Operator LiveCD

From ChekMate Security Group

Contents 1 Operator 3.3.19 http://www.ussysadmin.com/operator/ 2 Command Line Tools 3 GUI Based Tools 4 Extra 4.1 Extra: Tools 4.2 Extra: Windows 4.3 Extra: Exploits

Operator 3.3.19 http://www.ussysadmin.com/operator/

Operator is a complete Linux (Debian) distribution that runs from a single bootable CD and runs entirely in RAM. The Operator contains an extensive set of Open Source network security tools that can be used for monitoring and discovering networks. This virtually can turn any PC into a network security pen-testing device without having to install any software. Operator also contains a set of computer forensic and data recovery tools that can be used to assist you in data retrieval on the local system.

The technique to allow Operator to boot and run from RAM is based on a project called KNOPPIX. KNOPPIX is a bootable CD with a collection of GNU/Linux software, automatic hardware detection, and support for many graphics cards, sound cards, SCSI and USB devices and other peripherals. KNOPPIX can be used as a Linux demo, educational CD, rescue system, or adapted and used as a platform for commercial software product demos. It is not necessary to install anything on a hard disk. Mastering of this CD uses on-the-fly decompression which allows for up to 2 GB of stored data.

Starting with the 3.3 version of Operator, the author has started completely from scratch by installing a basic Debian installation then adding the KNOPPIX functionality afterwards. This allowed us to have more control and understanding of what is on the CD.

To download the latest version? Click here, Operator.iso Size: 583933952 MD5: 32feb8d438979438fd0dfc2c3212c842

FORUMS

The Operator forums are here and the forums for Knoppix is here. Please post your thoughts about Operator so that the author will know how to better the product.

Command Line Tools

• aircrack

2.1-1

wireless WEP cracker

• arping

2.01-3

sends IP and/or ARP pings (to the MAC address)

• bing

1.1.3-1

Empirical stochastic bandwidth tester

• bridge-utils

1.0.4-1

Utilities for configuring the Linux ethernet bridge

• chntpw

0.99.2-040105-1

NT SAM password recovery utility

• cryptcat

a lightweight version of netcat with integrated transport encryption capabilities.

• dlint

1.4.0-4

Checks dns zone information using nameserver lookups

• dsniff

2.4b1-9

Various tools to sniff network traffic for cleartext insecurities

• etherwake

1.08-1

A little tool to send magic Wake-on-LAN packets

• fping

2.4b2-to-ipv6-10

sends ICMP ECHO_REQUEST packets to network hosts

• fragrouter

1.6-2.2

Test a NIDS by attempting to evade using fragmented packets

• gq

1.0beta1-2

GTK-based LDAP client

• honeyd

1.0-6

Honeyd's honeypot documentation and scripts

• hping2

2.rc3-3

Active Network Smashing Tool

• httptunnel

3.3-2

Tunnels a data stream in HTTP requests.

• hunt

1.5-4

Advanced packet sniffer and connection intrusion

• icmpinfo

1.11-5

Interpret ICMP messages

• icmpush

2.2-6

ICMP packet builder

• idswakeup

1.0-3

A tool for testing network intrusion detection systems.

• ipgrab

0.9.9-1

Tcpdump-like utility that prints detailed header information

• ipsc

0.4.3-2

IP Subnet Calculator for console

• iptables

1.2.11-8

Linux kernel 2.4+ iptables administration tools

• lisa

4:3.3.2-1

LAN Information Server

• nemesis

1.32+1.4beta3-2

TCP/IP Packet Injection Suite

• netdiag

0.7-7

Net-Diagnostics (trafshow,strobe,netwatch,statnet,tcpspray,tcpblast)

• netpipes

4.2-3

a package to manipulate BSD TCP/IP stream sockets

• ngrep

1.43-3

grep for network traffic

• nikto

1.34-1

web server security scanner

• nload

0.6.0-2

A realtime console network usage monitor

• nmap

3.81-1

The Network Mapper Front End

• openvpn

2.0-1

Virtual Private Network daemon

• paketto

1.10-6

Unusual TCP/IP testing tools

• pchar

1.4-4

Characterize the bandwidth, latency and loss on network links

• prips

0.9.4-3

Print IP address on a given range

• queso

a tool to detect what OS a remote host is running with a pretty good degree of accuracy

• raccess

0.7-2

Security Tool to audit remote systems

• rain

1.2.9beta1-1

packet builder for testing IP protocols implementations.

