Tng hp Tools hay nht cho nghin cu Security - I hiu c cc vn v an ton thng tin bn bt buc phi bit s dng

ng nhng Tools chuyn cho tng vn . Trong bi vit ny ti gii thiu vi cc bn tng hp nhng Tools hay nht cho nghin cu bo mt, c chn lc v tng hp t nhiu ngun, phn thnh tng nhm cc bn thun tin cho tra cu. T tng hp cc Tools Scan, Crack, Sniffer.. hay nht. Phn I: Cc tools hay nht dng Crack Password, Sniffer v tm kim cc l hng bo mt. Phn II. Cc tools hay nht dng tm kim l hng trn Web, tn cng mng Wireless, khai thc l hng bo mt v cc tools thay i thng tin ca gi tin Phn I 1. 10 Tools dng Crack Password hay nht. 2. 11 Tools dng tm gi tin hay nht Packet Sniffer. 3. 10 Tools Scan cc l hng bo mt hay nht Vulnerability Scanner. I. 10 Cng c dng Crack Password hay nht. 1. Cain & Abel Cng c dng ly Password trn Windows hiu qu nht.

Trn h thng UNIX thng dng cc ti nguyn min ph cn trn nn tng Windows th thng khng phi nh vy. Trn nn tng Windows c nhiu Tools cho php Crack password nhng rt t tools cho php tm cc gi tin trn mng gii m ngc li ly c Password mong mun. Cain & Abel l mt tools va c th Crack Password trn windows khi ngi ti my tnh hay c th tm cc gi tin trn mng v gii m ngc li s dng: Dictionary v Bruforce Attack. Ngoi ra Cain & Abel cn nm trong s cc phn mm Sniffer. 2. John the Ripper

L mt cng c c tnh ty bin rt cao, h tr cho nhiu nn tng h iu hnh v Crack

Password rt nhanh. H tr t mi trng UNIX, Linux, DOS, Win32,V l mt Tools rt hiu qu crack nhng Password d trn h thng UNIX. Tools ny h tr nhiu phng thc m ha khc nhau thng tm thy trn h thng UNIX nh Kerberos AFS v phng thc m ha trn Windows NT/2000/XP LM hashes. 3. THC Hydra

Mt tools crack nhng phng thc xc thc v h tr nhiu dch v khc nhau Nu bn mun tn cng s dng phng thc Brute Force tn cng ti mt dch v Remote Authentication Service th Hydra l mt la chn tt nht. N c th thc hin tn cng da vo Dictionary Attack, thc hin tn cng hn 30 giao thc khc nhau bao gm: Telnet, ftp, http, https, smb, v mt vi giao thc ca c s d liu khc. 4. Aircrack

Mt cng c tn b kha WEP/WPA nhanh nht. Aircack h tr cc chun khng giy 802.11a/b/g v dng Crack WEP v WPA. N c th gii m cc m ha WEP s dng key c chiu di t 40 ti 512-bits v cho gii m hu ht cc gi tin trn mng Wireless. Ngoi ra cng c ny cn h tr b kha WPA1 v WPA2 bng phng thc Brute Force Attack. N c th hot ng vi: aircrack crack cc key m ha trn WEP v WPA-PSK, ngoi ra vi airdecap chng c kh nng gii m cc file c m ha bi WEP v WPA. 5. L0phtcrack

Mt tools kim tra cc thit lp password v crack password ca Windows. L0phtCrack, cng h tr cc phng thc m ha theo chun LC5, khi thc hin crack Password Windows c m ha khi trng thi stand-alone hay join vo Domain, v l mt cng c Crack password trn Active Directory. N cng c kh nng sniffer trn mng LAN. N c mt vi phng thc sinh ra cc password th bng phng thc (dictionary, brute force, etc). Ngoi tools ny bn c th s dng nhng tools hiu qu hn nh Cain & Abel, John the

Ripper, hay Ophcack. 6. Airsnort

Mt cng c Crack m ha WEP ca mng Wireless. Airsnort l mt cng c c kh nng recovery key t cc gi tin truyn trn mng WLAN. c pht trin bi Shmoo Group v c thc hin th kh v nhng nguy c tn cng vo mng WLAN, ngoi tools ny bn c th s dng tools Aircrack mt cng c hiu qu hn. 7. SolarWinds

Tool ny cho php scan mng, gim st v l mt cng c tn cng. SolarWinds c to ra vi hng t cc tc dng. Vi tnh nng c gii thiu nh mt cng c Scan v pht hin cc my tnh ang active trn mng, l mt cng c tn cng hiu qu giao thc SNMP bng phng thc Brute-force attack, hay gii cc m ha trn Router, l mt cng c hiu qu nht cu hnh Router v cc ng dng khc. 8. Pwdump.

