http://www.netxeyes.com/bbs/viewthread.php?tid=111&fpage=1&page=1 痞痞 Administrator The best 75 security tools in 2000 5, June, NMAP-HACKERS mail list The selection of the best security tools, the event has been successful, and finally the 50 best security tools were selected by 1200 NMAP users. The selection results were published in the INSecure.org website, got the universal recognition of netizens. Three years, the NMAP-HACKERS mail list has launched the same selection activity, 1854 users participated in this event, and each user can choose up to 8 best tools, and this time the best security tool It is increased from 50 to 75. Because it is a selection made in the NMAP-HACKERS mail list, there is no selection of the NMAP security scanner (http://www.insecure.org/nmap/). This selection of 75 best security tools are some of the very representative software in the network security, which has considerable reference value for them for those who have started from the newcomers. . Tools: NESSUS (the best open source risk assessment tool) URL: http://www.nessus.org/ Category: Open Source Platform: Linux / BSD / Unix Description: Nessus is a run in Linux, BSD, Solaris and remote security scan software on other systems. It is multi-thread, based on inserted software, has a good GTK interface, can complete more than 1,200 remote security checks, have powerful report output capabilities, can generate security reports in HTML, XML, Latex, and ASCII text And will solve the recommendations for each discovered security issue. Tool: Ethereal URL: http://www.ethereal.com/ Category: Open Source Platform: Linux / BSD / Unix / Windows Description: Ethereal is a free network protocol analysis program that supports UNIX, Windows. With this program, you can analyze both directly from the network, or you can analyze the data saved on the hard disk after grabbing other sniffer. You can view the captured packets interactively, see summary and details of each packet. Ethereal has a variety of powerful features, such as supporting almost all protocols, rich filtering languages, easy to see data streams after the TCP session is reconstructed. Tool: Snort (Free Intrusion Detection System) URL: http://www.snort.org/ Category: Open Source Platform: Linux / BSD / Unix / Windows Description: Snort is a lightweight network intrusion detection system, Real-time traffic analysis and packet records can be performed on the IP network. It can not only make protocol analysis, content retrieval, content matching, but also to detect a large number of attacks or illegal probes such as buffer, hidden port scan, CGI attack, SMB detection, operating system fingerprint identification. Snort uses flexible rules to describe which traffic should be collected or ignored, and a modular detection engine is provided.
Tools: Netcat (Network Swiss Army Knife) Website: http://www.atstake.com/research/toLS/network_utilities/ Category: Open Source Platform: Linux / BSD / Unix / Windows Description: A simple and useful tool, through Use the TCP or UDP protocol to read and write data. It is designed to be a stable back door tool that can be easily driver directly from other programs and scripts. At the same time, it is also a powerful network debugging and detection tool that can build almost all types of network connections you need, and there are several very interesting built-in features. Tools: TCPDUMP / WINDUMP (Excellent sniffer for network monitoring and data collection) URL: http://www.tcpdump.org/, http: //windump.polito.it/ Category: Open Source Platform: Linux / BSD / UNIX / Windows Description: TCPDUMP is a well-known and popular command-based network packet analysis and sniffing tool. It can display the header of the packet of the matching rule. You can use this tool to find a network problem or monitor the situation on the network. WINDUMP is a transplant version of TCPDUMP on a Windows platform. Tool: HPING2 (similar to Ping Network Detection Tool) URL: http://www.hping.org/ Category: Open Source Platform: Linux / BSD / Unix Description: HPING2 can send a custom ICMP / UDP / TCP package to the target The address and the response of the package is displayed. It has a convenient Traceroute mode and supports IP fragmentation. This tool is particularly useful when traceroute, ping, and probing firewall. Tools: DSNIFF (First-class Network Audit and Penetration Test Tools) Website: http://naughty.m& # 111nkey.org/~ DUGSONG/DSNIFF / Category: Open Source Platform: Linux / BSD / Unix / Windows Description: DSNIFF is made by A set of software developed by Dug Song has a plurality of tools. Among them, DSNIFF, Filesnarf, Mailsnarf, Msgsnarf, Rlsnarf, and WebSPY can be used to monitor data we are interested in the network (such as passwords, e-mail, files, etc.), Arpspoof, DNSSPOOF and Macof can easily load attackers. Network information (such as two-layer exchange data), SSHMITM and WebMitm can be used to rewrite SSH and HTTPS sessions to reach the M & # 111NKEY-IN-The-Middle attack. At http://www.datanerds.net/~mike/dsniff.html, you can find the transplant version on the Windows platform. Tools: GFI Languard URL: http://www.gfi.com/lannetscan/ Category: Business Platform: Windows Description: Languard Scanning Network and draws a service pack level such as each machine, A lack of security patches, open shared, open ports, running services and applications, registry keys, weak passwords, users, and groups of scanning information. The scan results are output to an HTML format report, and the report can be customized.
