dslreports logo
 
    All Forums Hot Topics Gallery
spc
Search similar:


uniqs
1461

antdude
Matrix Ant
Premium Member
join:2001-03-25
US

antdude

Premium Member

Linux Security Distros Compared: Tails vs. Kali vs. Qubes

»lifehacker.com/linux-sec ··· 58139404 from »lwn.net/Articles/620501/ ...

"If you're interested in security, you've probably already heard of security-focused Linux distros like Tails, Kali, and Qubes. They're really useful for browsing anonymously, penetration testing, and tightening down your system so it's secure from would-be hackers. Here are the strengths and weaknesses of all three..."

Has anyone tried all three/3 products?

Chubbzie
join:2014-02-11
Greenville, NC
Hitron CDA3
(Software) OpenBSD + pf

1 recommendation

Chubbzie

Member

said by antdude:

Has anyone tried all three/3 products?

I've not used Qubes but use Kali on my phone & tablet on a regular basis. Also used Tails in the past but its been a while.

Camaro
Question everything
Premium Member
join:2008-04-05
Westfield, MA

Camaro to antdude

Premium Member

to antdude
Click for full size
said by antdude:

Has anyone tried all three/3 products?

I have used Tails briefly, and Kali Linux/Backtrack for now over 6 years. Putting those together is odd. Yes all 3 are good for anonymity, but for me it stops there, Kali is designed to metaphorically break down your door through any means possible. I have 2 neighbors who asked me to audit their networks and here is the result of one. That is a WPS attack and a WPA. Took about a hour with a HP 5121 mini.


StuartMW
Premium Member
join:2000-08-06

StuartMW

Premium Member

said by Camaro:

That is a WPS attack and a WPA. Took about a hour with a HP 5121 mini.

Which is why I have a 63 character pseudo-random WPA2 passphrase

A pain to enter but I don't do that often.

Camaro
Question everything
Premium Member
join:2008-04-05
Westfield, MA

2 recommendations

Camaro

Premium Member

Bet your house guest's love you when they need to use your WiFi , that's if you let them.

StuartMW
Premium Member
join:2000-08-06

1 recommendation

StuartMW

Premium Member

They can use the open wifi of the place next door.

And all my PC's are hard-wired. Plus my wi-fi and LAN are separated with a firewall (which blocks 99.9% of traffic) in-between

Chubbzie
join:2014-02-11
Greenville, NC
Hitron CDA3
(Software) OpenBSD + pf

2 recommendations

Chubbzie to Camaro

Member

to Camaro
said by Camaro:

That is a WPS attack and a WPA.

WPS = Wack Piece of Security. Recently ran across a WPA2 enc. Wifi broadcasting as "Honeydome". Interestingly enough during my poking and prodding, the network or should I say something within the network began attacking & fingerprinting the Kali device I used against it. While I've seen this behavior before I've never seen such a quick and thorough response.

A few days passed and again I poked and prodded this network, this time prepared for the quick response. Using Kali alongside some other tools I have it appears (through traffic signatures & analysis) that it was an automated/scripted response to certain actions being performed against it... the traffic signatures corresponded to a Kali host with a dose of NMAP & Nessus sprinkled in.

So there you have it Kali vs. Kali

Camaro
Question everything
Premium Member
join:2008-04-05
Westfield, MA

1 recommendation

Camaro

Premium Member

said by Chubbzie:

WPS = Wack Piece of Security.

I think I might steal that, if you haven't copyrighted it already?
said by Chubbzie:

Using Kali alongside some other tools

Kismet in the tools list?
Camaro

Camaro to StuartMW

Premium Member

to StuartMW
If you don't mind me asking, does that go on sticky note, encrypted text file, or are you just really good at remembering letters and numbers?

Chubbzie
join:2014-02-11
Greenville, NC
Hitron CDA3
(Software) OpenBSD + pf

Chubbzie to Camaro

Member

to Camaro
said by Camaro:

Kismet in the tools list?

Yes indeed, included in my Kali distro. I've yet to find a better passive tool however I've had issues with AC networks.

StuartMW
Premium Member
join:2000-08-06

1 recommendation

StuartMW to Camaro

Premium Member

to Camaro
Not written down and not in a text file.

If I need it I log into my AP, copy'n'paste the phasephrase into a doc (never saved) and print it (in large font) in a way that makes manual entry easier. After successful entry the printed copy is shredded.

antdude
Matrix Ant
Premium Member
join:2001-03-25
US

antdude to StuartMW

Premium Member

to StuartMW
said by StuartMW:

They can use the open wifi of the place next door...

Heh, I used to do that too.