Network.Security.Tools [Electronic resources] نسخه متنی

اینجــــا یک کتابخانه دیجیتالی است

با بیش از 100000 منبع الکترونیکی رایگان به زبان فارسی ، عربی و انگلیسی

جستجو بر اساس ... همه عنوان پدیدآور موضوع یادداشت تمام متن
اصطلاحنامه مجموعه ها مرورالفبایی لغت نامه دهخدا
جستجو در لغت نامه
بیشتر
کتابخانه شخصی پرسش از کتابدار ارسال منبع

Network.Security.Tools [Electronic resources] - نسخه متنی

| نمايش فراداده ، افزودن یک نقد و بررسی
افزودن به کتابخانه شخصی
میخواهم بخوانم
درحال خواندن
خوانده شده
ارسال به دوستان

آدرس پست الکترونیک گیرنده :

آدرس پست الکترونیک فرستنده :

نام و نام خانوارگی فرستنده :

پیغام برای گیرنده ( حداکثر 250 حرف ) :

کد امنیتی را وارد نمایید

ارسال
جستجو در متن کتاب
بیشتر
تنظیمات قلم

فونت

اندازه قلم

+ - پیش فرض

حالت نمایش

روز نیمروز شب
جستجو در لغت نامه
بیشتر
لیست موضوعات

Sitemap

Table of Contents

Copyright

Preface

Audience

Assumptions This Book Makes

Contents of This Book

Conventions Used in This Book

Using Code Examples

We'd Like to Hear from You

Safari Enabled

Acknowledgments

Part I: Modifying and Hacking Security Tools

Chapter 1. Writing Plug-ins for Nessus

Section 1.1. The Nessus Architecture

Section 1.2. Installing Nessus

Section 1.3. Using Nessus

Section 1.4. The NASL Interpreter

Section 1.5. Hello World

Section 1.6. Datatypes and Variables

Section 1.7. Operators

Section 1.8. if...else

Section 1.9. Loops

Section 1.10. Functions

Section 1.11. Predefined Global Variables

Section 1.12. Important NASL Functions

Section 1.13. Nessus Plug-ins

Chapter 2. Developing Dissectors and Plug-ins for the Ettercap Network Sniffer

Section 2.1. Installing and Using Ettercap

Section 2.2. Writing an Ettercap Dissector

Section 2.3. Writing an Ettercap Plug-in

Chapter 3. Extending Hydra and Nmap

Section 3.1. Extending Hydra

Section 3.2. Adding Service Signatures to Nmap

Chapter 4. Writing Plug-ins for the Nikto Vulnerability Scanner

Section 4.1. Installing Nikto

Section 4.2. Using Nikto

Section 4.3. Nikto Under the Hood

Section 4.4. Existing Nikto Plug-ins

Section 4.5. Adding Custom Entries to the Plug-in Databases

Section 4.6. Using LibWhisker

Section 4.7. Writing an NTLM Plug-in for Brute-Force Testing

Section 4.8. Writing a Standalone Plug-in to Attack Lotus Domino

Chapter 5. Writing Modules for the Metasploit Framework

Section 5.1. Introduction to MSF

Section 5.2. Overview of Stack Buffer Overflows

Section 5.3. Writing Exploits for MSF

Section 5.4. Writing a Module for the MnoGoSearch Overflow

Section 5.5. Writing an Operating System Fingerprinting Module for MSF

Chapter 6. Extending Code Analysis to the Webroot

Section 6.1. Attacking Web Applications at the Source

Section 6.2. Toolkit 101

Section 6.3. PMD

Section 6.4. Extending PMD

Part II: Modifying and Hacking Security Tools

Chapter 7. Fun with Linux Kernel Modules

Section 7.1. Hello World

Section 7.2. Intercepting System Calls

Section 7.3. Hiding Processes

Section 7.4. Hiding from netstat

Chapter 8. Developing Web Assessment Tools and Scripts

Section 8.1. Web Application Environment

Section 8.2. Designing the Scanner

Section 8.3. Building the Log Parser

Section 8.4. Building the Scanner

Section 8.5. Using the Scanner

Section 8.6. Complete Source Code

Chapter 9. Automated Exploit Tools

Section 9.1. SQL Injection Exploits

Section 9.2. The Exploit Scanner

Section 9.3. Using the Scanner

Chapter 10. Writing Network Sniffers

Section 10.1. Introduction to libpcap

Section 10.2. Getting Started with libpcap

Section 10.3. libpcap and 802.11 Wireless Networks

Section 10.4. libpcap and Perl

Section 10.5. libpcap Library Reference

Chapter 11. Writing Packet-Injection Tools

Section 11.1. Introduction to libnet

Section 11.2. Getting Started with libnet

Section 11.3. Advanced libnet Functions

Section 11.4. Combining libnet and libpcap

Section 11.5. Introducing AirJack

Colophon

توضیحات
افزودن یادداشت جدید









4.3. Nikto Under the Hood



This section traces the logic flow of the entire Nikto program, and
discusses the routines available through
