Cov cuab yeej rau cov novice pentester: peb nthuav qhia luv luv ntawm cov cuab yeej tseem ceeb uas yuav muaj txiaj ntsig zoo thaum pentesting lub network sab hauv. Cov cuab yeej no twb tau siv los ntawm ntau tus kws tshaj lij, yog li nws yuav muaj txiaj ntsig zoo rau txhua tus kom paub txog lawv lub peev xwm thiab paub lawv zoo kawg nkaus.
Txheem:
Nmap
- ib qho chaw siv hluav taws xob qhib rau kev txheeb xyuas cov tes hauj lwm, yog ib qho ntawm cov cuab yeej nrov tshaj plaws ntawm cov kws tshaj lij kev ruaj ntseg thiab cov thawj coj ua haujlwm. Feem ntau siv rau qhov chaw nres nkoj scanning, tab sis dua li qhov no, nws muaj ntau qhov txiaj ntsig zoo, uas yog qhov tseem ceeb uas Nmap ua super-harvester rau kev tshawb nrhiav network.
Ntxiv rau kev txheeb xyuas cov chaw nres nkoj qhib / kaw, nmap tuaj yeem txheeb xyuas qhov kev pabcuam mloog ntawm qhov chaw nres nkoj qhib thiab nws cov version, thiab qee zaum pab txiav txim siab OS. Nmap muaj kev txhawb nqa rau kev luam theej duab (NSE - Nmap Scripting Engine). Siv cov ntawv sau, nws tuaj yeem tshawb xyuas qhov tsis zoo rau ntau yam kev pabcuam (yog tias, tau kawg, muaj tsab ntawv rau lawv, lossis koj tuaj yeem sau koj tus kheej ib txwm) lossis rov qab passwords rau ntau yam kev pabcuam.
Yog li, Nmap tso cai rau koj los tsim ib daim ntawv qhia ntxaws ntxaws ntawm lub network, tau txais cov ntaub ntawv siab tshaj plaws txog kev khiav haujlwm ntawm cov tswv hauv lub network, thiab tseem tshawb xyuas qee qhov tsis zoo. Nmap kuj tseem muaj qhov hloov pauv hloov pauv tau yooj yim; koj tuaj yeem teeb tsa lub scanning ceev, xov tooj, xov tooj ntawm pab pawg los luam theej duab, thiab lwm yam.
Yooj yim rau scanning me me networks thiab indispensable rau qhov chaw scanning ntawm ib tug tswv tsev.
Tshaj:
- Ua haujlwm sai nrog ntau yam me me ntawm cov tswv;
- Flexibility ntawm kev teeb tsa - koj tuaj yeem sib txuas cov kev xaiv hauv ib txoj hauv kev kom tau txais cov ntaub ntawv tshaj tawm hauv lub sijhawm tsim nyog;
- Parallel scanning - daim ntawv teev cov hom phiaj yog muab faib ua pab pawg, thiab tom qab ntawd txhua pab pawg tau luam theej rau hauv lem, kev sib txuas ua ke yog siv hauv pab pawg. Tsis tas li ntawd kev faib ua pab pawg yog qhov tsis zoo me me (saib hauv qab);
- Cov txheej txheem ua ntej ntawm cov ntawv sau rau cov haujlwm sib txawv - koj tsis tas yuav siv sijhawm ntau los xaiv cov ntawv tshwj xeeb, tab sis qhia cov pab pawg ntawm cov ntawv sau;
- Cov txiaj ntsig tau tso tawm - 5 hom sib txawv, suav nrog XML, uas tuaj yeem raug xa mus rau lwm yam cuab yeej;
Txais:
- Luam theej duab ib pab pawg neeg - cov ntaub ntawv hais txog ib tus tswv tsev tsis muaj kom txog thaum luam tag nrho pab pawg ua tiav. Qhov no tuaj yeem daws tau los ntawm kev teeb tsa hauv cov kev xaiv qhov siab tshaj plaws pab pawg loj thiab lub sijhawm siab tshaj plaws nyob rau lub sijhawm uas cov lus teb rau qhov kev thov yuav raug xav ua ntej tso tseg kev sim lossis ua lwm yam;
- Thaum luam theej duab, Nmap xa SYN pob ntawv mus rau qhov chaw nres nkoj lub hom phiaj thiab tos rau cov ntawv teb lossis lub sijhawm yog tias tsis muaj lus teb. Qhov no cuam tshuam tsis zoo rau kev ua haujlwm ntawm lub scanner tag nrho, piv nrog asynchronous scanners (piv txwv li, zmap lossis masscan);
- Thaum kuaj xyuas cov tes hauj lwm loj, siv cov chij kom nrawm dua (-min-rate, --min-parallelism) yuav ua rau cov txiaj ntsig tsis tseeb, tsis muaj chaw nres nkoj qhib ntawm tus tswv tsev. Tsis tas li ntawd, cov kev xaiv no yuav tsum tau siv nrog ceev faj, vim tias cov pob ntawv loj tuaj yeem ua rau DoS tsis txhob txwm ua.
