Virtualization for Security > Default Platforms As Well to Use a Variety of Tools > Default Platforms As Well to Use a Variety of Tools

Download Safari Books Online apps: Apple iOS | Android

Entire Site

Safari Books Online is a digital library providing on-demand subscription access to thousands of learning resources.

Search

Table of Contents

Virtualization for Security: Including Sandboxing, Disaster Recovery, High Availability, Forensic Analysis, and Honeypotting

Technical Editor

Contributing Authors

Contents

Chapter 1: An Introduction to Virtualization

Chapter 2: Choosing the Right Solution for the Task

Chapter 3: Building a Sandbox

Chapter 4: Configuring the Virtual Machine

Chapter 5: Honeypotting

Chapter 6: Malware Analysis

Chapter 7: Application Testing

Chapter 8: Fuzzing

Chapter 9: Forensic Analysis

Chapter 10: Disaster Recovery

Chapter 11: High Availability: Reset to Good

Chapter 12: Best of Both Worlds: Dual Booting

Chapter 13: Protection in Untrusted Environments

Chapter 14: Training

Introduction

Setting Up Scanning Servers

Advantages of Using a Virtual Machine instead of a Live-CD Distribution

Disadvantages of Using a Virtual Machine instead of a Live-CD

Default Platforms As Well to Use a Variety of Tools

Scanning Servers in a Virtual Environment

Setting Up Target Servers

Creating the Capture-the-Flag Scenario

Out Brief

Cleaning up Afterward

Saving Your Back

Summary

Solutions Fast Track

Frequently Asked Questions

Index

332 Chapter14·Training and we would have to troubleshoot their installations. We spent significant amounts of class time teaching students how to install and configure software which they might never use again. We did have a goal for students to learn to install simple software, however. Life as a penetration tester involves a willingness to go out and find tools appropriate for the job at hand. There is a vast knowledge base which has been developed which is available for public use (for which we all owe a debt of gratitude). Students needed the ability to install and configure tools to their liking. Disadvantages of Using a Virtual Machine instead of a Live-CD There were some disadvantages of using a Virtual Machine instead of a Live-CD distribution. The biggest issue in our minds was that students couldn't take their virtual machine home with them after the class was complete. Although some of our students were very new to Linux and security in general, others were quite capable of handling their own machines. Nowadays we could have arranged for it by copying their virtual machine to their local box, and using VMware Player. This would have worked ideally, but at the time all of the VMware products required additional licensing fees. Assuming the student's hardware was capable of the additional workload, the student would have been able to boot the image and run the tools in the same manner as they had on our server. Another drawback to using virtual machines instead of CDs is that we lost the ability for the students to do wireless assessments. As we've discussed in other portions of the book, wireless assessments can require significant hardware control right down to the firmware level. Virtualization software does not allow virtual machines to access the hardware in a direct manner. In order to demo wireless software, tools must either be installed on the native operating system, or they can be loaded from a CD. Default Platforms As Well to Use a Variety of Tools There was also call for semistable environments for students to install software into (I wouldn't recommend installing individual clients for single tests onto "master" scanning servers, but onto an image dedicated to a single test shouldn't be a problem). Examples of such software might be a Lotus Notes client. Lotus Notes uses a proprietary protocol which is most conveniently tested using the actual Lotus

Download Safari Books Online apps: Apple iOS | Android

This Book

Search

Contents

Default Platforms As Well to Use a Varie... > Default Platforms As Well to Use a V... - Pg. 332