Backtrack OS 5

Submitted by – AYUSH GOYAL

Introduction

• Linux based operating system.

• Aimed at digital forensics and penetration testing.

• Named after “Backtrack” an algorithm.

History

• Merger of two former distros focused on penetration testing.

• WHAX- a slax based operating system.

• Auditor Security Collection- a live CD based on Knoppix included 300 tools.

What is Penetration Testing?

• Also known as pentest.

• Active analysis of the system for potential vulnerabilities.

• Carried out from the position of attacker.

• Two types- Black box and White box

Categories• Information gathering• Vulnerability assessment• Exploitation tools• Privilege Escalation• Maintaining Access • Reverse Engineering• RFID tools • Stress Testing • Forensics • Reporting tools • Services • Miscellaneous

Tools

• Metasploit integration• RFMON• Aircrack-NG• Gerix Wifi Cracker• Kismet• Nmap• Ophcrack• Ettercap• Wireshark• BeEF

Metasploit Integration

• Open-source project which provides information about security vulnerabilities

• A tool for developing and executing exploit code against a remote target machine.

• Steps:– Choosing and configuring exploit– Checking target’s susceptibility– Choosing and configuring payload – Choosing encoding technique– Execution

RFMON

• Radio Frequency MONitor

• Allows wireless NIC to monitor all traffic received from the wireless network

• Collected traffic can be used for WEP cracking

• To monitor own network

Aircrack-ng

• Network software suite consisting detector, packet sniffer, WEP cracker and analysis tools.

• easside-ng: a tool for communicating to an access point, without the WEP key

• wesside-ng: automatic tool for recovering wep key.

Gerix wifi cracker

• GUI for aircrack-ng suite

• Contains penetration tools such as network analysis, packet capturing and packet injection

• Macchanger: a tool for mac spoofing

Kismet

• A free software used for network detection, packet sniffing and intrusion detection system

• Works passively: without sending any loggable packets it detects wireless access points and wireless clients.

• It can sniff packets in Wireshark format.

Nmap

• Network MAPper is a security scanner used to discover hosts and services on a network

• Features:– Host discovery– Port Scanning– OS detection – MAC address

Ophcrack• Ophcrack can crack most Windows passwords

within a few minutes• It uses LM hash through rainbow tables. • LM hash is hash to encrypt Windows passwords. • Rainbow table is used to reverse cryptographic

hash. •  By default, ophcrack is bundled with tables that

allows it to crack passwords no longer than 14 characters.

Thank you