Zmap
(tsis yog yuav tsum tsis meej pem nrog ZenMap) - kuj yog qhib qhov chaw scanner, tsim los ua lwm txoj hauv kev sai rau Nmap.
Tsis zoo li nmap, thaum xa SYN pob ntawv, Zmap tsis tos kom txog thaum cov lus teb rov qab los, tab sis txuas ntxiv luam theej duab, ib txhij tos cov lus teb los ntawm txhua tus tswv, yog li nws tsis tau tuav lub xeev kev sib txuas. Thaum cov lus teb rau SYN pob ntawv tuaj txog, Zmap yuav nkag siab los ntawm cov ntsiab lus ntawm pob ntawv uas tau qhib qhov chaw nres nkoj thiab tus tswv tsev twg. Tsis tas li ntawd, Zmap tsuas yog xa ib pob ntawv SYN rau ib qho chaw nres nkoj uas raug tshuaj xyuas. Nws kuj tseem tuaj yeem siv PF_RING txhawm rau tshawb xyuas cov tes hauj lwm loj sai sai yog tias koj tshwm sim muaj 10-Gigabit interface thiab daim npav network sib xws ntawm tes.
Tshaj:
- Scan ceev;
- Zmap tsim Ethernet thav ntawv hla dhau qhov system TCP / IP pawg;
- Muaj peev xwm siv PF_RING;
- ZMap randomizes lub hom phiaj kom sib npaug faib cov khoom ntawm sab scanned;
- Muaj peev xwm ntawm kev koom ua ke nrog ZGrab (ib lub cuab yeej los sau cov ntaub ntawv hais txog cov kev pabcuam ntawm qib L7 daim ntawv thov).
Txais:
- Nws tuaj yeem ua rau muaj kev tsis lees paub kev pabcuam ntawm cov khoom siv network, piv txwv li, rhuav tshem cov routers nruab nrab, txawm tias cov khoom xa tuaj, vim tias txhua pob ntawv yuav dhau los ntawm ib lub router.
Masscan
- xav tsis thoob, nws kuj yog qhov qhib qhov chaw scanner, uas tau tsim nrog ib lub hom phiaj - txhawm rau luam theej duab hauv Is Taws Nem sai dua (hauv tsawg dua 6 feeb ntawm qhov nrawm ntawm ~ 10 lab pob khoom / s). Qhov tseem ceeb nws ua haujlwm yuav luag tib yam li Zmap, tsuas yog sai dua.
Tshaj:
- Cov syntax zoo ib yam li Nmap, thiab qhov kev zov me nyuam kuj txhawb qee qhov kev xaiv Nmap-tshaj;
- Kev khiav hauj lwm ceev - ib tug ceev tshaj asynchronous scanners.
