Abc de la sécurité informatique

Prérequis

pour pouvoir utiliser un live CD (ou Live DVD), il faut vous munir au préalable :

- soit d'un graveur CD / DVD (afin de graver l'image ISO proposée par les auteurs) et nécessitant de redémarrer sur le CD gravé du système live. - soit d'un émulateur de système comme le logiciel qemu, permettant d'utiliser une machine virtuelle qui démarrera au sein de votre système sur l'image ISO comme si elle était un vrai cd sur périphérique CD-ROM

Passons maintenant aux choses sérieuses. Cette liste de live cd orientés sécurité informatique n'est pas exhaustive mais offre un bon aperçu des possibilités et avantages de tels systèmes.

les systèmes Live CD Basés sur BSD:

- Anonym.OS (anonymat, cryptage des données) Anonym.OS live cd

Anonym.OS is an OpenBSD 3.8 Live CD with strong tools for anonymizing and encrypting connections. Standard network applications are provided and configured to take advantage of the tor onion routing network.

- Frenzy http://frenzy.org.ua/fr/

Frenzy est le "couteau suisse" de l'administrateur système, sous forme d'un live CD basé sur FreeBSD. Il contient essentiellement des logiciels destinés aux tests du matériel, du système de fichiers, aux contrôles de sécurité et aux réglages et analyses des fonctions réseau.

- pFsense http://www.pfsense.com

pfSense is a open source firewall derived from the m0n0wall operating system wich can be used as live or installed on the hard drive.

Les systèmes Live CD Basés sur GNU/Linux:

- Auditor (projet fusionné avec Whax et renommé BackTrack)

Auditor security collection is a Live-System based on KNOPPIX. With no installation whatsoever, the analysis platform is started directly from the CD-Rom and is fully accessible within minutes.

- BackTrack wiki BackTrack

BackTrack is the result of the merging of two Innovative Penetration Testing live Linux distributions, Whax and Auditor.

- BOSS live cd (BSI OSS Security Suite)

BOSS live cd est une distribution John-The-Ripper, Tripwire, LSOF, ClamAV antivirus et Chkrootkit

- Chronomium Virus Live http://www.chronomium.com

CHRONOMIUM VirusLive est un CD bootable qui aide de façon automatisée à nettoyer un système MS-Windows(R) infecté.

- Devil Linux http://www.devil-linux.org

Devil-Linux is a CD-based Linux distribution for firewalls and routers. The goal of Devil-Linux is to have a small, customizable and secure (what is secure on the Internet?) Linux. Devil-Linux is a distribution which boots and runs completely from CDROM. The configuration can be saved to a floppy diskette or a USB pen drive. Devil Linux was originally intended to be a dedicated firewall/router but now Devil-Linux can also be used as a server for many applications.

- Dr.Web LiveCD http://info.drweb.com

Dr.Web LiveCD is an image of the boot compact disk which contains all necessary tools to check your computer for viruses without installation of any programs on the hard drive.

- Echelon Linux (surveillance réseau) http://www.echelonlinux.org

Echelon Linux is a distro designed to monitor services on your network. It is based on the DamnSmallLinux project.

- FCCU GNU/Linux forensic (analyse technico légale informatique) http://www.d-fence.be

Le CD bootable FCCU GNU/Linux forensic est un CD servant à l'analyse technico légale d'ordinateurs.

- F.I.R.E. (Forensic and Incident Response Environment) http://biatchux.dmzs.com

FIRE is a portable bootable cdrom based distribution with the goal of providing an immediate environment to perform forensic analysis, incident response, data recovery, virus scanning and vulnerability assessment.

- Hakin9 Live http://www.hakin9.org

Hackin9 Live est un Live CD proposé par le magazine Hackin9

- INSERT(Inside Security Rescue Toolkit) http://www.inside-security.de

INSERT is a complete, bootable linux system. It comes with a graphical user interface running the fluxbox window manager while still being sufficiently small to fit on a credit card-sized CD-ROM.

- Knoppix STD ( security tools distribution) http://s-t-d.org

STD is a Linux-based Security Tool. Actually, it is a collection of hundreds if not thousands of open source security tools. It's a Live Linux Distro, which means it runs from a bootable CD in memory without changing the native operating system of the host computer. Its sole purpose in life is to put as many security tools at your disposal with as slick an interface as it can.

- LinuxDefender Live! CD lien téléchargement

LinuxDefender Live! est une distribution live CD proposée par l'éditeur antivirus Bitdefender et intégrant des logiciels propriétaires de BitDefender.

