That's a given: The tools are there, they're updated and they're there. That was the whole point: Here, you have your tools and away you go. With the heritage that we have, there's been kind of an evolution of what was originally in a lot of these pen testing platforms, when we were focused on just a collection of tools. If you take it as a given that you need access to these Unix, open source-based tools as part of your assessment, then the question is: What platform are you going to use? Kali is the de facto standard platform for assessment services, especially when you're running Linux. Otherwise, it's like trying to do an assessment with one arm tied behind your back and your eyes closed - it's going to be extremely difficult.
Jim O'Gorman: Number one, regardless of what you're doing, you're going to want to have access to Unix and Linux-based tools. Why should Kali Linux be in every pen tester's toolkit? O'Gorman, who is also lead trainer for pen testing with Kali Linux and chief content and strategy officer at Offensive Security, a New York-based pen testing training and certification company, discussed how ethical hackers can use Kali Linux pen testing tools for a wide variety of cybersecurity assessments and how Kali can be customized for almost any kind of digital forensics.Įditor's note: This interview was edited for clarity and length.
0 kommentar(er)