- Saj zawg zog scanning mechanism - rov pib cuam tshuam scanning, faib cov khoom hla ntau yam khoom siv (xws li hauv Zmap).
Txais:
- Ib yam li nrog Zmap, qhov thauj khoom ntawm lub network nws tus kheej yog qhov siab heev, uas tuaj yeem ua rau DoS;
- Los ntawm lub neej ntawd, tsis muaj peev xwm luam theej duab ntawm L7 daim ntawv thov txheej;
Nessus
- lub scanner automate lub scanning thiab nrhiav kom paub qhov tsis zoo nyob rau hauv lub system. Thaum kaw qhov chaw, muaj ib qho dawb version ntawm Nessus Tsev uas tso cai rau koj luam theej duab mus txog 16 IP chaw nyob nrog tib qhov ceev thiab cov ncauj lus kom ntxaws tsom xam raws li qhov them nyiaj.
Muaj peev xwm txheeb xyuas qhov tsis zoo ntawm cov kev pabcuam lossis cov servers, txheeb xyuas qhov tsis raug hauv kev teeb tsa, thiab ua bruteforce ntawm phau ntawv txhais lus password. Nws tuaj yeem siv los txiav txim siab qhov tseeb ntawm qhov chaw pabcuam (xa ntawv, hloov tshiab, thiab lwm yam), nrog rau kev npaj rau PCI DSS audit. Tsis tas li ntawd, koj tuaj yeem hla tus tswv tsev daim ntawv pov thawj rau Nessus (SSH lossis tus lej sau npe hauv Active Directory) thiab lub scanner yuav nkag mus rau tus tswv tsev thiab ua cov tshev ncaj qha rau nws, qhov kev xaiv no hu ua daim ntawv pov thawj. Yooj yim rau cov tuam txhab ua kev soj ntsuam ntawm lawv tus kheej tes hauj lwm.
Tshaj:
- Sib cais cov xwm txheej rau txhua qhov tsis zoo, cov ntaub ntawv uas tau hloov kho tas li;
- Cov txiaj ntsig ntawm cov txiaj ntsig - cov ntawv nyeem, XML, HTML thiab LaTeX;
- API Nessus - tso cai rau koj los kho cov txheej txheem ntawm kev txheeb xyuas thiab tau txais cov txiaj ntsig;
- Daim Ntawv Pov Thawj Scan, koj tuaj yeem siv Windows lossis Linux daim ntawv pov thawj los kuaj xyuas qhov hloov tshiab lossis lwm yam tsis zoo;
- Muaj peev xwm sau koj tus kheej built-in kev ruaj ntseg modules - lub scanner muaj nws tus kheej scripting lus NASL (Nessus Attack Scripting Language);
- Koj tuaj yeem teem sijhawm rau kev txheeb xyuas lub network tsis tu ncua - vim qhov no, Cov Ntaub Ntawv Kev Ruaj Ntseg yuav paub txog txhua yam kev hloov pauv hauv kev teeb tsa kev nyab xeeb, qhov tshwm sim ntawm cov tswv tshiab thiab kev siv phau ntawv txhais lus lossis tus password tsis raug.
Txais:
- Tej zaum yuav muaj malfunctions nyob rau hauv lub lag luam ntawm lub tshuab scanned - koj yuav tsum ua tib zoo ua hauj lwm nrog rau cov kev ruaj ntseg checks xaiv neeg xiam oob qhab;
- Kev lag luam version tsis pub dawb.
Net-Credits
yog ib lub cuab yeej hauv Python rau kev sau cov passwords thiab hashes, nrog rau lwm yam ntaub ntawv, piv txwv li, tau mus xyuas URLs, rub tawm cov ntaub ntawv thiab lwm yam ntaub ntawv los ntawm kev khiav tsheb, ob qho tib si nyob rau lub sijhawm tiag tiag thaum muaj kev tawm tsam MiTM, thiab los ntawm cov ntaub ntawv PCAP yav dhau los. Tsim nyog rau kev soj ntsuam ceev thiab sab nraud ntawm cov tsheb loj, piv txwv li, thaum lub sijhawm sib ntaus sib tua MiTM, thaum lub sijhawm txwv, thiab kev tshuaj xyuas phau ntawv siv Wireshark yuav tsum siv sijhawm ntau.
