What software and hardware do the pentesters of /g/ carry?
>implying there are pentesters here and not just shitposters
Pretty much anything. Testing pens isn't exactly difficult.
>>57106834
hardware is irrelivant, everything is done from a vm. bonus points for physical Ethernet port. last company i was at was a macbook pro shop. now i use a thinkpad p460.
software depends on what the job is. most on site network stuff has nessus scanning in the background, run responder to mitm netbios shit. port scan on 80 to find internal web apps, and then start looking at those manually with burp running in the bg for reporting.
for forensics, its mostly TSK / volatility wrapped in scripts i wrote.
appsec gets .net reflector ,ida / x64dbg, or whatever the jad
Been a professional pen tester for 10 years now. Started working in a stationery, where I first realized my skills. Often the customers would come back and complain that their pens didn't work, so I tested them. I was really good at it, sometimes they did work but people didn't know how to use them (eg, they didn't take the cap off), sometimes they didn't work so I gave them good ones and filed a report on the status of each pen. I started sending reports to the manufacturer until one day I received a letter saying that my tests had helped increase the quality of their pens. Then I just traveled going to big stores such as office depot to do pen tests on their pens, I particularly enjoyed testing fountain pens. Some expensive pens have been in my hands for quality assesment.
Now I intend to switch careers though, I want to test calligraphy brushes and airbrushes. However, all my experience has ever been with pens and I am unsure about starting something as new as brushes.
Any advice?
>>57106935
thanks
>>57106955
You seem bored of being a pen tester so I'd say move onto being an airbrush tester
I use one of these almost every day
>>57106834
I just carry a pen
I use a custom build of kali running on gentoo