• scanssh

2.0-4

get SSH server versions for an entire network

• scli

0.2.12-2

a collection of SNMP command line management tools

• sendip

2.5-2

A commandline tool to allow sending arbitrary IP packets

• sing

1.1-9

A fully programmable ping replacement

• smb-nat

1:1.0-4

Netbios Auditing Tool

• smbclient

3.0.14a-1

a LanManager-like simple client for Unix

• sniffit

0.3.7.beta-11

packet sniffer and monitoring tool

• snmp

5.1.2-6.1

NET SNMP (Simple Network Management Protocol) Apps

• ssldump

0.9b3-2

An SSLv3/TLS network protocol analyzer

• stunnel

2:3.26-3

Universal SSL tunnel for network daemons

• tcpdump

3.8.3-5

A powerful tool for network monitoring and data acquisition

• tcpflow

0.21-6

TCP flow recorder

• tcpreplay

2.3.3-1

Tool to replay saved tcpdump files at arbitrary speeds

• tcpslice

1.2a2-4

extract pieces of and/or glue together tcpdump files

• tcpspy

1.7d-3

Incoming and Outgoing TCP/IP connections logger

• telnet-ssl

0.17.24+0.1-7.1

The telnet client with SSL encryption support

• tethereal

0.10.10-2

network traffic analyzer (console)

• tsocks

1.8beta5-2

transparent network access through a SOCKS 4 or 5 proxy

• udptunnel

1.1-1

Tunnel UDP packets over a TCP connection

• whisker

1.4-5

CGI scanner to audit web servers

• xprobe

0.2.2-1

Remote OS identification

GUI Based Tools

These tools can be selected from the OPERATOR menu within KDE

• airsnort

0.2.7e-1

WLAN sniffer

• cheops

0.61-12

Network swiss army knife

• etherape

0.9.0-9

graphical network monitor modeled after etherman

• ethereal

0.10.10-2

network traffic analyser (common files)

• gq

1.0beta1-2

GTK-based LDAP client

• httptunnel

03/03/02

Tunnels a data stream in HTTP requests.

• iptraf

2.7.0-7

Interactive Colorful IP LAN Monitor

• krdc

4:3.3.2-1

KDE Remote Desktop Client

• linneighborhood

0.6.5-3.1

An SMB network browser for Linux and X11.

• mtr

0.67-1

Full screen ncurses and X11 traceroute tool

• nessus

2.2.3-3

Remote network security auditor, the server

• netdude

0.3.3-2

NETwork DUmp data Displayer and Editor for tcpdump trace files

• nmapfe

3.81-1

The Network Mapper Front End

• wavemon

0.4.0b-7

Wireless Device Monitoring Application

• xsmbrowser

3.4.0-10

X11 tool for navigating SMB Networks

Extra

These are an assortment of Exploits and Tools acquired that you may like.

They are located in the /opt/Operator_Extras/ directory Note: The Windows applications will require the use of wine.

