Network security has been, and will continue to be, a hot topic among information technology professionals. As a systems or network administrator, you should not only be aware of the need to keep a close eye on security, you should be actively engaged in it every day. In addition to the tools listed below, you should also be looking at specialized training like Cisco CCNA Security training, Windows or Linux/Unix Security Training.
New vulnerabilities are discovered every day that could allow an attacker to penetrate your infrastructure. Company data, company secrets, account information, financial data and more is at risk if your network is compromised.
Here are 10 hacking tools that you should be aware of and use on a regular basis to help you see what the hackers see, and to keep your networks more secure.
Packet Sniffers
1. WireShark (http://www.wireshark.org)
Wireshark is perhaps one of the most widely used (and free) network monitoring / packet sniffing tools out there. When you download and install, it will also install the WinPcap application. Once your familiar with WireShark, you’ll be able to sniff your corporate network, trace conversations, identify insecure passwords, etc (especially using additional software like Cain & Abel).
This tools runs on Windows, Linux and Mac systems
2. Kismet (http://www.kismetwireless.net)
Kismet is a very powerful wireless sniffer, often used for “wardriving” (driving or walking around, searching for wireless networks to connect to). A lot of features in this application including the ability to identity non-beaconing networks (networks that aren’t broadcasting their SSID). Always a good idea to see how secure (or insecure) your wireless networks are if you have them within your company. Wireless networks are one of the larger security holes in many networks (and home networks).
This tools runs on Windows, Linux and Mac systems
3. Cain & Abel (http://www.oxid.it/cain.html)
One of the most popular “password recovery” tools for Windows operating systems is definitely one you should be familiar with. Insecure (i.e. weak) passwords offer little to no defense against a fairly knowledgeable hacker. If they can can physical access to your network (including attaching to wireless networks) chances are they can sniff the network traffic and crack insecure passwords in a matter of seconds to minutes. Routinely check your network for the existence of weak passwords using a tool like Cain & Abel to identify user’s who need to strengthen their passwords.
This tools runs on Windows, Linux and Mac systems
4. Metasploit (http://www.metasploit.com)
This tool is geared more toward people who do penetration testing (pen testing), patch installation verification, regression testing, etc. It’s a framework that allows you to develop tools to test and launch exploits against your system to verify patches, defenses, etc., are working correctly. A little more learning curve here, but if you really want to take your skills to the next level, this is one tool you should add to your skillset.
This tools runs on Windows, Linux and Mac systems
5. Hping2 (http://www.hping.org)
TCP/IP packet injection and manipulation is again a skill that is a little higher on the food chain, but something you should become familiar with. Using this tool you can send partial ping packets, IP fragmentation, etc., to test firewalls, discover firewall rulesets, remote OS fingerprinting and more.
This tools runs on Windows, Linux and Mac systems
6. Nikto (http://www.cirt.net/nikto2)
If your organization maintains web servers, or you have a hosted solution that you want to ensure is up to snuff, a tool like Nikto might very well fit the bill. It is a web scanner that can scan for thousands of potential vulnerabilities, and best of all it’s free and open source.
From the cirt.net website: Nikto is an Open Source (GPL) web server scanner which performs comprehensive tests against web servers for multiple items, including over 3500 potentially dangerous files/CGIs, versions on over 900 servers, and version specific problems on over 250 servers. Scan items and plugins are frequently updated and can be automatically updated (if desired).
This tools runs on Windows, Linux and Mac systems
7. Nmap (http://nmap.org)
Nmap is a network mapping tool that can be used by security administrators to scan and test their networks for unidentified servers, hosts with vulnerabilities and/or unnecessarily open ports, etc. Nmap is a popular tool among security administrators and hackers alike, and has been featured in such Hollywood movies as the Matrix: Reloaded and Die Hard 4: Live free or Die Hard.
This tools runs on Windows, Linux and Mac systems
8. Nessus (http://www.nessus.org)
Nessus is one of the most powerful network scanners available, and most serious security administrators tool of choice. They have moved from offering a free version to a commercial version, which is potential cost prohibitive to some administrators. However when you factor in the cost of remediating a hack to your network or infrastructure, potential loss of data, critical systems, and/or reputation it’s a small price to pay.
This tools runs on Windows, Linux and Mac systems
9. Snort (http://www.snort.org)
Snort is an Intrusion Detection System / Intrusion Prevention System (IDS/IPS) that is widely used by security administrators to detect intrusions into their networks. It combines the benefits of signature, protocol and anomaly based inspection and is one the most widely deployed IDS/IPS technology worldwide. There are a few pre-requisites for installing and running Snort, including Libpcap, PCRE, Libnet and Barnyard.
This tools runs on Windows, Linux and Mac systems
10. Retina (http://www.eeye.com/html/Products/Retina/index.html)
A commercially available network and security scanner from the folks at eEye Digital Security, Retina is a full-featured network monitoring application. While not free nor open-source, it’s a popular tool used by many corporate and government security administrators. Retina can also report on compliance with many corporate policies including SOX, HIPAA, GLBA, PCI and others.
0 comments:
Post a Comment