From Paul Rubens
January 06, 2010
Don’t let the bad guys do pen tests on your network in front of you.
The problem with penetration testing tools is that they are just as useful to black hats and script kiddies as they are to white hats and everyday network administrators. This is one more reason to look into using them now before the wrong person decides to take a look inside your network.
Automated penetration testing tools are a double-edged sword: they make it easy to check for known vulnerabilities in your network, but they can also be used by hackers to try to compromise vulnerable machines on your network.
Because they’re quick and easy to use, they can be used by unskilled hackers or script kiddies – which makes it all the more important that you run these tools yourself so you can fix any vulnerabilities you find before they are exploited by others.
A good tool to start with is Fast-Track, a relatively new Python-based open source project. Parts of Fast-Track are based on the Metasploit Framework, so we need to install Fast-Track as well. In this How To we are using a system with Ubuntu 9.10 – you may need to make adjustments if you are using a different Linux distribution. Read “Automate Your Pen Testing with Fast-Track and Linux” on Enterprise Networking Planet