Being penetration tester

You have to accomplish the following task:
- You have to check what security holes can be exploited on your dedicated firewall machine
and
- You have to make a report about that.

And here come my questions:
- What tools would you use to check if your firewall (and your LAN) is configured properly?
- How would you write the report?


Here are the tools that i would use: nmap, hping, nc, sing, icmpenum, Languard Network Scanner (GFI), Retina (eEye).

What about you?

Under the Security and Firewalls topic in the forum, Sahirh wrote an article called "Penetration Testing - Tools Of The Trade," it tells you the popular tools used, how to write the reports, and some other helpful stuff, here's the link:
firewall.cx/modules.php?name=Forums&...=viewtopic&t=356
if you decide to take the long way, it's the 2nd page in that topic


hope that helps

Under the Security and Firewalls topic in the forum, Sahirh wrote an article called "Penetration Testing - Tools Of The Trade," it tells you the popular tools used, how to write the reports, and some other helpful stuff, here's the link:
firewall.cx/modules.php?name=Forums&...=viewtopic&t=356
if you decide to take the long way, it's the 2nd page in that topic


hope that helps

I have to apologize because i havent searched very well between threads.
Basically this is what i was looking for:
www.firewall.cx/articles-network-security-intro-7.php

Don't forget firewalk, I don't know if I mentioned it there (yes you can use hping, but there is more scope for a small mistake).

Check out hping3.. the scriptability is incredible (ok so I haven't got it figured out much yet, but from what I've seen in the examples etc.. its just too awesome).

Cheers,