Task bots

[jcglazier]

Just an idea, for some of the common tasks, such as WEP cracking, sniffing etc etc, it may be possible for bots to be created saving the recquired typing and opening of several shell windows?

[imported_wyze]

Just an idea, for some of the common tasks, such as WEP cracking, sniffing etc etc, it may be possible for bots to be created saving the recquired typing and opening of several shell windows?

Airoscript, Fast-Track...etc

[imported_SuspectZero]

Just an idea, for some of the common tasks, such as WEP cracking, sniffing etc etc, it may be possible for bots to be created saving the recquired typing and opening of several shell windows?

wouldnt those be programs/applications rather than bots :S

[Barry]

wouldnt those be programs/applications rather than bots :S

Pretty much. Probably wouldn't be too hard to set up a system to automagically capture handshakes and start testing for bad passwords though. Would make some interesting statistics for something like wigle. You know, found 240 new ssid's, 100 with wep, 90 with wpa and dictionary passwords, 50 with wpa and good passwords. I don't know how it could be done and still stay even close to legal though. Even if you created the program so it stripped the gps coordinates and then once it did a pass/fail wiped the origional ssid. You've still captured the handshake, which is bad.

[KMDave]

Could we also have a bot for turning on my computer and doing my work?

Sorry but I think applications like SpoonWep/WPA are so much automated that it is not beneficial at all.

I mean people won't understand what's going on at all if they just hit start and have everything in their area scanned automatically. People who know how to do that on the command line and want to save time usually also have the knowledge on how to write a small script or application to save time. As I said I really appreciate if people make the effort and also share these apps/scripts with the community. I just think that these tools attract a lot of people who have no real knowledge and think that they are l33t cause they can press the start button.

[streaker69]

Could we also have a bot for turning on my computer and doing my work?

The new version of our SCADA software has a 3D rendering engine that looks surprisingly like Quake or Unreal. When I mentioned it would be cool to have Bot operators in our SCADA system, no one seemed to be as amused by it as I was.

[cgkades]

I agree, with applications out there like metasploit and the like, it seems to decrease "learning" of how things work. I've tried metasploit on some of my systems, but I'd rather know whats going instead of just clicking buttons. Too many script kiddies as it is. Anything I want to "automate" I write the script my self, everything else, I'll learn to do it the hard way.

[Oktain]

I agree, with applications out there like metasploit and the like, it seems to decrease "learning" of how things work. I've tried metasploit on some of my systems, but I'd rather know whats going instead of just clicking buttons. Too many script kiddies as it is. Anything I want to "automate" I write the script my self, everything else, I'll learn to do it the hard way.

Using metasploit still requires quite a bit of "know how", but I still see what you mean. Programs like SpoonWep are more along the lines that really suck the "learning" out of it. (And I say that with no offense to the authors of such programs. I create my own scripts for repetitive tasks, so i know that are useful)

Just an idea, for some of the common tasks, such as WEP cracking, sniffing etc etc, it may be possible for bots to be created saving the recquired typing and opening of several shell windows?

Back Track is meant for testing vulns, pen testing, PoCs, etc.....not for cracking into the house down the road to see what type of porn they are into and then wiping their drive for kicks.

If you are using back track for what it is meant for then a few things should be assumed (Yes, I know what happens when you assume):

• You know how to use the CLI utilities or are able to learn them by using internet resources...

• You can write your own scripts for tasks that you perform regularly

• You already know that most all the "hard" CLI tools have an "easy" GUI, or someone has made a similar tool with a GUI. (Zenmap, Maltego, Ettercap, Fast-track, Metasploit, W3AF GUI, SpoonWep...I think I have made my point)

Short Version: The tools are already out there for the most part, and if not, it's pretty easy to write a script to automate CLI driven tools.