nikto_core and LibWhisker. The Nikto program
structure is modular. Most of Nikto''s actual
functionality lies within external plug-ins
,
which you can find in the plugins/ directory
where the Nikto source code was uncompressed.




It is a good idea to browse the source of existing plug-ins to better
understand how they work. Execute the following Linux command from
the Nikto root directory to generate a tag file for the source tree:


find . -name "*.pl" -o -name "*.pm" -o -name "*.plugin" | xargs ctags 
--language-force=perl




4.3.1. Nikto''s Program Flow



At 200
lines of code the Nikto.pl file is relatively
small. The following paragraphs briefly discuss what the program does
on a macro level.


At the start of the program, you''ll notice a series
of global
variables. To avoid namespace collisions, plug-in developers
shouldn''t use these
variable names. Next,
load_configs( ) parses the configuration file
config.txt and initializes
%CONFIG. Then the find_plugins( )
routine searches expected directories for the
plug-in file, and sets appropriate values in
%files. The nikto_core
plug-in and LibWhisker are included with
the require keyword, which makes all routines from
LW.pm and nikto_core.plugin
available to the rest of nikto.pl as well as to
its plug-ins. The general_config() routine parses the command-line options and
sets %CLI appropriately. Next,
LibWhisker''s http_init_request( )
initializes LibWhisker''s
%request with default values.


The proxy_setup( )
function sets the
appropriate values in %request, depending upon the
proxy settings in the configuration file. The open_output() function opens a file handle for
writing program output, only if an output file was
specified on the command line. Next, set_targets( )

populates %TARGETS with
the hostname or IP address of the target, along with specified ports.
The load_scan_items( )
function loads the
vulnerability checks found from
servers.db,
scan_database.db, and
user_scan_database.db (if the file exists) into
global arrays.


Finally, the main loop for the vulnerability checks is reached. For
each item in %TARGETS the following actions are
taken: first, dump_target_info( )
displays the target information. Next,
check_responses( )
verifies that valid and invalid requests
return the HTTP status codes 200 and
404. In addition, this function sets any HTTP
Basic authentication credentials specified by the user. The
check_cgi( ) function is called to verify the
existence of common CGI directories (these can be set in the
configuration file). The set_scan_items() function is called to process
scan db arrays and to perform macro replacement on
the checks. Next, run_plugins( ) is called to
execute the plug-ins on the current target host and port. Finally,
test_target( ) is called to perform the actual checks found
in the scan db arrays.



4.3.2. Nikto''s Plug-in Interface



Nikto''s
plug-in interface is relatively
simple. The plug-ins are Perl programs executed by
Nikto''s run_plugins( )
function. For a plug-in to be executed
correctly, it must meet three requirements. First, the plug-in file
should use the naming convention
nikto_foo.plugin,
where foo is the name of the plug-in.
Second, the plug-in should have an initialization routine with the
same name as the plug-in. And third, the plug-in should have an entry
in the file nikto_plugin_order.txt. This file
controls which plug-ins run, and in what order. As an example, a line
could be added to the file that simply states nikto_foo.
This would call the routine nikto_foo( )
within the file nikto_foo.plugin. To keep the
plug-ins portable, you should not use additional modules, but instead
copy the needed code into the plug-in itself.


A side effect of the chosen plug-in execution method is that the
plug-ins and Nikto share the global namespace. This is why you
don''t need use statements to
access Nikto or LibWhisker routines. This simplifies the plug-ins.
Plug-in developers should make sure their variable and routine names
don''t conflict with any of Nikto''s
global variables.



/ 85