Posted: . At: 9:54 AM. This was 5 years ago. Post ID: 13286
Page permalink. WordPress uses cookies, or tiny pieces of information stored on your computer, to verify who you are. There are cookies for logged in users and for commenters.
These cookies expire two weeks after they are set.


Parrot pentesting distribution. The best way to test out your home network.

by

The Parrot pentesting Linux distribution is the best way to test the security of your home or work network. In skilled hands, tools such as Metasloit can generate a payload to send to an unsuspecting target and attempt to gain control of their machine. Wifite and Aircrack-ng can be used to attack a wireless network and gain the passkey to allow usage of a network, and then gain information about the computers on that network, and the users in the company. Sniffing network traffic with Wireshark will be a very powerful tool. This can contain some very useful data. Older VOIP data can be sniffed with Wireshark, this contains audio files of conversations. Testing your own home network can be very useful to see how secure it really is. Cracking a WIFI network with Wifite can be very easy if the user is lucky, and the Access Point is vulnerable to the Pixie dust attack. This page shows how easy it really is when you are this lucky: https://securitronlinux.com/bejiitaswrath/how-easy-it-is-to-crack-wifi-with-the-wps-pixie-attack/. This was a very quick cracking task.

Hydra is another very good Parrot OS tool. This can crack SSH passkeys. This works well with common passwords that many people use like “samthedog”. An example tutorial is here: https://securitronlinux.com/bejiitaswrath/cracking-an-ssh-login-using-hydra-on-debian-gnulinux/. This was quite simple to do. This is why it would more more secure to use a set of SSH keys instead of a password that is typed to login via SSH. Amazon Web Services always use SSH key files as they are more secure.

Yet another useful Parrot tool is John the Ripper. This is a password cracking tool, this can be used to crack Linux user passwords. This is quite fast when the password is a more common phrase or word that is likely to be in a wordlist. Here is an example of the usage of John The Ripper to crack a Linux user`s password(s): https://securitronlinux.com/debian-testing/how-to-crack-an-ubuntu-user-password-easily-with-john-the-ripper/. Very useful for auditing passwords to find weak ones.

Download Parrot OS from the website here: https://www.parrotsec.org/.

Torrent: https://download.parrotsec.org/parrot/iso/4.6/Parrot-security-4.6_amd64.iso.torrent.


Leave a Comment

This site uses Akismet to reduce spam. Learn how your comment data is processed.