Can Wireshark be used for internal penetration testing? I am new to penetration testing but I need to learn quickly and start performing internal scans and tests. asked 24 Mar '15, 08:02 japonzio |
2 Answers:
Yes and no. Wireshark is a recording/analyzing tool, it does not scan or otherwise create packets. Still, Wireshark is helpful in recording your scans (e.g. performed by using nmap) to be able to see/prove afterwards what the scan really did. answered 24 Mar '15, 09:28 Jasper ♦♦ |
The most important thing for pentesting is not a single tool/program, it's good old Know-how. Knowing protocols, network architectures, web architectures, typical security problems/bugs, cryptography know how, and many more things. Having said that, there is not one single best pentest tool. There a lot of "supporting" tools you can use during the pentest process. One good collection of such tools is Kali Linux, which also includes Wireshark. Regards answered 25 Mar '15, 17:50 Kurt Knochner ♦ edited 25 Mar '15, 17:50 |
Thanks for the feedback. I will have to get familiar with Wireshark and learn how to use it. I am not sure if I need to keep looking for a good pen test program or just use Wireshark.