Tools: etccon (more security for your exchange environment) URL: http: //ttercap.sourceforge.net/ Category: Open source platform: Linux / BSD / UNIX / Windows Description: ettercap is an Ethernet environment Network monitoring, blocking and recording tool, supporting multiple active or passive protocol analysis (even SSH, HTTPS, etc. related to encryption), data insertion, filtering, maintaining connection synchronization, etc., there is also a support Sniff mode, powerful and complete sniffing kit, support plug-ins, is able to check if the network environment is a swap LAN, and can use the active or passive operating system fingerprint identification technology to let you know the current LAN. Tools: WHINKER / LIBWHISKER (CGI Defect Scanning Software and Library) URL: http://www.wiretrip.net/rfp/p/doc.asp/d21.htm Category: Open Source Platform: Linux / BSD / UNIX / Windows Introduction : Whisker is a very good HTTP server defect scanning software that scans a lot of known security vulnerabilities, especially some dangerous CGI vulnerabilities. Libwhisker is a library used by Whiskerr with Perl, which you can create your own HTTP scanner. Tools: John The Ripper (exceptionally powerful, flexible, fast multi-platform Hardi) URL: http://www.openwall.com/john/ Category: Open Source Platform: Linux / BSD / Unix / Windows Description: John The Ripper is a fast password breakner that supports multiple operating systems such as UNIX, DOS, WIN32, BEOS, and OpenVMS. The main purpose of its design is to check the weak password of the UNIX system, support the password hash type with Crypt function encrypted on almost all UNIX platforms, and also supports Kerberos AFS and Windows NT / 2000 / XP LM Hash. Tool: OpenSSH / SSH (a security method for accessing remote computers) URL: http://www.openssh.com/ ,http://www.ssh.com/commerce/index.html Category: Open Source / Business Platform : Linux / BSD / Unix / Windows Description: SSH (Secure Shell) is a program for logging in to the remote server and executes commands on the remote server, which can give two mutually distrusting hosts on the lack of security protection. Provide safe and reliable encrypted communication. The X11 connection and other other TCP / IP port connections can be forwarded to a secure channel via SSH. The interation of SSH development is to replace these unsafe programs in Rlogin, RSH, and RCP, and provide secure channels for RDIST and RSYNC. It should be noted that OpenSSH is an alternative software of SSH, SSH is to charge for some purposes, but OpenSS is always free.
