt-get update

Upgrade apt-get upgrade

Version upgrade

Apt-get remove leafpad

Apt get install leafpad

Remove

Apt-get autoremove

Automatic removal

Apt-get purge completely removes the configuration

Apt-get clean cleanup

Apt-get autoclean

Apt-get update% apt-get upgrade & & apt-get dist-upgrade

.deb Nessus

Not compatible with RPM without installing additional software.

Dpkg-I {package_name.deb} / {target_directory}

Dpkg-r {package_name.deb}

Dpkg-p {package_name.deb}

Dkpg-l leafpad

Big P completely removes small p information output from the screen.

TAR

.tar

Mkdir tar-demo1

Echo "Hello World" > tar-demo1/file1

Cd tar-demo1

Tar-cf tarball-demo.tar ^

Tar-tf tarball-demo.tar displays a list of content

Tar- xf / root/tar-demo1/tarball-demo.tar-c / root/tar-demo2/

Ls / root/tarball-demo2/

Tar-czf tarball-demo.tar.gz *

Welcome to subscribe "Shulou Technology Information " to get latest news, interesting things and hot topics in the IT industry, and controls the hottest and latest Internet news, technology news and IT industry trends.