Learn to Hack
Every blog about security needs to post an article like this, as sort of a RTFM reference. Without further ado:
First and foremost, hacking is knowing how something operates inside and out, and then making it do something that it wasn’t intended on doing. Now, that could be anything from exploiting DCOM on an unpatched machine, to adding LEDs to your DefCon 15 badge. And if you are like most hackers, you have already stopped reading so here are some videos to get you started:
Virtual Training Enviroment at Cert.org
Learn Security Online’s Videos
Youtube entries by SANS
Also you have podcasts such as Hak.5, Pauldotcom Security Weekly and many others, that publish new content on a monthly or weekly basis.
Today also marks the day of the newest release of Hak.5. In this release I do a guest segment on anonymous enumeration or information gathering. The following are links to all of the sites that I cover in this segment, plus a few more that I don’t:
The main portion of the segment is over Evolution by Paterva. Downloadable at MegaUpload: http://www.megaupload.com/?d=11LK7HH3 The windows version at least. If the Linux version creeps up, I’ll let you know.
Domain Dossier w/ Service (Banner) scan
http://www.centralops.net/
Submit a file to be virus scanned by 17+ different scanners to help identify the virus, and to see which pick up the virus
http://www.virustotal.com/
Submit a file to be analyzed by the CWSandbox software. It even can give DNS lookup information and network connectivity requests
http://research.sunbelt-software.com/Submit.aspx
Using known transforms, this site give you a great bit of detail about any particular site, based on the details gleaned from the source
http://www.builtwith.com/
Great site that has a lot of tools. My favorite being “File-Info” in which the serversniff servers download and hash dump a file of your choice with the option to attempt a string dump. (Couple this with Virustotal.com, and the CWSandbox link, you will know everything there is to know about a file, without ever having to have it on your box.
http://www.serversniff.net/
An online front end for NMAP. It is restrictive so that you can only scan the IP you are coming from. However, this is form information that is being passed.
http://www.nmap-online.com/
Probably the best whois site on the planet.
http://www.whois.sc/
The default site that everyone know for looking up information on anything with a host name or IP
http://www.dnsstuff.com/
A good amount of tools that the other sites have, but centrally located
http://www.network-tools.com/
Network Query Tool
http://www.windowspms.com/
Can’t go anywhere without Sam Spade
http://www.samspade.org/
This website uses IntenseDebate comments, but they are not currently loaded because either your browser doesn't support JavaScript, or they didn't load fast enough.