Tool: SAM Spade (Free Network Query Tools on Windows Platform): http://www.samspade.org/ssw/ Category: Free Software Platform: Windows Description: Samspade provides a friendly GUI interface that can be easily completed A variety of network query tasks, its development is intended to trace spam makers, but can also be used for other large number of network probes, network management and security-related tasks, including ping, nslookup, whois, DIG, TraceRoute, Finger, RAW HTTP Web Browser, DNS ZONE TRANSFER, SMTP RELAY CHECK, Website Search and other tools, there is also a online version of most query tools in its website (http://www.samspade.org/t/). Tools: ISS Internet Scanner (application level Risk Assessment Tool) URL: http: //www.iss.net/products_services/enterprise_protection /vulnerability_assessment/scanner_internet.php Category: Business platform: Windows Description: Internet Scanner (Internet Scanner) began A small open source scanner in 1992, it is quite good, but the price is expensive, using open source software NESSUS instead of it is also a good choice. Tools: TripWire (powerful data integrity check tool) URL: http://www.tripwire.com/ Category: Business Platform: Linux / BSD / UNIX / Windows Description: TripWire is a file and directory integrity check tool It helps system administrators and users monitor any changes that have occurred in some important files and directories. By developing some basic system strategies, the system administrator is notified by the tripwire when the file is destroyed or tampered with it, so that it can be handled in time. Tripwire's commercial version is very expensive, there is a free open source Linux version in the TripWire.org website, UNIX users may also need to consider AIDE (http://www.cs.tut.fi/~rammer/aide.html) It is a free alternative for Tripwire. Tool: Nikto (a very comprehensive web scanner) URL: http://www.cirt.net/code/nikto.shtml Category: Open Source Platform: Linux / BSD / Unix / Windows Description: Nikto is an energy The scanning software for testing a variety of security items of the web server can scan more than 2,000 potentially dangerous files, CGIs, and other issues on more than 200 servers. It also uses the libwhiske library, but usually more frequent than the WHINKER update.
Tools: Kismet (powerful wireless sniffer) URL: http://www.kismetwireless.net/ Category: Open source platform: Linux / BSD / UNIX / Windows Description: Kismet is an 802.11b network sniffing and analytical program Features: Support Most wireless network cards, automatically implement network IP block detection via UDP, ARP, DHCP packets, can list Cisco devices, weak encrypted packet records, and Ethereal, Tcpdump compatible packets via the Cisco Discovery protocol DUMP files, draw the detected network diagram and estimated network range. Tools: SuperScan (TCP Port Scanner on Windows Platform) URL: http://www.foundstone.com/index.htm? Subnav = Resources / Navigation.htm & Subcontent = / Resources / PRODDESC / SuperScan.htm Category: Free platform: Introduction to Windows: Superscan is a tool with functions such as TCP Connect port scan, ping, and domain name resolution, which can easily make ping and port scans for IP addresses within the specified range. The source code is not disclosed. Tools: L0PHTCRACK 4 (Windows Password Auditing and Recovery) URL: http://www.atstake.com/research/LC/ Category: Business Platform: Linux / BSD / Unix / Windows Description: L0PHTCRACK Try Now from independent Windows NT / 2000 Workstation, web server, main domain controller, or Active Directory is justified or sniffed from the encrypted hasction that sniffs on the line, and contains a variety of passwords such as dictionary attack, combined attacks, forced attacks. method. Tools: Retina (Eeye's risk assessment scanning tool) URL: http://www.eeye.com/html/products/retina/index.html Category: Business Platform: Windows Introduction: Nessus and ISS Internet Like the Scanner, Retina's function is also used to scan all hosts in the network and each defect discovery. Tool: Netfilter (Current Linux kernel adopted package fireasted firewall) URL: http://www.netfilter.org/ Category: Open Source Platform: Linux Introduction: Netfilter is a powerful package filter firewall, in standard Linux kernel Implementation, iptables is a firewall configuration tool. It now supports a state or stateless package filter that supports all kinds of NAT and package fractions. Correspondingly, for the firewall on the non-Linux platform, there is PF on the openbsd platform, and there is IPFilter on the UNIX platform. There is Zone Alarm personal firewall on the Windows platform. Tools: Traceroute / Ping / Telnet / WHOIOIOIS (Basic Command) URL: Category: Free Platform: Linux / BSD / UNIX / Windows Description: When we use a large number of high-level tools to assist in security audits, don't forget these The most basic tool.