- Local area security Linux http://www.localareasecurity.com

- NST (Network Security Toolkit) http://www.networksecuritytoolkit.org

This bootable ISO live CD is based on Fedora Core 4. The toolkit was designed to provide easy access to best-of-breed Open Source Network Security Applications and should run on most x86 platforms.

- ntpasswd http://home.eunet.no/pnordahl/ntpasswd/

ntpasswd permet d'effacer ou modifier le mot de passe associé à un compte sur systèmes NT 3.51, NT 4, Windows 2000, Windows XP et Windows Server 2003 et de pouvoir en éditer la base de registre.

- nUbuntu http://www.nubuntu.org

nUbuntu is a collection of network and server security testing tools, piled on top of the existing Ubuntu system. While aimed to be mainly a security testing platform, nUbuntu also operates as a desktop environment for the advanced Linux user.

- Operator http://www.ussysadmin.com/operator/

The Operator contains an extensive set of Open Source network security tools that can be used for monitoring and discovering networks. Operator also contains a set of computer forensic and data recovery tools that can be used to assist you in data retrieval on the local system.

- Penguin Sleuth Bootable CD http://www.linux-forensics.com

Penguin Sleuth Bootable CD is a Linux bootable CD that is based on KNOPPIX with forensic and infosec tools.

- Pentoo LiveCD (penetration testing LiveCD) http://www.pentoo.ch

Pentoo is a penetration testing LiveCD distribution based on Gentoo. It features a lot of tools for auditing and testing a network, from scanning and discovering to exploiting vulnerabilities.

- PHLACK http://www.phlak.org

PHLAK is a modular live security Linux distribution (a.k.a LiveCD). PHLAK comes with two light gui's (fluxbox and XFCE4), many security tools, and a spiral notebook full of security documentation. PHLAK is a derivative of Morphix, created by Alex de Landgraaf.

- Sentinix (monitoring, détection d'intrusion) http://sentinix.tigerteam.se

SENTINIX is a GNU/Linux distribution designed for monitoring, intrusion detection, vulnerability assessment, statistics/graphing and anti-spam.

- stresslinux (test de charge, tests matériels) http://www.stresslinux.org

StressLinux is a minimal Linux distribution that runs from a bootable CDROM or via PXE. It makes use of some utilities such as stress, cpuburn, hddtemp, lm_sensors, etc. It is dedicated to users who want to test their system(s) entirely on high load and monitor the health of these systems.

- TPM (ThePacketMaster Linux Security Server) http://www.thepacketmaster.com

ThePacketMaster Linux Security Server gives you a full toolkit of open source security software to perform vulnerability assessments and penetration testing. Forensic analysis tools are also included.

- Troppix

Troppix is a stand-alone Linux live CD based on Debian GNU/Linux, aimed at security professionals, penetration testers and auditors. In particular, Troppix features support for a wide range of wireless cards, and offers several tools for detecting and penetrating wireless networks. Troppix also includes several well known security tools, such as the nmap port scanner and the metasploit framework for vulnerability exploitation.

- WarLinux (wardriving) https://sourceforge.net/projects/warlinux/

A new linux distribution for Wardrivers. It is available on disk and bootable CD. It's main intended use is for systems administrators that want to audit and evaluate their wireless network installations.

- Whax (projet fusionné avec Auditor et renommé BackTrack)

Whoppix is a stand-alone penetration-testing live CD based on KNOPPIX. With the latest tools and exploits, it is a must for every penetration tester and security auditor. Whoppix includes several exploit archives, such as Securityfocus, Packetstorm, SecurityForest and Milw0rm, as well as a wide variety of updated security tools.

- Whoppix

Whoppix était un live cd de pentest basé sur Knoppix. Le projet fut renommé Whax lorsque la base de création évolua vers une base Slackware (avec le live cd Slax)

Les systèmes Live CD Basés sur Windows:

- Bart's Preinstalled Environment (BartPE) http://www.nu2.nu

BartPE is a bootable CD that gives you a minimal Win32 GUI environment with disk and network tools based on Windows XP or Windows Server 2003 installation files. In other words, BartPE is a clone of Windows PE that is available for anyone who wants to use it for installing or troubleshooting Windows-based networks.

- Ultimate Boot CD for Windows http://www.ubcd4win.com

UBCD4Win is a bootable CD which contains software that allows you to repair/restore/diagnostic almost any computer problem. All software included in UBCD4Win are freeware utilities for Windows®. UBCD4Win is based on Bart's PE©