Screencasts: On-screen demonstrations of security tools

Vistumbler    OpenVAS    N-Stalker    BackTrack 4    Rootkit Hunter    Samurai    MBSA    Maltego    Cain and Abel    Network Miner    Metagoofil    Tor

Nipper    Wikto    Smoothwall    Wireshark    WinHex    OSSTMM    Metasploit    Nessus    Network Security Toolkit    Snort    Google Hacking    UTM

Want on-screen demos of a particular tool that hasn't been featured? Email us your suggestions.

SCREENCASTS

Vistumbler
Find rogue wireless acess points with Vistumbler
The wireless detection tool Vistumbler is a lot like Netstumbler, except it supports Windows Vista and Windows 7. In this demo, learn how to use the tool to find rogue wireless access points on your network. Peter Giannoulis also reveals how to export access point GPS locations to Google Earth.


OpenVAS
How to launch an OpenVAS scan
Watch Peter Giannoulis as he demonstrates OpenVAS, an open vulnerability assessment system. OpenVAS is a free network secuity scanning tool, much like Nessus. In his presentation, Peter explores the tool's set of NVTs, or network vulnerability tests, that will detect security problems in remote systems and applications.


N-Stalker
Scanning with N-Stalker offers basic Web application security assessment
This month, Peter Gianonulis reviews a valuable Web application scanner that will assess your publicly facing servers, detect vulnerabilities and mitigate threats. Peter demonstrates how to conduct a basic assessment for Web spidering, HTTP fingerprinting and cross-site scripting. In fact, N-Stalker has 20,000 signatures -- not bad for a free product.


BackTrack 4
BackTrack 4 offers full pack of penetration testing tools
This month, Peter Giannoulis provides a demo of BackTrack 4, the final version of the venerable pen-testing live Linux-based CD distribution. The penetration testing tools are installed and ready to go, and they can save you valuable time. Watch as Giannoulis samples the many testing features and demonstrates how to get BackTrack 4 up and running in a virtualized environment.


Smoothwall
Smoothwall offers firewall defense in lean times
You may think that Linux distributions are only for the highly trained IT professional, but Smoothwall, in fact, requires no knowledge of Linux whatsoever. Peter Giannoulis, in his latest screencast, shows you the features of the open source firewall and how to install it in a VMware image.


Rootkit Hunter
Rootkit Hunter demo: Detect and remove Linux rootkits
Peter Giannoulis looks at a a free, Linux-based malware detection tool and rootkit scanner: Rootkit Hunter. The tool, which scans for backdoors and local exploits, can also detect behavior that may not be easily caught by AV, including default files and hidden files used by rootkits.


Samurai
Samurai offers pen-testing nirvana
In this screencast, Peter Giannoulis reviews the Samurai Web testing framework, a collection of the best Web penetration testing tools put together on a a live Linux CD. If you're a pen tester, or if you perform vulnerabilitiy assessments, you don't have to build all of these tools on your own dedicated operating system.



MBSA
How to perform Microsoft Baseline Security Analyzer (MBSA) scans
Learn about the Microsoft Baseline Security Analyzer (MBSA), a free tool provided by Microsoft finds misconfigurations in Windows operating systems. The MBSA uses Microsoft's recommended security configuration to determine how you can further secure your system.



Maltego
Maltego demo: Identifying a website's trust relationships
Learn how the Maltego tool can be most effectively used during the information-gathering phase of a penetration test. In this on-screen demo, Peter Giannoulis reveals some of the trust relationships of SearchSecurity.com itself.


Cain and Abel
Recovering lost passwords with Cain & Abel
Brute-forcing Windows passwords is easier than you think. Peter Giannoulis explains how the Cain and Abel tool can be used to recover your precious credentials.





Network Miner
How to gather host-level data with Network Miner
One particular open source network sniffer hasn't received the attention that it deserves, at least according to Peter Giannoulis. Watch as Peter demonstrates how to use Network Miner, a free, Windows-based tool, to identify ports, protocols, operating systems and other services.


Metagoofil
Collecting metadata with Metagoofil
Metagoofil, a free tool, provides users with the ability to extract hidden metadata from public documents, including Word docs, PowerPoints and PDFs. Learn how penetration testers can use this tool to analyze a network and assess the security of a website or Web server.