Each of us should be very familiar with these tools, almost all operating systems with these tools, but there is no WHOIS tool on the Windows platform, and Traceroute is renamed to Tracert. Tools: fport: http://www.foundstone.com/index.htm? Subnav = Resources / Navigation.htm & Subcontent = / Resources / PRODDESC / FPORT.HTM Category: Free Platform: Windows Description: Fport can Displays all the processes to which the TCP / IP, UDP port, and ports on the host are displayed, so it is a good tool for finding Trojans by using it to instantly discover unknown open ports and the applications belonging to the port. However, fport only supports Windows systems, there is a netstat command on many UNIX systems to implement similar functions, and use the "NetStat -Pan" command on the Linux system. The source code is not disclosed. Tools: SAINT (Integrated Network Tools for Security Administrators): http://www.saint Category: Business Platform: Linux / BSD / UNIX Description: Saint is a commercial risk assessment tool, but Unlike those tools that only support Windows platforms, Saint runs on the UNIX class platform, which has been free and open source, but is now a commercial product. Tools: NetWork Stumpler (Free Windows Platform 802.11 Skick) URL: http://www.stumbler.net/ Category: Free Platform: Windows Description: NetStumbler is the most famous tool to find wireless access points, another support The WINCE platform version of the PDA is called ministumbler. This tool is now free and only supports Windows systems, and the source code is not disclosed, and the developer of the software also retains the right to modify the authorization protocol in the appropriate case. Users on the UNIX system can use Kismet instead. Tool: SARA (security administrator's auxiliary tool) URL: http://www-arc.com/sara/ Category: Open Source Platform: Linux / BSD / Unix Introduction: SARA is a SATAN security scanning tool development Risk assessment tool, update twice a month. Tool: N-Stealth URL: http://www.nstalker.com/nstealth/ Category: Business Platform: Windows Introduction: N-Stealth is a commercial web server security scan software, usually it More frequently upgraded than WHINKER, NIKTO and other free web scanners. The N-Stealth developer claims that "more than 20,000 defects and Exploit data" and "a large amount of defects every day" are very suspicious. We must also note that all common risk assessment tools such as Nessus, ISS, Retina, Saint and Sara have already contained Web scanning components, but they may not have flexible and frequent and updated in N-Stealth. N-Stealth does not publicly open source.
Tools: Airsnort (802.11 WEP Password Crack) URL: http://airsnort.shmoo.com/ Category: Open Source Platform: Linux / BSD / Unix / Windows Description: Airsnort is a wireless LAN Key Recovery Tool, from Shmoo Group development. It monitors transmission data in the wireless network, and the key can be calculated when a sufficiently packet is collected. Tools: NBTSCAN (Collect Netbios Information from Windows Network) URL: http://www.inetcat.org/software/nbtscan.html Category: Open Source Platform: Linux / BSD / Unix / Windows Description: NBTScan is a scan The program of NetBIOS name information on the network. This program sends a NetBIOS status query for each address within the range, and listed the received information with easy-to-read tables, for each response host, it lists its IP address, NetBIOS computer name, login user Name and MAC address. Tools: GNUPG / PGP (Advanced Encryption Program for Protecting Your Files and Communication Data) URL: http://www.gnupg.org/, http://www.pgp.com/ Category: Open Source / Business Platform: Linux / BSD / UNIX / Windows Description: PGP is a famous encrypted program developed by Phil Zimmerman. It combines public key encryption algorithm and conventional encryption technology to securely pass the encrypted file to another. This protects the user's data from eavesdropping or other security risks. GNUPG is an open source program developed in accordance with PGP standards. The GNUPG is always free, and PGP is charged for some purposes. Tools: FireWalk (Advanced Traceroute) URL: http://www.packetfactory.net/projects/firewalk/ Category: Open Source Platform: Linux / BSD / Unix Description: FireWalk uses technologies similar to Traceroute to analyze the response of IP packets, To determine the access control list of the gateway and draw a network diagram. In October 2002, this first-class tool was re-developed on the original basis. It should be noted that most of the features of FireWalk can also be implemented by the HPING2 TRAUTE option. Tools: Cain & Abel: http://www.oxid.it/cain.html Category: Free Platform: Windows Description: Cain & Abel is a free password recovery tool for Microsoft operating systems. It easily enables password recovery by multiple ways: network sniffing, cracking the password (using a dictionary or forced attack), decoding the chaos, display the password box, the display cache password, and the analysis routing protocol. The source code is not disclosed. Tools: Xprobe2 (Active Operating System Fingerprint Recognition Tools): http://www.sys-security.com/html/projects/x.html Category: Open Source Platform: Linux / BSD / Unix Introduction: Xprobe is a measurement Tools for remote host operating system types. It relies on the fuzzy matching and reasonable speculation of a signature database to determine the type of remote operating system, using the ICMP protocol to operate the system fingerprint identification is its uniqueness.
