On Fri, Jul 24, 2015 at 04:20:17PM -0400, Bryan C. Everly wrote: > Recently I came to the realization that, while OpenBSD is a > security-oriented operating system, many of the security professionals > out there were using Kali Linux for their work doing penetration > testing of networks and applications. > > I think the reason for this is that very few of the security-oriented > testing tools were available in ports/packages within OpenBSD.
This is partly because some of these tools are themselves security problems. The Wireshark port was removed from the tree in 2004 because it had such a bad record and was only replaced a year ago. That said, they could therefore benefit from OpenBSD's exploit mitigations. The few times I used Kali Linux I noticed that many of the tools seemed to make hard-coded Linuxy assumptions about interfaces etc. Have you had problems with that?