Mt cng c recovery password trn Windows rt hiu qu. Pwdump cho php extract file SAM trong Windows, h tr ly cc thng tin User, password c m ha. Ngoi tc dng crack password m ha trong file SAM, n cn c kh nng gii m khi t syskey. Mt la trn tng t bn c th s dng L0phtcrack cng tng t v hiu qu hn. 9. RainbowCrack.

Mt tools dng crack password c m ha S dng c th chim ht ti nguyn b nh nh i cho tnh hiu qu v gim thiu thi gian crack Password. 10. Brutus

Mt cng c dng tn cng cc giao thc xc thc trn mng. N ch c kh nng tn cng chng li cc dch v trn Windows bng cch on mt khu ng nhp t cc t in khc nhau. Chng h tr rt nhiu giao thc nhuw: HTTP, POP3, FTP, SMB, TELNET, IMAP, NTP, v nhiu hn na. tn cng cc giao thc xc thc trn UNIX bn c th s dng THC Hydra. II. 11 Tool Sniffer hay nht. 1. Wirehark

Mt chng trnh tm gi tin Sniffer Packet hay nht. Wireshark c bit vi tn Ethereal cho n ma h nm 2006, l mt tool vit bng m ngun m h tr phn tch cc giao thc trn Unix v Windows. N cho php ly thng tin hiu qu t cc giao tip trn mng sau save vo a cng. Bn c th c nhiu la chn trong vic tm cc giao tip trn mng, bn cng c th phn tch ni dung ca cc gi tin c th. Wireshark c nhiu tnh nng mnh m bao gm mt ch lc thng tin hiu qu, cho php chng ta xem tng phin, tng giao tip trn mng. N cng h tr hng trm giao thc khc nhau. Mt trong cc l do Wireshark thay th Ethereal l cc l hng bo mt ca n. 2. Kismet

Mt tool rt hiu qu Sniffer gi tin trn mng Wireless. Kismet l mt chng trnh vi giao din command h tr giao thc 802.11 vi tnh nng Network Detector, Sniffer, v hot ng nh mt thit b gim st IDS. N t ng pht hin nhng gi tin thuc cc Protocol no nh TCP, UDP, ARP, v cc gi tin DHCP, c ghi li

bng Wireshark/TCPDump. Tools ny cn c s ng Wardriving, Warwalking, v wareflying. 3. Tcpdump

L mt tools c nhng hiu qu trong vic gim st h d liu trn mng. Tcpdump l mt cng c IP sniffers c s dng trc khi c Ethereal (Wireshark), v hin nay vn c mt s ngi dng. N khng c giao din ha p v r rng nh Wireshark, nhng n hot ng hiu qu v khng c nhiu l hng bo mt nh Ethereal. N cng yu cu phn cng thp hn v tn t ti nguyn h thng hn. Do n h tr t tnh nng hn, n rt hiu qu trong xc nh nhng yu t no ang lm cho h thng mng b nghn, cc giao tip thc t chim bng thng trn mng. 4. Cain & Abel Cng c dng ly Password trn Windows hiu qu nht.

Trn h thng UNIX thng dng cc ti nguyn min ph cn trn nn tng Windows th thng khng phi nh vy. Trn nn tng Windows c nhiu Tools cho php Crack password nhng rt t tools cho php tm cc gi tin trn mng gii m ngc li ly c Password mong mun. Cain & Abel l mt tools va c th Crack Password trn windows khi ngi ti my tnh hay c th tm cc gi tin trn mng v gii m ngc li s dng: Dictionary v Bruforce Attack. Ngoi ra Cain & Abel l mt cng c Sniffer kh hiu qu. 5. Ettercap