Tools: SolarWinds Toolsets (Large Web Discovery, Monitoring, Attack Tools): http://www.solarwinds.net/ Category: Business Platform: Windows Description: SolarWinds Contains a lot of tools that are suitable for system administrators, and security Related tools include many network discovery scanners and a SNMP power cutter. Tool: NGREP (convenient package matching and display tool) URL: http://www.packetFactory.Net/Projects/ngrep/ Category: Open source platform: Linux / BSD / Unix / Windows Description: Ngrep implements GNU in the network layer Most of GREP, based on PCAP, allows you to match the data traffic on your network by specifying extended regular expressions or hexadecimal expressions. It is currently recognized in TCP, UDP, and ICMP packets on the Ethernet, PPP, SLIP, FDDI, token network, and loopback devices, and understand BPF filtering as other common sniffings (such as TCPDUMP and SNOOP). mechanism. Tool: Perl / Python URL: http://www.perl.org, http://www.python.org/ Category: Open Source Platform: Linux / BSD / Unix / Windows Description: When we use those If you have developed a good security tool to handle the task, don't forget that you can write (or modify) security programs is also a very important thing. Using Perl and Python, you can easily write scripts for system testing, exploit, and patches, using CPANs containing NET:: RAWIP and protocol implementation, etc. (CompReensive Perl archive network: http: //www.cpan.org /) Or similar files can help us relatively easier to develop. Tools: THC-AMAP (Application Fingerprint Identification Scanner) URL: http://www.thc.org/releases.php Category: Open Source Platform: Linux / BSD / Unix Description: AMAP developed by THC is a powerful Scanner, which identifies applications and services by detecting port responses to application fingerprint data, which is much easier to determine applications and services by default port numbers. Tool: OpenSSL (Master SSL / TLS Encrypted Library) URL: http://www.openssl.org/ Category: Open Source Platform: Linux / BSD / Unix / Windows Description: OpenSSL project is a sound effort to develop a sound The toolkit of commercial grade, fully open and open source is used to implement the security socket protocol (SSL V2 / V3) and the Transport Layer Security Protocol (TLS V1), and a universal encryption library that forms a functional integrity. The project is managed by a group consisting of volunteers worldwide, and they use Internet to communicate, design, and develop this OpenSSL tool and related documentation.
Tools: NTOP (Network Usage Satisfaction Software) URL: http://www.ntop.org/ Category: Open Source Platform: Linux / BSD / Unix / Windows Description: NTOP is a traffic monitoring software that displays network usage. Similar to the TOP command to monitor the system process on the UNIX platform. In interactive mode, NTOP will display the usage status of the network on the user's terminal; in Web mode, NTOP will be a web server, create an HTML page containing network conditions to return to users. Tool: Nemesis (Unix Network Packet Insert Suite) URL: http://www.packetFactory.Net/Projects/nemesis/ Category: Open Source Platform: Linux / BSD / Unix Introduction: The Nemesis project is to develop one The Unix / Linux system is based on command line, which is convenient for people to use the IP stack, which can customize packets, insert packets, and protocol attacks, is a good test firewall, intrusion detection system, router and other network equipment. Tool of. If you are interested in Nemesis, then you may also need to see HPING2, which makes each other. Tools: LSOF (Listing Opened File) URL: ftp: //vic.cc.purdue.edu/pub/tools/unix/lsof / Category: Open Source Platform: Linux / BSD / Unix Description: Lsof is for UNIX Diagnostics and analysis tools, it can display the files opened by the process being running in the system, and the communication socket for each process can also be displayed. Tools: hunt (high-level package sniffing and session hijacking tool on Linux platform) URL: http://lin.fsid.cvut.cz/~kra/index.html# Hunt Category: Open Source Platform: Linux Introduction: hunt can Monitor, hijacking, resetting the TCP connection