A New version contains more programs, a ton of updates, and better hardware support. Click Read more to see change log or visit the creators of ASC
###############################
# Auditor security collection #
###############################
# Changes #
###############################
auditor-081004-01.iso.zip:
Homepage:
---------
The whole project moved to www.remote-exploit.org, i do not longer have
my company running, so i just moved the project.
Bootsquence:
------------
- The bootsplash screens have been replaced to fit new webaddress
- Removed the bootmenu image
- Extended the F1 message
- Failsave does not contain additional parameters like module=fbdev
- The "keyb" boot-parameter has been added. It will suppress the keyboard
layout selection dialog by configure the provided one. (Example: keyb=us)
- Soundcard detection has been removed, you can add "dosound" as bootoption
and you will get it back, sorry but was too buggy, feel free to provide a
solution. For me sound is just not as important as the stability.
Desktop:
--------
- The background image has been replaced to fit new webaddress
- The size of the terminals of applications have been modified to be as
small as possible/needed
New menu sections:
------------------
- Added the "Digital forensics" section. When you have some recommendations,
please contribute.
- Added a "Honepot" section. Tools like tinyhoneypot are not included into
the menu, but are available from the commandline
- Changed the Wireless menu structure to fit my needs
- Restructured the menu
New tools:
----------
- Application scanner
- scanssh (SSH version scanner)
- added the terminal server client rdesktop to the menu
- Network scanner
- ike-scan
- Wireless
- Gpsmap into the kismet submenu
- The aircrack suite (version 2.1)
- aircrack
- airodump
- aireplay
- 802ether
- The chopchop WEP break/decrypt/inject tool
- file2air (Thnx josh for the hostap port)
- WPA-psk-bf WPA preshared key broteforcer.
- Weptools toolsuite
- wep_crack
- wep_decrypt
- Honeypot
- honeyd
- fimap
- fpop3
- tinyhoneypot
- Digital forensics
- autopsy (Automatic startup of browser included)
- testdisk
- recover
- wipe
Updated tools:
---------------
- hotspotter v0.4
- Wellenreiter(Auditor specific version)
- Xhydra, hydra (version 4.3)
- Ethereal (version 0.10.6)
- "browser" webbrowser start script
- Metasploit ( 2.2, contains the minivnc code! wow thnx for that)
- Ettercap, switched to ettercap-ng now.
- Many others, did not remind them all, will update the list on website.
Tip: Check out the start-fakes script. not more to say here :-)
Drivers:
--------
- Included the WLAN-NG drivers for Prism cards. Use "switch-to-wlanng"
command to move from hotap driver to wlanng. To return to hostap use
"switch-to-hostap". Please keep in mind that you need to remove and
reinsert the pcmcia card. This wlanng driver is needed for chopchop
got the patches of chopchop applied.
- Hostap driver has been updated and patched with the aircrack patches
see aircrack documentation
- Centrino 2100, IPW2100 driver has been updated. The new driver got som
strange behaviours. It was needed to automaticly configure the card to
monitoring mode during start up with ip 1.1.1.1. This has to be done,
because the driver does not register itself to /proc/net/wireless. So
autodetection would be broken, when i would not trick it.
Bugs fixed:
-----------
Too many, don't remember them all.
Auditor 23062004-01B:
---------------------
General:
- Changed to .zip file. Some people still don't know bzip2.
Boot/Kernel:
- New bootparameter "bootusb" for booting from usb cdrom
- New boot resolutions, new bootmenu
- New Kernel 2.6.6
Drivers:
- New wireless drivers supported
- Orinoco drivers fixed (More firmware independent)
- Dragorns Orinoco monitor mode patch
- A lot more drivers in Kernel
- Better acpi support
- New alsa sound drivers 1.0.4
Software:
- Added new hydra 4.1 version + XHydra gui.
- Wellenreiter supports now all WLAN cards
- Kismet switches now all 14 Channels not 11
- Added Metasploit framework 2.1
- Updated Nessus-plugins
- Added and modified knx-installer / auditor-installer
- IPW2100 fixes in kismet, scanning etc.
- Fixed USB bugs
Auditor 180504-01:
------------------
Initial release.
FAQ:
----
- How does the tool "XYZ" work?
- Read the documentation, when there is any
- Ask in our forum
- Ask google
- Is there a list of tested / supported / unsupported devices?
- Go to wiki.remote-exploit.org and find out.
- Why are you doing this?
- Initially i hated me, for allways forget an important tool
on my penetetration testing laptop.
- There are no /var/log/messages!?
- execute "/etc/init.d/sysklogd start"
- When do you support my *what you like* broadcom chip based wireless card?
- Broadcom does not provide information to linux community
so dont expect to have a driver
- Why don't you include NDIS-Wrapper?
- Well NDIS wrapper do not support monitoring mode, so
why should i include them then?
- What can i do with this hotspotter thing?
- Well use your imagination, you can find some ideas in
/opt/auditor/full/share/hotspotter find there some automation scripts
to bring up dhcp, dns, fake daemons and a hughe list of common hotspot
names.
About Auditor security collection:
----------------------------------
The Auditor security collection is a Live-System based on KNOPPIX. With no installation whatsoever, the
analysis platform is started directly from the CD-Rom and is fully accessible within minutes. Independent of
the hardware in use, the Auditor security collection offers a standardised working environment, so that the
build-up of know-how and remote support is made easier. Even during the planning and development stages,
our target was to achieve an excellent user-friendliness combined with an optimal toolset. Professional open-
source programs offer you a complete toolset to analyse your safety, byte for byte. In order to become
quickly proficient within the Auditor security collection, the menu structure is supported by recognised phases
of a security check. (Foot-printing, analysis, scanning, wireless, brute-forcing, cracking). By this means, you
instinctively find the right tool for the appropriate task. In addition to the approx. 300 tools, the Auditor
security collection contains further background information regarding the standard configuration and
passwords, as well as word lists from many different areas and languages with approx. 64 million entries.
Current productivity tools such as web browser, editors and graphic tools allow you to create or edit texts
and pictures for reports, directly within the Auditor security platform. Many tools were adapted, newly
developed or converted from other system platforms, in order to make as many current auditing tools available
as possible on one CD-ROM. Tools like Wellenreiter and Kismet were equipped with an automatic hardware
identification, thus avoiding irritating and annoying configuration of the wireless cards.
Comments (0)
Topsight.net
http://www.topsight.net/article.php/20041010082907670