nUbuntu (network Ubuntu) is a Linux security distro based on Ubuntu(!). According to the nUbuntu website, the goal of the project is to create a distribution that is derived from the Ubuntu distribution, add packages related to security testing, and remove unneeded packages such as Gnome, OpenOffice.org, and Evolution.
At the time of this writing, the current version of nUbuntu is based on Ubuntu 6.10 - Edgy Eft. Some of the better known tools are:
- Nmap – A network exploration and security auditing tool.
- Yersinia – Network tool designed to take advantage of some weakeness in different network protocols.
- Ettercap – A sniffer for switched LANs.
- Kismet - A 802.11 layer2 wireless network detector, sniffer, and intrusion detection system
- Dsniff – Collection of tools for network auditing.
- Wireshark – Network protocol analyzer examination of data from a live network, or from a capture file on disk.
Listing the /tools directory shows us available tool categories: bluetooth, cisco, database, enum, exploit, forensics, fuzzers, passwords, and scanners.
Test Your Webserver’s Vulnerability With BED v0.5
Some of the included need to be executed as root. In this case, use sudo [command]. Change directory to /tools/fuzzers/bed and run sudo ./bed.pl to see its usage feedback. Suppose you’d like to test for buffer overflow on a particular host, use:
# sudo ./bed.pl -s HTTP -t 192.168.0.1
Of course, change the IP to the one of the server you want to test.
There is also the DNS Enum tool you might want to check out for testing your name resolution system. A well-managed domain won’t give up too much information or a zone transfer. To launch DNS Enum, change directory to /tools/enum/dnsenum and enter:
# ./dnsenum.pl [domain] [dns.txt]
If you’d like to know more about nUbuntu, visit http://www.nubuntu.org. Other security distros can be found through http://www.securitydistro.com.
Top Commentators