Leaderboard

PenTBox PenTBox is a security suite that can be used in penetration testing engagements to perform a variety of activities.Specifically these activities include from cracking hashes,DNS enumeration and stress testing to HTTP directory brute force.In this article we will see this tool in action and what kind of results we can have. PenTbox – Menu Cryptography Tools PenTBox currently includes the following four cryptography tools: Base64 Encoder & Decoder Multi-Digest Hash Password Cracker Secure Password Generator Especially in web application penetration tests we often discover encoded Base64 strings.Such strings can contain important information that’s why we need to have a decoder in our tool repository.Many tools now have integrated a Base64 Encoder-Decoder like Burp but PenTBox has also a Base64 decoder in his suite. Base64 Encoder-Decoder In case that we have obtain a password hash PenTBox provides a module that can crack different types of password hashes.The Hash Password Cracker can crack common password hashes very fast so it is a good practice to try it in any case.In the next image we can see that the Hash Password Cracker has managed to crack an MD5 hash. Hash Cracker Module – PenTBox Network Tools In this category there are tools for stress testing,fuzzing and information gathering.Specifically the tools that we can find here are the following: Net DoS Tester TCP Port Scanner Honeypot Fuzzer DNS and Host Gathering MAC Address Geo-location Even though that most penetration testers will use Nmap for their port scanning activities a simple TCP port scanner is available and through PenTBox. PenTBox – TCP Port Scanner Also a very fast module that can collect information about a specific host can be used for our information gathering activities.A sample of the output of this module can be seen in the next image: DNS & Host Gathering – PenTBox Web PenTBox includes also and tools for web reconnaissance.Specifically it contains two tools for directory brute forcing and for discovering common files that exists in web servers.In the next image you can see the directory brute forcing tool in action. Directory Brute Force – PenTBox Video: Conclusion PenTBox is a framework that has written in ruby and offers some good tools that a penetration tester can use in an engagement.Of course there are better and more complex tools that can perform these activities but PenTBox offers the flexibility that contains many tools and it is very easy to use.For that reason this suite recommended for penetration testers with less experience. Sursa: PenTBox

Learn the core bits every Ruby programmer should know. Course Syllabus Level 1 - Expressions An overview of best practices for writing expressions in Ruby Level 2 - Methods & Classes passing optional arguments, raising exceptions, using begin/rescue/end, attr_accessor vs. attr_reader Level 3 - Classes Encapsulation, instance & private methods, inheritance, and refactoring Level 4 - ActiveSupport Helpers that are built on top of the Ruby Language (arrays, dates, hashes, numbers, and strings Level 5 - Modules Namespacing methods, Mixins vs. class inheritance, method hooks, ActiveSupport::Concern Level 6 - Blocks Iterating and yielding, passing arguments, returning variables, Enumerable, and refactoring Link: http://www.codeschool.com/courses/ruby-bits Learn the advanced bits of expert Ruby programming. Course Syllabus Level 1 - Blocks, Procs, & Lambdas An advanced look at code blocks and how to use procs and lambdas to encapsulate blocks of code Level 2 - Dynamic Classes & Methods Techniques for defining, finding, and calling methods dynamically at runtime Level 3 - Understanding Self A look at how Ruby uses the value of self and how to change self as your program executes Level 4 - Missing Methods Using method_missing to capture, delegate, and respond to methods that don't exist Level 5 - DSL Part 1 A brief intro to writing Domain Specific Languages in Ruby Level 6 - DSL Part 2 More advanced tips and techniques for writing DSLs Link: http://www.codeschool.com/courses/ruby-bits-part-2

Base, hai frate, fute-i si pe aia in cur, cum l-ai frecat si pe tex, cu legea ta de chelios.