All Topics  
BackTrack

 

 
   Email Print
   Bookmark   Link
 

 

BackTrack
 
 
  Topics BackTrack Topic Home

BackTrack is a Linux distribution
Linux distribution

A Linux distribution is a member of the family of Unix-like software distributions built on top of the Linux kernel. Such distributions consist of a large collection of software applications such as word processors, spreadsheets, media players and database applications....
 distributed as a Live CD
Live CD

A live CD or live DVD is a CD or DVD containing a booting computer operating system. Live CDs are unique in that they have the ability to run a complete, modern operating system on a computer lacking Computer_storage , such as a hard disk drive....
 which resulted from the merger of and the Auditor Security Collection. It takes advantage of SLAX's modular design and structure to enable the user to include customizable scripts, additional tools and configurable kernels in personalized distributions.






Discussion
Ask a question about 'BackTrack'
Start a new discussion about 'BackTrack'
Answer questions from other users
Full Discussion Forum



Encyclopedia


BackTrack is a Linux distribution
Linux distribution

A Linux distribution is a member of the family of Unix-like software distributions built on top of the Linux kernel. Such distributions consist of a large collection of software applications such as word processors, spreadsheets, media players and database applications....
 distributed as a Live CD
Live CD

A live CD or live DVD is a CD or DVD containing a booting computer operating system. Live CDs are unique in that they have the ability to run a complete, modern operating system on a computer lacking Computer_storage , such as a hard disk drive....
 which resulted from the merger of and the Auditor Security Collection. It takes advantage of SLAX's modular design and structure to enable the user to include customizable scripts, additional tools and configurable kernels in personalized distributions. The BackTrack project was created by Mati Aharoni and Max Moser and is a collaborative effort involving the community.

BackTrack 2 was released on March 6, 2007 and includes over 300 security tools. A beta version of BackTrack 3 was released on December 14, 2007, but it was announced that its main focus was to support more and newer hardware as well as provide more flexibility and modularity.

BackTrack 3 was released on June 19, 2008. New additions include SAINT
SAINT (software)

SAINT is computer software used for scanning computer networks for Vulnerability , and exploiting found vulnerabilities....
 and Maltego. Nessus
Nessus (software)

In computer security, Nessus is a proprietary comprehensive vulnerability scanning software. It is free of charge for personal use in a non-enterprise environment....
 was not included in this release, and the developers decided not to upgrade from kernel version 2.6.21.5.

BackTrack 4 Beta was released on February 11, 2009, with the biggest change being the move to a Debian
Debian

Debian GNU/Linux is one of the most popular and influential computer operating systems composed of free software and open source software....
-based distribution.

History

The BackTrack distribution originated from numerous Linux counterparts. WHAX, a name derived from White hat
White hat

A white hat is the hero or good guy, especially in computing slang, where it refers to an ethical hacker or Penetration tester who focuses on securing and protecting Information Technology systems....
 and SLAX
SLAX

Slax is a Linux Live CD operating system based on Slackware. It does not need to be installed on a computer system's hard drive; it boots and runs from either a CD or USB drive....
, was a distribution designed for security tasks. WHAX emerged from Whoppix, a Knoppix
Knoppix

Knoppix, or KNOPPIX , is an operating system based on Debian designed to be run directly from a Compact Disc / DVD, one of the first of its kind for any operating system....
-based security distro. When Whoppix reached version 3.0 it was renamed as WHAX, to reflect the change of parent distribution from Knoppix to SLAX. Customized by Mati Aharoni, an Israeli security consultant, WHAX made its central focus on penetration testing. WHAX made it possible to test and verify the security of a network from many computers located in various places.