Vi tnh nng Sniffer trn mi trng LAN Switch hiu qu v bo mt. Ettercap vi tnh nng Network sniffer/interceptor/logger trn mng LAN. Cng c ny cng h tr nhiu giao thc khc nhau. Ngoi tnh nng trn giao din hp l v tnh nng lc kt qu cng kh hp dn. C nhiu mc c th trin khai mang li hiu qu cao trong qu trnh Sniffering, nhiu Plugins h tr. H tr LAN Switch v c kh nng OS fingerprint (on h iu hnh ca cc my tnh online trn mng). 6. Dsniff

L mt tool rt hiu qu gim st h thng mng v thc hin penetration-testing. Cng c ny rt ph bin, c pht trin bi Dug Song. Bao gm cc tnh nng: dsniff, filesnarf, mailsnarf, msgsnarf, urlsnarf, v gim st truy cp web. N cng rt hiu qu t cc gi tin cha Password, Email, File..). vi tnh nng Arpspoof, dnsspoof, cho php kt hp vi nhiu phn mm khc thc hin tn cng. C kh nng trin khai tn cng dng Man-ofMidle. Cho php thc hin cc phin kt ni ca https. L mt tools m bn cn sniffer password trn mng. 7. NetStumbler

L mt cng c min ph trn Windows thc hin Sniffer trn chun 802.11. Netstumbler c bit n nh mt cng c tt nht trn Windows tm kim nhng Access Points ang hot ng. N cng c phin bn cung cp cho WinCE cho cc PDA vi tn gi l Ministumbler. y l mt Tool hon ton min ph nhng Code ca n khng c cung cp min ph. N s dng tm kim Wireless Access Point hiu qu hn Kismet v KisMAC. 8. Ntop

Mt cng c s dng gim st cc giao tip trn mng Ntop hin th cc giao tip no trn mng ang chim nhiu bng thng nht, nhng dch v no ang chim bng thng. N c thc hin trn mng Hosting. Trn mi trng Webnos hot ng nh Web Server, to ra cc file html hin th trng thi hin ti ca mng. 9. Ngrep

Ngrep c cung cp bi GNU, c p dng trn lp Network ca m hnh OSI. Ngrep cho

php hin th thng tin Sniffer c di nhiu dng nh dng bnh thng l Hexa.Vi tnh nng lc kh tt v thng kt hp vi tcpdump v snoop. 10. EtherApe

L mt cng c thc hin Network Monitor c giao din ha trn Linux. EtherApe hin th cc h thng ang hot ng bng cc mu khc nhau. H tr nhiu m hnh mng khc nhau nh: Ethernet, FDDI, Token Ring, ISDN, PPP v SLIP. C kh nng lc v hin th cc kt qu cho php bn d dng c kt qu Sniffer c. 11. KisMAC

Giao din ha thc hin Sniffer trn h iu hnh Mac OS X. Cng c rt ph bin cho my Mac OS X thng l mt tnh nng v c i tn l Kismet. Khng nh giao din console ca Kismet, KisMAC c giao din ha d dng thc hin v lc cc kt qu Sniffer c trn mi trng ha.Kt hp vi Pcap cho php import cc kt qu v vi kh nng gii m cho php thc hin xc thc vo cc h thng khc nhau. III. 10 tools hay nht s dng cho Scan cc l hng bo mt 1. Nessus

Mt cng c Scan l hng bo mt trn UNIX hiu qu nht. Nessus l mt cng c min ph scan l hng bo mt hiu qu nht tng c, v tt nht l chy trn h thng UNIX (bt k h thng no t r ti h thng ln). Tnh nng t ng Update v hn 11.000 plugin min ph (nhng bn phi ng k v ng vi EULA). Tnh nng bao gm cho php thc hin t xa hay ti local, cho php thc hin qu trnh kim tra bo mt, c bit h tr m hnh Client/Server vi giao din ha GTK, tch hp ngn ng scripting cho php bn t ghi nhng plugin. Nessus 3 c bit n nh mt phn mm Closed Source, nhng vn c bn min ph v khng h tr nhng Plugin mi nht.