Tshaj:
- Kev txheeb xyuas qhov kev pabcuam yog raws li kev txheeb xyuas pob ntawv es tsis txhob txheeb xyuas qhov kev pabcuam los ntawm tus lej chaw nres nkoj siv;
- Yooj yim rau siv;
- Ntau yam ntawm cov ntaub ntawv rho tawm - suav nrog kev nkag mus thiab lo lus zais rau FTP, POP, IMAP, SMTP, NTLMv1/v2 raws tu qauv, nrog rau cov ntaub ntawv los ntawm HTTP thov, xws li cov ntaub ntawv nkag mus thiab auth yooj yim;
network-miner
- ib qho analogue ntawm Net-Creds hais txog kev ua haujlwm, tab sis nws muaj kev ua haujlwm ntau dua, piv txwv li, nws muaj peev xwm rho tawm cov ntaub ntawv xa mus ntawm SMB raws tu qauv. Zoo li Net-Creds, nws yog qhov yooj yim thaum koj xav tau ceev nrooj txheeb xyuas cov tsheb loj. Nws kuj muaj cov neeg siv-phooj ywg graphical interface.
Tshaj:
- Graphical interface;
- Kev pom thiab kev faib cov ntaub ntawv rau hauv pab pawg ua kom yooj yim rau kev txheeb xyuas kev tsheb thiab ua kom nrawm.
Txais:
- Qhov kev sim version muaj kev ua haujlwm tsawg.
pem 6
- ib lub cuab yeej rau kev tawm tsam ntawm IPv6 (SLAAC-tawm tsam). IPv6 yog qhov tseem ceeb hauv Windows OS (feem ntau hais, hauv lwm cov kev khiav hauj lwm ib yam nkaus), thiab nyob rau hauv lub neej ntawd configuration IPv6 interface yog enabled, qhov no tso cai rau ib tug attacker rau nruab nws tus kheej DNS server rau cov neeg raug tsim txom siv Router Advertisement packets, tom qab uas lub attacker muaj peev xwm spoof tus neeg raug tsim txom DNS . Zoo meej rau kev nqa tawm Relay nres ua ke nrog ntlmrelayx qhov hluav taws xob, uas tso cai rau koj kom ua tiav cov kev sib txuas Windows.
Tshaj:
- Ua haujlwm zoo ntawm ntau lub tes hauj lwm meej vim yog tus qauv teeb tsa ntawm Windows hosts thiab tes hauj lwm;
teb
- ib lub cuab yeej rau spoofing tshaj tawm lub npe daws teeb meem raws tu qauv (LLMNR, NetBIOS, MDNS). Ib qho cuab yeej tseem ceeb hauv Active Directory networks. Ntxiv nrog rau kev dag, nws tuaj yeem cuam tshuam NTLM authentication; nws kuj tuaj nrog cov cuab yeej los sau cov ntaub ntawv thiab siv NTLM-Relay tawm tsam.
Tshaj:
- Los ntawm lub neej ntawd, nws tsa ntau lub servers nrog kev txhawb nqa rau NTLM authentication: SMB, MSSQL, HTTP, HTTPS, LDAP, FTP, POP3, IMAP, SMTP;
- Tso cai DNS spoofing nyob rau hauv rooj plaub ntawm MITM tawm tsam (ARP spoofing, thiab lwm yam);
- Ntiv tes ntawm cov tswv uas ua qhov kev thov tshaj tawm;
- Txheeb xyuas hom - rau kev saib xyuas kev thov;
- Cov hom ntawv ntawm kev cuam tshuam hashes rau NTLM authentication yog sib xws nrog John lub Ripper thiab Hashcat.
