|
(Page 1 of 4) 1 2 3 4 Next > Category: Auditing » Network » Trojans & Backdoors XNmap Added 2006-03-22 A GUI for nmap, written in Cocoa Nessus Added 2003-11-06 Nessus is a remote security scanner for Linux, BSD, Solaris, and other Unices. It is multi-threaded and plug-in-based, has a GTK interface, and performs over 500 remote security checks. It allows for reports to be generated in HTML, XML, LaTeX, and ASCII text, and suggests solutions for security problems. DDoSPing Added 2002-03-29 DDoSPing is a remote scanner for the most common Distributed Denial of Service programs (often called Zombies by the press). These were the programs responsible for the recent rash of attacks on high profile web sites. This tool will detect Trinoo, Stacheldraht and Tribe Flood Network programs running with their default settings, although setup of each program type is possible from the configuration screen. Scanning is performed by sending the appropriate UDP and ICMP messages at a controlable rate to a user defined range of addresses. Feedback appreciated. CodeBlue Added 2002-03-14 CodeBlue is an attempt to increase the awareness of hosts that are infected with malicious worms by scanning Apache log files and emailing the infected hosts with details of their infection and how to obtain help removing the worm. Currently, CodeBlue scans Apache logs for Code Red, Code Red 2, and Nimda. Advanced Administrative Tools Added 2002-03-14 AATools for Windows is a great set of utilities for analyzing network properties. It will test pretty much every network operation you could want to know about. AATools will check Email properties, Scan ports and proxies, give network and system statuses, clean up unnecessary registry entries in your registry, etc. The information it conveys is easy to digest and setting up a test is likewise very simple. A worthwhile download for anyone wanting to gather info on their network or PC. AATools should be a part of your security toolkit and you should employ them regularly. Vision Added 2002-02-26 Vision, Foundstone's newest forensic product, is an essential part of a computer security professional's tool-kit. Vision maps all of a host's executables to corresponding ports, allowing you to identify and investigate suspicious services. Vision enables you to interrogate suspect services to identify backdoors and Trojan applications. If a malicious service is identified, Vision allows you to immediately kill it. Boping Added 2002-02-26 BOPing is a network scanner for the infamous Back Orifice Nemesis Added 2001-10-22 This tool claims to search (locally and via subnet scanning) for listening ports that may indicate trojans such as back oriface. Narrow Security Scanner (Unix/Perl) Added 2001-10-22 Narrow Security Scanner 2000 (Unix /Perl) searches for 367 remote vulnerabilities. SBScan Added 2001-10-22 SBScan is a tool designed to assist system administrators who can't be bothered doing anything by hand. Currently this tool checks for the following; Anonymous FTP, Unpassworded accounts, Open Ports / l33t Open Ports, Entire Subnet Promisc Check, Local Machine Promisc Check, Suspicious Files, RHost files, Sniffer check - Log files, Suid programs in slash home, Evidence of a Rootkit, X Hosts allowed to connect, permissions on vital directories, log file permissions, NFS basic check, and it makes MD5 sums of common files. Browse by category |
|
|
Privacy Statement |
