Skip to main content

Give me all your Warez: Technical Resources

I've discussed some good news and informational resources with you previously, now I wish to provide you with yet another living page which will give you an idea of what software tools are available, and what you should be looking at using. Bear in mind that there will be other programs that have similar capabilities, and you may prefer those. That's fine, this isn't supposed to be a "definitive guide of must haves", more of a "this is what is out there, these things are the most common/well know versions" guide. If you know of anything better, leave a comment and I'll add it to the list, or remove something if that's the way things go.

Operating Systems

In short: all of them. You will need to be experienced in most major releases of each platform. This is easier said than done, because unless you buy a Mac or Macbook, getting hold of macOS is actually quite difficult, even through, ahem, less than legal means (or so I'm told).

Microsoft Windows: Now I appreciate that there are a fair few version and releases of Windows, both desktop and server, but it's worth spending some time with them all if you can. You can download most of them for free from MS themselves, but they will only be trial versions, lasting about 180 days. Server-wise, look at 2003, 2008R2, 2012 and 2016, and if you can, 2000. For the desktop, anything 2000 onward, with a focus on 2000 Professional, XP, 7 and 10 (Vista was never really popular with anyone, let alone businesses).

GNU/Linux: There's a lot to cover here, so I'll strip it down to the basics as much as I can. Firstly, if you are looking to do pen testing of any kind, you will need to be proficient in either Kali Linux or ParrotOS. These two Linux distros were designed and built as offensive security operating systems, coming pre-loaded with a whole host of tools and goodies. Also worth your time are distros like CentOSFedora and Ubuntu (not my favourite by any stretch of the imagination, but other like it. No accounting for taste.), which are among the most popular for desktop and servers.

This might seem a lot, but there are about 1500 active distributions at any one time, plus a whole lot more based upon the Linux kernel (Android being one, and pfSense and SmoothWall firewalls being others). It is worth taking the time to understand Linux, its file permissions, commands, and differing package management systems, as you will almost certainly come across one distro or another at some point.

IOS/JunOS: These two operating systems are rather specific, but will give you a definite advantage. The Internetwork Operating System (not to be confused with the Apple offering of similar nomenclature) and the Junos Network Operating System are both proprietary OS's for routers. Understanding these systems will give you a good overview of networking architecture.

macOS: As I mentioned earlier, this might be the hardest to learn, given you need to own an expensive Mac to use it. But due to the increasing popularity of Apple products, this is fast becoming a must, particularly for digital forensics.

Shells and Scripting tools

Precision and automation are everyone's friends, doubly so when you have several repetitive tasks to do per day. Learning how to use the command line and how to create small scripts to run specific tasks at specific times will help save time, money and effort, and free you up to get on with other aspects of your job. 

Bash: The Linux holy of holies, the command line. One of the most powerful tools an IT professional can have at their fingertips. Conquer the dark arts of the terminal, and you will go very far, grasshopper.

Powershell: Something Microsoft got very right, despite the fact it’s also one of the weakest security points in Windows. Not only does this perform the same functions as the Command Prompt, but it also allows for scripting, and allows for the use of UNIX commands as well as aliasing. Useful to know.

Python: The scripting language that can be used as an actual high-level programming language. Small, simple to use, reasonably easy to learn and extraordinarily flexible: it has uses for simple scripts to machine learning and data analytics.

General Tools and Links

https://opensource.com/resources/projects-and-applications?sc_cid=7016000000127ECAAY






Comments

Post a Comment

Popular posts from this blog

This is not a New Year’s Resolution

I'm not a one for resolutions or anything, I prefer to at least try to be a bit more practical than that. Instead, now that I've had time to consider what I want to do this year, here my list of upcoming projects. Let me know what yours are: 1) Re-evaluate the website and blog, and actually keep to a posting schedule. Might help if I started using artwork/photos. 2) Social Media application for my desktop: I'm getting a bit sick of having and average of 20 browser tabs open at a time, so lets see if I can't design an app, even if it's just a fixed browser thing, I can use to track my SM activity in one place so it's not clogging up my precious browser memory. 3) Stop wasting time with my writing projects: My biggest issue here is that while I can write some flowery prose or engage in worldbuilding like I'm Slartibartfast, I don't actually have a tale to tell. I need to adjust my focus here, and maybe I'll get something out of it. 4) Top Secre
Post a Comment
Read more

The Cultural Value of Algorithms

I am aware that there are misgivings amongst the musical community about Spotify's business model, and from the bits I know, these are perfectly reasonable. Unfortunately, it is useful and productive consumer model, and it's this I want to briefly write at you about. Spotify's catalogue is huge, an ever-expanding horizon that seems to want to engulf the soundscape in totality. It's easy to use, and you can usually find the album or artist you want to listen to. But it's true genius is in its algorithms, specifically the ones it uses to create the playlist it constantly nudges you to listen to. Now, because of how pushy it seemed, I avoided my Discover Weekly and Release Radar playlist like the plague for ages. This was a mistake. Or maybe, because I hadn't listened and followed enough, they just weren't right for me yet. Now, however, I spend a good two days paying attention to them, and then expanding my aural sphere to at least 3 of the recommend
Post a Comment
Read more

You and who’s party?

“I don’t care to belong to any club that will have me as a member” Groucho Marx Much of the past 17 years has been dedicated to fighting fundamentalist extremism, largely of the religious persuasion. This is understandable, as the religious mindset, certainly in those areas of the globe where faith is a majority holding, affects and informs the cultural values of society, and certainly in the West we have found ourselves at odds with extremist Islamic groups. Fundies of the Muslim persuasion have been at the forefront f these combative efforts, although we have also seen the dangers of the looming Christian theocratic state. It is fair to say while this will be an ongoing struggle, it is one we are coming to understand very well and are able to combat. But what of other types of fundamentalist creeds? What of political fundamentalism? This is, I fear, something we are neglecting to talk about, instead preferring to remain steadfastly tribalised to the point where discuss
Post a Comment
Read more