Auditor Security Collection

Auditor Cd Label Small
Max Moser's Auditor Security Collection - "The Swiss Army Knife for security assessments" - was focused as well on Linux-based penetration tests. The overlap with Auditor and WHAX in purpose and tools collection partly led to the merger. Auditor featured well-laid-out menus for its collection of over 300 tools for troubleshooting, network and systems-fortifying. Its user-friendliness resulted in enhanced usability for penetration testing which led to the formulation of the BackTrack security testing distribution.
The Auditor Security Collection was a Live CD
Live CD

A live CD or live DVD is a CD or DVD containing a booting computer operating system. Live CDs are unique in that they have the ability to run a complete, modern operating system on a computer lacking Computer_storage , such as a hard disk drive....
 based on Knoppix
Knoppix

Knoppix, or KNOPPIX , is an operating system based on Debian designed to be run directly from a Compact Disc / DVD, one of the first of its kind for any operating system....
.
Auditor Desktop

Current state

After coming into a stable development procedure during the last releases and consolidating feedbacks and addition, BackTrack producers restructured the development focal point from stability to functionality by restructuring the build and maintenance processes. With the current versions of BackTrack, the majority of applications are constructed as individual modules which improve the update performance with releases and fixes.

On July 15, 2007, BackTrack 3 was announced to be in the development process and released on June 19, 2008.

Features

BackTrack focuses its central idea on the needs of computer penetration testers. The inclusion of Live CD
Live CD

A live CD or live DVD is a CD or DVD containing a booting computer operating system. Live CDs are unique in that they have the ability to run a complete, modern operating system on a computer lacking Computer_storage , such as a hard disk drive....
 and Live USB
Live USB

A live USB is a USB flash drive or a USB external hard disk drive containing a full operating system which can be booting. Live USBs are closely related to live CDs, but typically have the ability to save settings and permanently install software packages back onto the USB device....
 functionality enables any user to just insert their respective data medium and boot up BackTrack. Direct hard disk installations (2.7 GB uncompressed) can also be completed within the Live CD (700 MB compressed) environment through the basic graphical installation wizard with no restart subsequent to installation. BackTrack further continues its compatibility with the computer forensics demographic with accessibility and internationalization by including support for Japanese input in reading and writing in Hiragana
Hiragana

is a Japanese language syllabary, one component of the Japanese writing system, along with katakana, kanji, and the romanization of Japanese. Hiragana and katakana are both kana systems, in which each symbol represents one mora ....
, Katakana
Katakana

is a Japanese language syllabary, one component of the Japanese writing system along with hiragana, kanji, and in some cases the Latin alphabet. The word katakana means "fragmentary kana", as the katakana scripts are derived from components of more complex kanji....
 and Kanji
Kanji

are the Chinese characters that are used in the modern Japanese language logogram along with hiragana , katakana , Arabic numerals, and the occasional use of the Latin alphabet....
.

The key additions to the BackTrack suite are notably -
  • Metasploit integration
  • RFMON wireless drivers
  • Kismet
  • AutoScan-Network - AutoScan-Network is a network discovering and managing application
  • Nmap
    Nmap

    Nmap is a security scanner originally written by Gordon Lyon .It may be used to discover computers and services on a computer network, thus creating a "map" of...
  • Ettercap
    Ettercap (computing)

    Ettercap is a Unix and Microsoft Windows tool for computer network protocol analysis and computer security Information technology security audit....
  • Wireshark
    Wireshark

    Wireshark is a free packet sniffer computer Application software. It is used for computer network troubleshooting, analysis, software and communications protocol development, and education....
     (formerly known as Ethereal)


BackTrack's functionality further increases with the arrangement of each tool in 16 categories. The tool categories are as follows -

  • Enumeration
    Enumeration

    In mathematics and theoretical computer science, the broadest and most abstract definition of an enumeration of a Set is an exact listing of all of its element s ....
  • Exploit
    Exploit (computer security)

    An exploit is a piece of software, a chunk of data, or sequence of commands that take advantage of a software bug, glitch or vulnerability in order to cause unintended or unanticipated behavior to occur on computer software, hardware, or something electronic ....
     Archives
  • Scanners
    Vulnerability scanner

    A vulnerability scanner is a computer program designed to search for and map systems for weaknesses in an application, computer or network. Step 1, typically the scanner will first look for active IP addresses, open ports, OSes and any applications running....
  • Password Attacks
  • Fuzzers
  • Spoofing
    Spoofing attack

    In the context of network security, a spoofing attack is a situation in which one person or program successfully masquerades as another by falsifying data and thereby gaining an illegitimate advantage....
  • Sniffers
  • Tunneling
    Tunneling protocol

