Network security analysis takes a lot of experience, the best way you can get real world experience is by setting up your own testing environment lab. Download WireShark and TCPDUMP – these tools will be used to monitor live traffic you will generate. Make sure you have some type of Virtual Machine software and here are a few sites that have vulnerable software you can attack and log as well as exploits to use.
Setup Metasploitable on VMware
- http://sourceforge.net/projects/metasploitable/files/Metasploitable2/.
- Password : msfadmin:msfadmin
- Download and install syslog-ng
- http://www.balabit.com/network-security/syslog-ng
- Add host/ip to Linksys router
- Setup Metasploit on Windows
- http://www.metasploit.com/help/test-lab.jsp
- Setup XAMP on Windows VM
- Setup Damn Vulnerable Web App on VM
- Setup FTP server on Windows PC
http://www.exploit-db.com/exploits/18434/
http://www.exploit-db.com/exploits/23079/
http://www.exploit-db.com/exploits/23082/
http://dvwa.googlecode.com/files/DVWA-1.0.7.zip