Tor
How Tor improves Web surfing privacy and security audits
Tor, a security tool that permits anonymous Web surfing, can be used for both good and bad. In this demonstration, learn how network administrators can mask their locations and improve their audits.




Nipper
How to use Nipper to create network security reports
Nipper, a free and open source network infrastructure parser, can do more than make your config look pretty. Learn how the tool can produce security audit reports on your network devices. Peter Giannoulis demonstrates how to review your network topology and see where you can enhance it.


Wikto
How to use Wikto for Web server assessment
Penetration testers who are looking for flaws in their Internet-facing Web servers can use the freely available Wikto. See for yourself what kinds of information that Wikto can gather about a specific website -- including its good and bad directories -- and which plug-ins will allow you to get the most out of the free tool.


Wireshark
Catching network traffic with Wireshark
Wireshark, a favorite network protocol analyzer, has plenty of forensic capabilities. See the kinds of traffic that the free tool can catch, including files from tcpdump, Microsoft Network Monitor, Sniffer Pro -- and even recorded VoIP calls.



WinHex
Recovering lost data with WinHex
WinHex performs forensics and also specializes in low-level data processing, drive imaging and file or program analysis. It can even prevent security leaks because of its ability to destroy or wipe data securely. Watch Peter Giannoulis as he reviews one of the Winhex's main functions: its ability to find and return deleted folders and lost data.


OSSTMM
An introduction to the Open Source Security Testing Methodology Manual
The Open Source Security Testing Methodology Manual (OSSTMM) allows you to perform many security tests on your firewalls, intrusion detection systems, passwords and much more. Watch Peter Giannoulis as he introduces the manual and demonstrates how it can be used to defend machines from a brute-force dictionary attack. Learn which parts of a security architecture need to be tested and how to properly measure your results.


Metasploit
Penetration testing with Metasploit
Metasploit allows hackers and security professionals alike to examine how well a given system can handle known exploits and payloads. Expert Peter Giannoulis demonstrates how the freely available tool can be used to test commercial and custom-made applications, servers and operating systems. In his presentation, Giannoulis shows how one unfortunate Windows user's machine can be easily taken advantage of.


Nessus
Finding vulnerabilities with Nessus
Nessus is the granddaddy of all information security tools. While no longer an open source tool, it still exists as freeware and is actively supported with new signatures. In this screencast, Peter Giannoulis of Bones Consulting demonstrates how enterprises can use Nessus to assess vulnerabilities and help protect critical systems and networks.


Network Security Toolkit
Opening up the Network Security Toolkit
Built upon Insecure.org's "100 Best Tools," the Network Security Toolkit is improving the jobs of information security professionals everywhere. Tom Bowers, managing director of security think tank and industry analyst firm Security Constructs, uses this latest screencast to explore the collection of networking and security gear. Bowers reviews the basics of the browser-based security toolbox, including proper configurations and tool selection.


Snort
Snort -- Tactics for basic network analysis
Snort is a robust tool that can be used in a number of ways to assess the security posture of a network, but it takes time to learn, and it can be tricky to obtain all the data that Snort can provide. SearchSecurity.com contributor Tom Bowers provides a demo for those using the tool for the first time. Bowers offers a brief introduction and history of Snort and explains what the IDS can do for information security pros.

Google hacking
Google hacking, infosec style
Search engines and related tools are not only handy when it comes to finding information on the Web, but they can also help security professionals ensure an organization's intellectual property doesn't slip off the network and into the public domain. Tom Bowers demonstrates how a few basic "Google hacking" methods can offer fascinating competitive intelligence for your enterprise. .

UTM
How to configure a UTM device
Unified threat management technologies provide protection against various network attacks, but properly configuring UTM boxes can be a whole other battle. In this exclusive screencast, expert David Strom gives an easy-to-follow, on-screen demonstration of the configuration options available in SonicWall's unified threat management product. In simple steps, Strom explains how to set up a SonicWall box, interpret its alerts and adjust security policies accordingly to ensure that a network has optimum protection.