Txais:
- Thaum khiav hauv Windows, qhov chaw nres nkoj 445 (SMB) khi yog fraught nrog qee qhov teeb meem (nws yuav tsum nres cov kev pabcuam sib raug thiab rov pib dua);
Evil_Foca
- ib lub cuab yeej los tshuaj xyuas ntau yam kev tawm tsam hauv network hauv IPv4 thiab IPv6 tes hauj lwm. Tshawb xyuas lub network hauv zos, txheeb xyuas cov cuab yeej, routers thiab lawv cov kev sib txuas hauv network, tom qab ntawd nws tuaj yeem ua tiav ntau yam kev tawm tsam ntawm cov neeg koom hauv network.
Tshaj:
- Yooj yim rau kev tawm tsam MITM (ARP spoofing, DHCP ACK txhaj, SLAAC nres, DHCP spoofing);
- Koj tuaj yeem nqa tawm DoS tawm tsam - nrog ARP spoofing rau IPv4 tes hauj lwm, nrog SLAAC DoS hauv IPv6 tes hauj lwm;
- Nws muaj peev xwm ua DNS hijacking;
- Ib qho yooj yim mus use, user-friendly graphical interface.
Txais:
- Ua haujlwm tsuas yog hauv Windows.
Bettercap
- lub hauv paus muaj zog rau kev txheeb xyuas thiab tawm tsam cov tes hauj lwm, thiab peb kuj tseem tham txog kev tawm tsam ntawm cov tes hauj lwm wireless, BLE (bluetooth tsis muaj zog) thiab txawm tias MouseJack tawm tsam ntawm wireless HID cov khoom siv. Tsis tas li ntawd, nws muaj kev ua haujlwm rau kev sau cov ntaub ntawv los ntawm kev khiav tsheb (zoo ib yam li net-creds). Feem ntau, ib rab riam Swiss (tag nrho hauv ib qho). Tsis ntev los no nws tseem muaj .
Tshaj:
- Daim ntawv pov thawj sniffer - koj tuaj yeem ntes tau mus xyuas URLs thiab HTTPS hosts, HTTP authentication, ntawv pov thawj rau ntau yam kev cai sib txawv;
- Ntau qhov kev tawm tsam hauv MITM;
- Modular HTTP(S) pob tshab npe - koj tuaj yeem tswj kev khiav tsheb raws li koj xav tau;
- Ua-hauv HTTP server;
- Kev them nyiaj yug rau caplets - cov ntaub ntawv uas tso cai rau kev tawm tsam nyuaj thiab tsis siv neeg tuaj yeem piav qhia ua lus sau.
Txais:
- Qee qhov modules - piv txwv li, ble.enum - yog ib feem tsis tau txais kev txhawb nqa los ntawm macOS thiab Windows, qee qhov yog tsim los rau Linux - packet.proxy.
gateway_finder
- Python tsab ntawv uas pab txiav txim siab ua tau lub rooj vag hauv lub network. Pab tau rau kev sim segmentation lossis nrhiav cov tswv uas tuaj yeem taug kev mus rau qhov xav tau subnet lossis Internet. Tsim nyog rau kev nkag mus rau sab hauv thaum koj xav tau ceev nrooj xyuas cov kev tsis raug cai lossis txoj hauv kev mus rau lwm qhov hauv zos hauv zos.
Tshaj:
- Yooj yim rau siv thiab kho.
mitmproxy ua
- ib qho cuab yeej qhib rau kev txheeb xyuas kev tiv thaiv kev siv SSL / TLS. mitmproxy yog qhov yooj yim rau kev cuam tshuam thiab hloov kho kev tiv thaiv kev khiav tsheb, tau kawg, nrog qee qhov caveats; Lub cuab yeej tsis ua SSL / TLS decryption tawm tsam. Siv thaum koj xav tau los cuam tshuam thiab sau cov kev hloov pauv hauv kev tiv thaiv los ntawm SSL / TLS. Nws muaj Mitmproxy - rau kev tso npe tsheb, mitmdump - zoo ib yam li tcpdump, tab sis rau HTTP(S) kev khiav tsheb, thiab mitmweb - lub web interface rau Mitmproxy.
