Definition of Auditing Tools
Tools used to examine systems, programming and datacenter procedures in order to determine the efficiency of computer operations.
|
|
Auditing Tools
NTP fingerprinting utility
ntp-fingerprint is an active fingerprinting utility specifically designed to identify the OS the NTP server is running on.
Read the Article
|
PacketMaster
ThePacketMaster Linux Security Server is a CD-based security auditing tool that boots and runs penetration testing and forensic analysis tools. It is handy for security auditors. Some tools included are nessus, ethereal, The Coroner's Toolkit, chntpw, and minicom. It includes modules for any Linux 2.4.20 SCSI driver.
Read the Article
|
Packit
Packit (Packet toolkit) is a network auditing tool. Its value is derived from its ability to customize, inject, monitor, and manipulate IP traffic. By allowing you to define (spoof) nearly all TCP, UDP, ICMP, IP, ARP, RARP, and Ethernet header options, Packit can be useful in testing firewalls, intrusion detection/prevention systems, port scanning, simulating network traffic, and general TCP/IP auditing. Packit is also an excellent tool for learning TCP/IP.
Read the Article
|
PIKT
PIKT is cross-categorical, multi-purpose software to monitor and configure computer systems, report and fix problems, manage system security, arrange job scheduling, format documents, install files, assist command-line work, and perform many other common tasks. PIKT is intended primarily for system monitoring, and secondarily for configuration management, but its flexibility and extendibility evoke many other uses limited only by your imagination.
Read the Article
|
PL/SQL port scanner
PL/SQL port scanner is a TCP CONNECT port scanner in PL/SQL code. In order to run these procedures you must have access to the UTL_TCP package. By default the DBSNMP user has access to this package. The tool can be usefull during penetration testing if you want to gain more knowledge about the networks residing behind the actual database. Also, if you can access an Oracle database only through SQL injection or sqlplus use now have a simple functioning port scanner within the database system.
Read the Article
|
Proactive Password Auditor
Proactive Password Auditor™ helps secure networks by executing an audit of account passwords, and exposing insecure account passwords. If it is possible to recover the password within a reasonable time, the password is considered insecure. An administrator can also use it to recover any lost password and access a user's Windows® account. Proactive Password Auditor™ works by analyzing user password hashes and recovering plain-text passwords.
Read the Article
|
Qmail-Scanner
Qmail-Scanner is an add-on that enables a Qmail e-mail server to scan all gateway-ed e-mail for certain characteristics (i.e. a content scanner). It is typically used for its anti-virus protection functions, in which case it is used in conjunction with external virus scanners. but also enables a site (at a server/site level) to react to e-mail that contains specific strings in particular headers, or particular attachment filenames or types (e.g. *.VBS attachments). It also can be used as an archiving tool for auditing or backup purposes.
Read the Article
|
RATS
Rough Auditing Tool for Security - is an open source tool developed and maintained by Secure Software security engineers. Secure Software was acquired by Fortify Software, Inc. RATS is a tool for scanning C, C++, Perl, PHP and Python source code and flagging common security related programming errors such as buffer overflows and TOCTOU (Time Of Check, Time Of Use) race conditions.
Read the Article
|
ShowTraf
Show Traffic - monitors network traffic on the chosen network interface and displays it continuously. It could be used for locating suspicious network traffic or to evaluate current utilization of the network interface.
Read the Article
|
SpiderFoot
SpiderFoot is a free, open-source, domain footprinting tool. Given one or multiple domain names (and when I say domains, I'm referring to the DNS kind, not Windows domains), it will scrape the websites on that domain, as well as search Google, Netcraft, Whois and DNS.
Read the Article
|
|
|
Page: 1 2 3 4
Members currently browsing this category:
|
|
