Just introduced the launch of the new version of the distribution Linux NST 32-11992 (Network Security Toolkit) which is a live distribution that is designed for network security analysis and monitor its operation.
This Linux distribution includes a large selection of applications related to network securityFor example: Wireshark, NTop, Nessus, Snort, NMap, Kismet, TcpTrack, Etherape, nsttracroute, Ettercap, a network interface broadband monitor, an ARP Network Segment scanner, a session driver for VNC, a Terminal server based on WPA PSK and serial port minicom monitoring management.
For web developers, there is also a console in javascript that contains object library with functions that help the development of dynamic web pages.
Many tasks that can be carried out within the HSM they are available through a user interface called the HSR GUI.
To manage the security verification process and call automation of various utilities, a special web interface has been prepared, which also integrates a web interface for the Wireshark network analyzer, in addition to the graphical environment of the distribution is based on FluxBox.
What's new in Network Security Toolkit 32-11992?
In this new version of the distribution the base is synced with Fedora 32 and on the part of kernel, we can find the version 5.6 along with updates to the latest versions supplied as part of the application.
Regarding the changes that stand out in this new version of Network Security Toolkit 32-11992, a page has been added to the NST WUI web interface to display the statistics of Wireshark tshark, which provides information about the data exchange between two selected hosts.
Besides that it is possible to filter the traffic by type and customize the fields shown. The results are provided in the form of a table, which can then be analyzed in the NST Network Tools widgets.
The bandwidth monitoring component of the network interface, NST Network Interface Bandwidth Monitor, has been updated to include support for accessing data via WebSocket to improve data transfer efficiency, plus a new peak load tracking widget has been added.
A page has been added to the web-based interface for quick directory scanning using the dirble utility. Dirble integrated with word list generated in CeWL.
Of the other changes that stand out from this new version:
- The mtraceroute (Multi-Traceroute) application is part of the main Scapy project.
- The framework includes the fwknop application with the implementation of the SPA authorization scheme.
- A new page for MeshCommander has been added to the web interface: Remote Control Applications with Intel AMT Remote Management;
- Integrated Dump1090 application to track aircraft movements based on signal reception from ADS-B Mode S transmitters.
- The web interface has a page for cropping and scaling images (using Cropper.js).
Download
For those who are interested in being able to test this distribution, they will be able to obtain the iso image of the system, which is only available on the x86_64 architecture and which is 4,1 GB in size, from the link below.
You can record the image on a pendrive with the help of unetbootin which you can get from its official website or if you use a Linux distribution, you should know that most of them have the package in their repositories
To install from Debian and derivatives:
sudo apt-get install unetbootin
For Red Hat, CentOS, Fedora, or derivatives:
sudo yum install unetbootin
Finally in the case of Arch Linux:
sudo pacman -S install unetbootin
As mentioned, the distribution is designed to work in live mode, although it can also be installed and the process does not differ from Fedora.
In addition, a special repository has been prepared for Fedora users, which allows to install all the developments created by the NST project on an already installed system.