PEN TEST KEY PLAYERS

1.  The Network Mapper: NMAP is a tool that discovers weaknesses in an enterprise’s network environment. It can also be used for auditing purposes. NMAP takes raw data packets that have just been created and uses them to determine:

• What hosts are available on a particular network trunk or segment

• The information about the services which are being provided by these hosts

• What operating system is being used (also known as “fingerprinting”)

• The versions and the types of data packet filters/firewalls being used by any particular host

By using NMAP, organizations can create a virtual map of the network segment, and from there, pinpoint the major areas of weakness that a cyber attacker could potentially penetrate. NMAP can be used at any stage in the pen testing process, and it is a free open-source tool available at this link: www.nmap.org.

2. Metasploit: Rather than a single tool, Metasploit provides a package of different pen testing tools. It is a framework that is constantly evolving to keep up with today’s ethical hackers, who are able to contribute their knowledge to this platform as well. Powered by the PERL platform, Metasploit comes with an entire host of built-in exploits which can be used to execute various kinds of pen test, and these are even customizable. For example, it already comes with a built-in network sniffer, and various access points from which to mount and coordinate various kinds of cyber-based attacks.

3. Wireshark: Wireshark is an actual network protocol and data packet analyzer that can point out what is happening with the network and assess traffic for vulnerabilities in real time. By reviewing connection-level information as well as the constituents of data packets, it highlights their characteristics, origin, destination, and more. While it flags potential weaknesses, a penetration testing tool is still required to exploit them.

4. The Web Application Attack and Audit Framework: W3AF is a pen testing suite created by the software developers at Metasploit. Its main purpose is to find and try to exploit any security weaknesses in web-based applications, and it consists of many tools that can root out these kinds of threats.

5. John the Ripper: JTR is a fast, efficient password cracker, currently available for many flavors of operating system (Unix, macOS, Windows, DOS, BeOS, and OpenVMS). It can be used by pen testers to detect weak passwords and address the inherent weaknesses in typical password use. JTR has been created and developed on an open source platform, and it can be found at this link: http://www.openwall.com/john/.

Note: A key advantage of using open-source pen testing tools is the fact that they are constantly being refined by contributors and other cybersecurity professionals. This helps ensure that they stay at the forefront of the ever-changing threat landscape.