2. GFILANguard

Mt phn mm thng mi vit cho mi trng Windows s dng Scan l hng bo mt. GFILANguard t ng Scan mng IP pht hin nhng my tnh no ang hot ng. Sau c gng on bit h iu hnh, v cc ng dng ang chy trn nhng my . Sau c gng tng hp nhng my tnh dnh nhng l hng bo mt chung, mc bo mt, Access Point, USB Device, v cc th mc share, nhng Port ang m v s dng, nhng dch v ang chy, l hng bo mt trn chng. Thc hin kim tra ton b Registry, thit lp mt khu, users, group v nhiu thng tin khc. Kt qu Scan c lu di dng file HTML, cho php lc ly cc thng tin cn thit. N cng bao gm mt tnh nng qun l cc bn v li, cho php bn pht hin nhng bn v li bn cha cp nht hay ci b li. Mt phin bn min ph vi tnh nng kh hn ch v ch s dng c trong 30 ngy. 3. Retina Network Vulerability Scanner.

Mt phin bn thng mi c pht trin bi eEye. Tng t nh Nessus, cc tnh nng ca Rentina c th scan tt c cc host m n tm thy c.Ti bit c ngi vit eEye l cng ty rt am him v Security. 4. Core Impact

Mt cng c t ng v thc hin penetration testing. Core Impact khng h r cht no mt phin bn hin nay gi khong 10.000 USD. Nhng n c quan tm l mt cng c khai thc cc l hng hn l tm kim cc l hng. C kh nng t ng cp nht nhng cch khai thc l hng bo mt (Exploits), cng vi mt i ng cc nh bo mt chuyn nghip vit ln cc on Exploit. Nu bn khng th tm kim c Impact th c mt gii php r hn l Canvas hay mt chng trnh v cng hiu qu khai thc cc l hng bo mt min ph l Metasploit Framework. 5. ISS Internet Scanner

L mt chng trnh Scan nhng l hng bo mt ti tng Application. Internet Scanner c pht trin bt u t nm 1992 l mt phn mm m ngun m nh vit bi Christospher Klaus. Hin nay c pht trin thnh ISS vi thu nhp hng t USD hng nm v hot ng trn lnh vc Security. 6. X-scan

Thc hin cc phng php Scan cc l hng bo mt trn mng. Nhiu tnh nng v cc plug-in h tr trong qu trnh scan cc l hng bo mt. X-scan bao gm nhiu tnh nng bao gm h tr ton b cho NASL, pht hin cc dch v chy, on bit h iu hnh v phin bn, tnh trng password/user v nhiu thng tin khc. y l mt chng trnh c pht trin bi i ng phn mm ca Trung Quc. 7. Sara Security Auditor Research Assistant.

SARA l mt cng c kim tra cc l hng bo mt rt hiu qu, h c gng cp nht phin bn mi sau mooiix hai thng v c pht trin bi i ng m ngun m. 8. QualysGuard

Mt phn mm scan vi giao din qun tr l Web Applications c pht trin v cp nht nhng kiu scan, nhng phn mm, h iu hnh, v cc dch v. m bo lun c kt qu y v chnh xc nht. Client c th d dng kim tra bo mt vi QualyGuard trn nn tng Web. Vi hn 5000 tnh nng cho php kim tra cc l hng bo mt, cc cng v thc hin scan mt cch thng minh. T ng update hng ngy vi nhng thng tin mi nht t nhng nghin cu ca QualysGuard.

9. SAINT Security Administrators Integrated Network Tool.

c bit n nh mt phn mm thng mi Scan cc l hng bo mt tng t nh Nessus, ISS Internet Scanner hay Retina. c chy trn nn UNIX s dng min ph v cc h iu hnh m ngun m, nhng hin nay c bn thng mi vi y tnh nng v s h tr t nh pht trin. 10. MBSA Microsoft Baseline Security Analyzer

MBSA l mt tools rt r s dng c thit k cho nhng nh qun tr chuyn nghip gip nhng mi trng nh v va m bo tnh trng an ninh ca h lun t mc m Microsoft khuyn co. Tch hp tnh nng Windows Update Agen v Microsoft Update Service, MBSA chc chn s l mt phn mm qun l cc sn phm ca Microsoft rt hiu qu vi tnh nng cung cp t ng update cho cc Client hay Server thng qua Windows Server Update Service, System Managemetn Server (SMS) v Microsoft Operations Manager (MOM). Mt h thng MBSA c th qut 3 triu my tnh trong vng mt tun. Ton b cc tools ny bn c th download t trn Internet hay qua cc phn mm P2P! Theo Tocbatdat ca Vnexperts Research Department.