    The term tunneling protocol is used to describe when one network protocol called the payload protocol is encapsulation within a different delivery protocol....
  • Wireless
    Wireless

    Wireless communication is the transfer of information over a distance without the use of electrical conductors or "wires". The distances involved may be short or long ....
     Tools
  • Bluetooth
    Bluetooth

    Bluetooth is a wireless protocol for exchanging data over short distances from fixed and mobile devices, creating personal area networks . It was originally conceived as a wireless alternative to RS232 data cables....
  • Cisco
    Cisco

    Cisco may refer to:Companies:* Cisco Systems, a computer networking company* Certis CISCO, corporatised entity of the former Commercial and Industrial Security Corporation in Singapore....
     Tools
  • Database Tools
  • Forensic Tools
  • BackTrack Services
  • Reversing
    Reverse engineering

    Reverse engineering is the process of discovering the technological principles of a device, object or system through analysis of its structure, function and operation....
  • Misc


In relation to basic software packages, BackTrack includes some ordinary desktop programs such as Mozilla Firefox
Mozilla Firefox

Mozilla Firefox is a web browser descended from the Mozilla Application Suite and managed by Mozilla Corporation. Official versions are distributed under the terms of the proprietary EULA....
, Pidgin
Pidgin

A pidgin is a simplified language that develops as a means of communication between two or more groups that do not have a language in common, in situations such as trade....
, K3b
K3b

K3b is a Compact Disc and DVD optical disc authoring application for the KDE desktop environment for Unix-like computer operating systems. It provides a graphical user interface to perform most CD/DVD burning tasks like creating an Audio CD from a set of audio files or copying a CD/DVD, as well as more advanced tasks such as burning eMoviX C...
, and XMMS
XMMS

The X Multimedia System is a free software audio player very similar to Winamp, that runs on many Unix-like operating systems.History ...
.

Releases


Date Release
May 26, 2006 The BackTrack project released its first non-beta version (1.0).
October 13, 2006 BackTrack 2 first public beta released.
November 19, 2006 BackTrack 2 second public beta released.
March 6, 2007 BackTrack 2 final version released.
December 17, 2007 BackTrack 3 first beta release.
June 19, 2008 BackTrack 3 final released.
February 11, 2009 BackTrack 4 first beta release. (It's now based on Debian
Debian

Debian GNU/Linux is one of the most popular and influential computer operating systems composed of free software and open source software....
)
As soon as newer versions of the BackTrack distro are released, older versions lose their support and service from the BackTrack development team.

Criticism

The BackTrack 2 release garnered some criticism. The security suite did not include the popular security scanner Nessus
Nessus (software)

In computer security, Nessus is a proprietary comprehensive vulnerability scanning software. It is free of charge for personal use in a non-enterprise environment....
, due to various licensing problems. Newer releases also created problems with PostgreSQL
PostgreSQL

PostgreSQL is an object-relational database management system . It is released under a BSD licenses and is thus free software. As with many other open-source programs, PostgreSQL is not controlled by any single company, but has a global community of developers and companies to develop it....
 in Fluxbox
Fluxbox

In Unix computing, Fluxbox is an X window manager fork on Blackbox 0.61.1. It aims to be lightweight and customizable, and has minimal support for graphical icon ....
 which created an error, as well as the inclusion of programs such as the aforementioned Nessus and VMware
VMware

VMware, Inc. is a software developer of virtualization software. The company was founded in 1998 and is based in Palo Alto, California. The Company is majority owned by EMC Corporation ....
 which did not work.

Training

The Backtrack security distro has spawned a spin-off training course called Offensive Security, as well as the Offensive Security Certified Professional certification. This training course teaches basic penetration test
Penetration test

A penetration test is a method of evaluating the computer security of a computer system or computer network by simulating an attack from a malicious source, known as a Hacker_%28computing%29#Black_Hat_Hacker hacker , or Cracker....
ing using the Backtrack Live CD.

See also

  • Knoppix STD
    Knoppix STD

    Knoppix STD was a Live CD Linux distribution based on Knoppix that focused on computer security tools. It included GNU General Public License licensed tools in the following categories: authentication, password cracking, encryption, computer forensics, Firewall , Honeypot s, intrusion detection system, network utilities, Penetration , packet...


External links