Dienstag, 25. März 2014

'Fedora Security Lab' - Spin

While looking around i found a very nice spin which is worth talking about. "Fedora Security Lab"

The fedora security lab combines all software you need for forensic or security testing in one fedora spin.
The Fedora Security Lab provides a safe test environment to work on security auditing, forensics, system rescue and teaching security testing methodologies in universities and other organizations.
The spin is maintained by a community of security testers and developers. It comes with the clean and fast Xfce Desktop Environment and a customized menu that provides all the instruments needed to follow a proper test path for security testing or to rescue a broken system. The Live image has been crafted to make it possible to install software while running, and if you are running it from a USB stick created with LiveUSB Creator using the overlay feature, you can install and update software and save your test results permanently.
I tested it during the last days, and it really looks good, there really just a few improvements i would like to see. But i guess i can help that :-)

Currently the spin uses XFCE and works quite nice with 1200 MB RAM (i installed it in virtualbox). The software is located in an own subfolder. If you select a package the console open and will display the "-h" output. So you can easily start to use the software.

As i would like to support the spin, i currently think about an documentation system, in basic an man2html output of the packages, so you can pick you toll of choice via browser and have an "handout" of the config.

In my opinion fedora Security Lab is a great tool for forensics and security testing issues. You can run from LiveCD or USB stick and perform tests on potential infected systems.

Some software you may want to use is

  • rkhunter - a tool which is looking for root kits on your system
  • nmap - of course the ultimate port scanner tool :-)
and many many more

Enjoy!