Open Source Auditing Tools

By | 2012/02/29

Here are various open source tools that are useful for security auditing!

If you are a consultant, or an admin that just likes to be on top of his game, these are free open source tools that help audit the security level of workstations and servers in your environment.

Note: These are by nature Linux-friendly apps. I suggest using BackTrack in a virtual machine on your laptop if you do not use Linux in order to easily get access to these (and many more!) tools.


Vulnerability Management

http://www.tenable.com/products/nessus

http://www.openvas.org/


Internal Security Auditing (Linux/POSIX)

http://www.nongnu.org/tiger/


Workstation and Software Inventory Management

http://www.open-audit.org/


Network and Packet Analysis

http://www.wireshark.org/


Pen Testing

http://www.metasploit.com/


Web Application Testing

http://w3af.sourceforge.net/


Network Discovery Scanner

http://nmap.org/


Other

BackTrack Linux – should be in every security admin’s back of tricks!

http://www.backtrack-linux.org/


Cool!

Leave a Reply

Your email address will not be published. Required fields are marked *

Notify me of followup comments via e-mail. You can also subscribe without commenting.