Tshaj:
- Ua haujlwm nrog ntau yam kev cai, thiab tseem txhawb kev hloov kho ntawm ntau hom, los ntawm HTML rau Protobuf;
- API rau Python - tso cai rau koj los sau cov ntawv rau cov haujlwm uas tsis yog tus qauv;
- Yuav ua hauj lwm nyob rau hauv pob tshab proxy hom nrog kev cuam tshuam tsheb.
Txais:
- Daim ntawv pov tseg tsis sib xws nrog txhua yam - nws nyuaj rau siv grep, koj yuav tsum sau cov ntawv sau;
SEVEN
- ib lub cuab yeej rau kev siv lub peev xwm ntawm Cisco Smart Install raws tu qauv. Nws muaj peev xwm tau txais thiab hloov kho qhov teeb tsa, nrog rau kev tuav tswj ntawm Cisco ntaus ntawv. Yog tias koj tuaj yeem tau txais Cisco ntaus ntawv teeb tsa, koj tuaj yeem tshawb xyuas nws siv , cov cuab yeej no muaj txiaj ntsig zoo rau kev tshuaj xyuas kev ruaj ntseg ntawm Cisco cov khoom siv.
Tshaj:
Siv Cisco Smart Install raws tu qauv tso cai rau koj mus:
- Hloov chaw nyob tftp server ntawm tus neeg siv khoom siv los ntawm kev xa ib pob ntawv TCP tsis raug;
- Luam cov ntaub ntawv teeb tsa ntaus ntawv;
- Hloov cov cuab yeej teeb tsa, piv txwv li, los ntawm kev ntxiv tus neeg siv tshiab;
- Hloov kho cov duab iOS no ntawm lub cuab yeej;
- Ua ib tug random txheej commands ntawm lub ntaus ntawv. Qhov no yog ib tug tshiab feature uas tsuas ua hauj lwm nyob rau hauv iOS no versions 3.6.0E thiab 15.2(2)E;
Txais:
- Ua haujlwm nrog cov khoom siv tsawg ntawm Cisco; koj kuj xav tau "dawb" IP kom tau txais cov lus teb los ntawm lub cuab yeej, lossis koj yuav tsum nyob hauv tib lub network li lub cuab yeej;
yersinia
yog L2 kev tawm tsam lub moj khaum tsim los siv kev ruaj ntseg tsis zoo nyob rau hauv ntau yam L2 network raws tu qauv.
Tshaj:
- Tso cai rau koj ua tawm tsam ntawm STP, CDP, DTP, DHCP, HSRP, VTP thiab lwm yam.
Txais:
- Tsis yog qhov feem ntau siv-phooj ywg interface.
proxychains
- ib lub cuab yeej uas tso cai rau koj hloov pauv daim ntawv thov kev khiav tsheb los ntawm SOCKS npe npe.
Tshaj:
- Pab hloov tsheb khiav los ntawm qee cov ntawv thov uas los ntawm lub neej ntawd tsis tuaj yeem ua haujlwm nrog tus neeg sawv cev;
Hauv tsab xov xwm no, peb luv luv saib qhov zoo thiab qhov tsis zoo ntawm cov cuab yeej tseem ceeb rau kev sib txuas hauv network pentesting. Nyob twj ywm, peb npaj yuav tshaj tawm cov ntawv sau yav tom ntej: Web, databases, mobile applications - peb yuav twv yuav raug sau txog qhov no thiab.
Qhia koj cov khoom siv uas koj nyiam hauv cov lus pom!
Tau qhov twg los: www.hab.com