Electronic Books

If they do not exist, you will
need to create them with a text editor, such as Notepad. Click Apply.
Vulnerability Scanning
425
Click the start button ?†’ and Pluto will begin to scan the target. The
progress bar will show the percentage of the completion of the scan.
Pluto will complete the scan.
426
Practical Hacking Techniques and Countermeasures
By expanding the results, you can evaluate the details. Pluto will automatically
perform banner grabbing as well.
Scrolling through the results in this example will identify three potentially
critical errors in the target. Pluto will identify:

The CGI script executed

A description of the vulnerability

A severity rating (High, Medium, Low)
Vulnerability Scanning
427
To save the report click on File, then click Save, and finally select Name
the Report and click Save.
The last feature of Pluto to mention is the ability to add custom audit checks.
This is done by placing the mouse over the Audits word on the left of the
application. As before, this is actually a button even though the mouse pointer
will not change. Click on Audits and the Database Explorer will appear.
428
Practical Hacking Techniques and Countermeasures
Pluto allows you to enter custom entries into the databases. By clicking
on each database, you display the vulnerabilities. Click each vulnerability in
the list to list the details of each.
*Note: Pluto allows for the addition of custom exploits.


Pages:
136 137 138 139 140 141 142 143 144 145 146 147 148 149 150 151 152 153 154 155 156 157 158 159 160