A few weeks ago, I followed a presentation at Digicomp called “From Ethical Hacking to IT-Forensic” presented by Juerg Fischer. The most interesting part I kept from the presentation (that was in German so may explain the little I remember from it 🙂 ) was about the tools and resources useful for the differents phases of the penetration tests. Even of most of these tools and resources might be alredy know, I hope it will still make an usefull list to somone else than me 🙂
1. Information Gathering
In this early stage the goal is to gather information about people and architecture you might find during your security analysis.
2. Vulnerability Analysis
For this second phase, the goal is to gather information regarding vulnerability that correspond to the list you gathered (type of server, OS …) in the first phase.
Getting ride of the router…
There are many more tools but with the previous links list you should have already enough to start digging into security related topics 🙂