• Notes/Notes

Extra: Tools

• Tools/misc
• Tools/lufs

0.9.7

• Tools/rwtb

2

• Tools/ffp-008

0.0.8

• Tools/sbd-133

1.33

• Tools/arpmim-02

0.2

• Tools/autopsy-203

2.03

• Tools/sleuthkit-172

1.72

• Tools/login_hacker-11

1.1

• Tools/anger-133

1.33

• Tools/domtools

36531

• Tools/rda-021c

0.2.1c

• Tools/mdcrack-12

1.2

• Tools/RandomNet
• Tools/honeyd-scripts
• Tools/netwox_524

5.24

• Tools/tds-002

0.02beta

• Tools/brian
• Tools/sara-54

36650

• Tools/lsrtunnel-021

0.2.1

• Tools/httptunnel-305

3.0.5

• Tools/smbbf
• Tools/resettcp-12

1.2

• Tools/4g8-09b

0.9b

• Tools/ipaudit-095

0.95

• Tools/dnshijacker-11

1.1

• Tools/burpspider_v11

1.1

• Tools/ADMsmb_02

0.2

• Tools/dcom_scanner
• Tools/ike-scan-12

1.2

• Tools/seringe

0.2

• Tools/passifist

1.0.8

• Tools/air-125

38354

• Tools/rainbowcrack-12

1.2

• Tools/isic-006

0.06

• Tools/airsnarf-02

0.2

• Tools/httpscan
• Tools/madwifi

Beta

• Tools/tforce-100

1.0.0

• Tools/vlan_18

1.8

• Tools/scanssh-14

1.4

• Tools/smbMITM

2

• Tools/WepAttack-013

0.1.3

• Tools/phoenix2

2

• Tools/irpas-010

0.1

• Tools/whats_on

1.03

• Tools/cdpr-220

36558

• Tools/ADMnbtscan

0.1

• Tools/aphunter
• Tools/sambascan2-034

0.3.4

• Tools/wardrive-23

2.3

• Tools/ophcrack-20

2

• Tools/smbtool-10

1

• Tools/cdpsniffer
• Tools/areset

0.1

• Tools/icmptunnel-013

0.1.3

• Tools/arp0c2

0c2

• Tools/asleap

1

• Tools/nmbscan-124

37988

• Tools/deceit
• Tools/arpsucker
• Tools/juggernaut_12

1.2

• Tools/ttt-13r

1.3r

• Tools/nast-020

0.2.0

• Tools/hotspotter-03

0.3

• Tools/nsat-15

1.5

• Tools/aimsniff-09d

0.9d

• Tools/vlan-testing
• Tools/nbtstat
• Tools/iplog-223

37654

• Tools/yersinia-053

0.5.3

• Tools/captive-115

38353

• Tools/thc-leapcracker-01

0.1

• Tools/fakeap-031

0.3.1

• Tools/naptha-11

1.1

• Tools/ftester-09

0.9

• Tools/sock_v101

1.01

• Tools/bgpcrack-21

2.1

• Tools/tcptraceroute-14

1.4

• Tools/proxychains-21

2.1

• Tools/dnstracer-16

1.6

• Tools/WifiScanner-095

0.9.5

• Tools/rootkits
• Tools/wepwedgie-010

Alpha-0.1.0

• Tools/lcrack

20030404

• Tools/fakemac-01

0.1

• Tools/DefaultPasswordList
• Tools/ncovert-10

1

• Tools/smbproxy-10

1

• Tools/PHoss-0113

0.1.13

• Tools/apsr-017

0.17

• Tools/nmbping

1

• Tools/LdapMiner

beta

• Tools/packit

0.7

• Tools/burpproxy_v122

1.22

• Tools/stegtunnel-04

0.4

• Tools/john-1637

13521

• Tools/framework-23

2.2

• Tools/coreography-1a

1a

• Tools/siphon

0.666beta

• Tools/Firewalk-50

5

• Tools/fragroute-12

1.2

• Tools/genraid3r
• Tools/cutter-102

1.02

• Tools/aphopper-03

0.3

• Tools/PsychoPhobia
• Tools/voipong-11

1.1

• Tools/darkstat-25

2.5

• Tools/lsrscan-051

0.5.1

• Tools/ssiDsniff

0.36

• Tools/airtraf-11

1.1

• Tools/hydan-013

0.13

• Tools/Wellenreiter-v19

1.9

• Tools/tcphijack-11

1.1

• Tools/arpd-02

0.2

• Tools/WepCrack

0.0.10

• Tools/vtun-26

2.6

• Tools/USS-reset-tcp

1.3

• Tools/lyceum-246

2.46

• Tools/nemesis-14b3

1.4

• Tools/p0f-205

2.0.5

• Tools/weplab-012-beta

0.1.2-beta

• Tools/cmospwd-43

4.3

• Tools/airjack-v066bj-alpha

0.6.6.b-alpha

• Tools/ncrypt-068

0.6.8

• Tools/welchia

1.01

• Tools/hydra-46

4.6

• Tools/amap-50

5

• Tools/thcrut-125

38354

• Tools/vncrack_117

1.17

• Tools/pads-112

1.2

• Tools/tcpick-0124

0.1.24

• Tools/netprobe-10b1

1.0b1

• Tools/ftpsrvr_scan

1

• Tools/warscan-072

0.7.2

• Tools/despoof-09

0.9

• Tools/void11-020

0.2.0

• Tools/mailtunnel-02

0.2

• Tools/disco_12

1.2

• Tools/aireplay-22

2.2

• Tools/honeyd-configs
• Tools/paydirt-11

1.1

• Tools/webprobe

1

• Tools/websniff
• Tools/wep_tools
• Tools/apradar-052

0.52

• Tools/nbtscan-15

36896

• Tools/testdisk-54

5.4

• Tools/vippr-12

1.2

• Tools/rrs-170

1.7

• Tools/gwee-136

1.36

• Tools/memfetch

0.05b

Extra: Windows

• Windows/LC4

4

• Windows/Cain10b

1

• Windows/AdQueueLoop

1.01

• Windows/tcpview
• Windows/NTReskit
• Windows/GetRootDSE

1

• Windows/GetUserInfo

2.06

• Windows/rpctools

1

• Windows/SecData

2.03

• Windows/net-fizz

0.1

• Windows/syskey
• Windows/FindPDC

1.01

• Windows/Findnbt

1.2

• Windows/ADFind

1.12

• Windows/mssql2k
• Windows/smbdie

0.1

• Windows/iis_injector
• Windows/thcUnreal

0.1

Extra: Exploits

• Exploits/aw
• Exploits/ASN
• Exploits/ftp
• Exploits/www
• Exploits/7350
• Exploits/dhcp
• Exploits/ldap
• Exploits/mail
• Exploits/misc
• Exploits/msql
• Exploits/ae-gateway

Oct03+1

• Exploits/cisco
• Exploits/imail

0.1

• Exploits/mysql
• Exploits/samba
• Exploits/rh_imap4
• Exploits/gkrellmd
• Exploits/dcom_rpc
• Exploits/solaris
• Exploits/halflife
• Exploits/sslsniff-04

0.3

• Exploits/apache
• Exploits/firewall

0.1

• Exploits/PSOProxy
• Exploits/mssql2k
• Exploits/lsasrv
• Exploits/netris
• Exploits/sneaky
• Exploits/source
• Exploits/telnet
• Exploits/unreal
• Exploits/crashers
• Exploits/task_scheduler
• Exploits/assortment
• Exploits/class101