Blackbuntu is distribution for penetration testing which was specially designed for security training students and practitioners of information security.
Blackbuntu is Ubuntu base distro for Penetration Testing with GNOME Desktop Environment. It's currently being built using the Ubuntu 10.10.
How to use Vyatta in vmware to simulate Hacking from inside network scenario
Sat, 07/16/2011 - 01:19 | 
c1ph3r In the classes I taught i use Vmware Workstation 7 to create penetration testing Lab
and use Vyatta to simulate as Router, you can use Vyatta to simulate many scenario such as hack into DMZ ... etc, Vyatta support zone-base firewall.
you can download vyatta at the following link:
http://www.vyatta.org/downloads
Vyatta Document:
http://www.vyatta.org/documentation
Lab Diagram
Fix error on wifitap
Wed, 03/30/2011 - 11:17 | c1ph3r This how to may useful for someone who try to install wifitap on other linux distribution
that use Python 2.6
After you install wifitap and try to run wifitap.py you will found error like this:
c1ph3r@probook64:~/Downloads/wifitap$ ./wifitap.py Psyco optimizer not installed, running anyway... Traceback (most recent call last): File "./wifitap.py", line 34, in <module> from scapy import Raw,Ether,PrismHeader,Dot11,Dot11WEP,LLC,SNAP,sendp,conf File "/home/c1ph3r/Downloads/wifitap/scapy.py", line 3387 tr = map(lambda x: Gnuplot.Data(x,with="lines"), trt.values())
Install Arachni on Blackbuntu
Sat, 02/19/2011 - 22:17 | c1ph3r Arachni is a feature-full, modular, high-performance Ruby framework aimed towards helping penetration testers and administrators evaluate the security of web applications.
Arachni is smart, it trains itself by learning from the HTTP responses it receives during the audit process.
Unlike other scanners, Arachni takes into account the dynamic nature of web applications and can detect changes caused while travelling
through the paths of a web application's cyclomatic complexity.
aidSQL Latest Release
Sun, 02/06/2011 - 14:50 | c1ph3r
aidSQL
Is a PHP application provided for detecting security holes in your website/s. It's a modular application, meaning that you can develop your very own plugins for SQL injection detection & exploitation.
Blackbuntu CE 0.2 Released
Sun, 01/23/2011 - 13:18 | c1ph3r
Changelog
-------------------------
- Remove acroread
- Added Start/Stop Service Menu like <<Back|Track (Apache,MySQL,SSH,TFTPD,Xplico)
- Added Videosnarf
- Added Xplico
- Added fragrouter.
- Added Nemesis.
- Added Bizploit
- Added weevely
- Added Matahari
- Added Plecost
- Added Pynject
- Added SAP script from phenoelit.de
- Added numlockx (Credit to anidear).
- Recompile Kismet-new core to support Linux Netlink(LibNL/nl80211).
Blackbuntu CE 0.2 Upcoming Release!
Wed, 01/05/2011 - 21:01 | c1ph3r A release of Blackbuntu CE 0.2 is expected on the 24/01/2011
fixing fake authentication in blackbuntu 0.1
Sun, 01/02/2011 - 15:32 | alexploiter 1. wget http://wireless.kernel.org/download/compat-wireless-2.6/compat-wireless-...
2. tar -jxf compat-wireless-2010-10-16.tar.bz2
3. cd compat-wireless-2010-10-16
4. wget http://patches.aircrack-ng.org/mac80211.compat08082009.wl_frag+ack_v1.patch
5. patch -p1 < mac80211.compat08082009.wl_frag+ack_v1.patch
6. wget http://patches.aircrack-ng.org/channel-negative-one-maxim.patch
7. patch ./net/wireless/chan.c channel-negative-one-maxim.patch
8. gedit scripts/update-initramfs
Howto install Oracle Instant Client 10.2.0.5 on Blackbuntu
Sat, 01/01/2011 - 12:02 | c1ph3r If you are running Inguma on Blackbuntu you will see something like this
c1ph3r@blackbuntu-dev:/pentest/exploits/inguma$ ./inguma.py Inguma Version 0.0.9.1 Copyright (c) 2006-2008 Joxean Koret <joxeankoret@yahoo.es> libclntsh.so.10.1: cannot open shared object file: No such file or directory inguma>
Because you don't have oracle instant client, but blackbuntu have been set default environment for oracle instant client and install cx_Oracle already.
c1ph3r@blackbuntu-dev:~$ cat /etc/profile | grep ORACLE
export ORACLE_HOME=/opt/oracle/instantclient_10_2