In the previous tutorial, experts in ethical hacking from the International Institute of Cyber Security (IICS) showed you dozens of the best tools to perform different tasks of analysis, monitoring and anti-hacking protection. This time, we will review some additional programs to complement previously acquired knowledge.
As usual, specialists would like to point out that this material was elaborated for entirely academic purposes, so IICS is not responsible for the misuse that may be given to the tools shown below.
SNIFFERS FOR LOCAL AND GLOBAL NETWORKS
This is a completely free open source package analyzer. Ethical hacking experts use Wireshark for troubleshooting, analysis, software development, network analysis, and training.
Although this tool is very similar to tcpdump, Wireshark has a graphical interface and some built-in sorting and filtering options.
This is a set of tools available for free for Linux systems. The performance of these tools depends on zero copy mechanisms, so the kernel does not need to copy packets from kernel space to user space and vice versa when receiving and transmitting packets.
SYSTEMS FOR INFORMATION COLLECTION AND EVENT MANAGEMENT
Prelude is a versatile security and event management (SIEM) system that collects, sorts, aggregates, correlates and reports any security event regardless of the brand or license of the analyzed product.
According to ethical hacking experts, this tool provides all the necessary functionalities to perform an analysis, including the collection, standardization and correlation of events.
An acronym for Fast Incident Response, this tool functions as a very useful cybersecurity incident management platform for any system administrator or security researcher.
ENCRYPTION OF WEB TRAFFIC VIA VPN
This is an open source application that implements virtual private network (VPN) techniques for creating secure point-to-point or site-to-site connections in routed or bridged configurations and remote access tools. This tool uses its own security protocol (SSL/TLS) for key exchange.
According to ethical hacking experts, this is a set of libraries and drivers for quick and easy packets processing.
This is a functional network framework designed for the Linux operating system that allows you to capture and transmit packets, functional processing in the kernel, and managed packets across sockets or terminals efficiently.
PF_RING is a new type of network connector that, as mentioned by ethical hacking experts, greatly improves packet capture speed.
This is a flexible batching framework that allows you to reach speeds of up to 10 Gbps (both RX and TX) in any packet size. The tool implements zero copy operations, including templates for inter-process and inter-vm (KVM) communication.
This is an ideal tool to improve the performance of the capture and transfer process on Linux.
Netmap is a high-speed packet input and output platform. Along with VALE, Netmap is implemented as a single kernel module and is available for FreeBSD, Linux, and even Windows systems.
INTEGRATED PROTECTION SYSTEMS FOR WORKSTATIONS AND SERVERS – FIREWALLS
pfSense is a very popular FreeBSD firewall and router distribution in the ethical hacking community.
This is a very easy-to-use open source firewall and routing platform. OPNsense includes most of the functions of the most popular firewalls on the market, so it can be an ideal choice for many researchers.
Ethical hacking experts can use this tool to protect ports with a single packet authorization on their firewall.
For more information on vulnerabilities, exploits, malware variants, cybersecurity risks and information security courses, feel free to access the International Cyber Security Institute (IICS) website.
Cyber Security Specialist with 18+ years of industry experience . Worked on the projects with AT&T, Citrix, Google, Conexant, IPolicy Networks (Tech Mahindra) and HFCL. Constantly keeping world update on the happening in Cyber Security Area.