on the network, uses the Ethernet use, and contains the active mechanism for monitoring the exchange connection, and the adaptive features including optional ARP broadcast and the successful connection synchronization. Tools: Honeyd (your personal honeynet, http://www.honeynet.org/) URL: http://www.citi.umich.edu/u/provos/honeyd/ Category: Open Source Platform: Linux / BSD / Introduction to UNIX / Windows: Honeyd is a small background program that creates a virtual host on the web. The virtual host can be configured to run any service, and if the service TCP feature is like it looks like running on a certain A specific version of the operating system. Honeyd can make a host with multiple addresses in a simulated local area network environment, and you can ping, traceroute. Any type of service on a virtual host can simulate in accordance with a simple profile. Honeyd can also make a proxy service for a host instead of simulating it. Tools: Achilles (can modify the HTTP session package agent) URL: http://packetStormsecurity.nl/filesc/achilles-0-27.zip.html Category: Open Source Platform: Windows Description: Achilles is a design to test WEB application security tools.
It is a proxy server that plays a "man-in-middle" role in an HTTP session. A typical HTTP proxy server will forward packets between the client browser and the web server, but Achilles is supplied to the HTTP session data to either party and allows the user to modify the data before forwarding the data. Tools: Brutus (Network Certification Forced Cracking Tool) URL: http://www.hoobie.net/brutus/ Category: Free Platform: Windows Description: Brutus is a tool for password susceptibility to the network service of the remote server, Support dictionary attacks and combined attacks, supported network applications include HTTP, POP3, FTP, SMB, Telnet, IMAP, NTP, etc. The source code is not disclosed. ThC-HYDRA on the UNIX system has a similar function. Tools: Stunnel (a variety of SSL encryption cases) URL: http://www.stunnel.org/ Category: Open source platform: Linux / BSD / UNIX / Windows Description: Stunnel program is designed to be a local customer The SSL encryption housing between the end and the remote server. It can add SSL functions on the server using the inetd background process, etc. in POP2, POP3, IMAP, and will not affect the program source code. It establishes an SSL session connection using the OpenSSL or SSLE library. Tool: Paketto KeiRetsu (extreme TCP / IP) URL: http://www.doxpara.com/paketto Category: Open Source Platform: Linux / BSD / Unix Description: Paketto KeiRetsu is a set of uncommon policies using newly The tool collection of the TCP / IP network is initially developed in order to implement some features in the existing TCP / IP architecture, but now it is far beyond the initial intention. The tools include: scanrand, a rare fast network service and topology discovery system; MineWT, a NAT / MAT router; linkcat, use the Ethernet link as a standard input and output; Paratrace, no new connection You can track the network path; Phentropy, using OpenQVIs in the 3D topology to draw the data source graphics of the total amount. Tools: Fragroute (the most powerful tool for intrusion detection system) URL: http://www.m& # 111nkey.org/~ DUGSONG/FragRoute/ Category: Open Source Platform: Linux / BSD / Unix / Windows Description: Fragroute Intercept, modify and rewrite the message sent outward, and implement most of the IDS attack function. Fragroute's important role is a simple rule setting language that implements delays, copy, discard, debris, overlapping, printing, rearrangement, segmentation, source routing or other attacks to the target host. The purpose of this tool development is to test intrusion detection systems, firewalls, basic TCP / IP stacks. Like DSNIFF, LIBDNET, this excellent tool is also developed by Dug Song. Tools: http:/www.immunitysec.com/spikeproxy.html Category: Open Source Platform: Linux / BSD / Unix / Windows Description: Spike proxy is an open source HTTP agent for discovery of web Sustainable deficiencies.
It is part of the Spike Application Test Suite (http://www.immunitysec.com/spike.html), supports SQL insert detection, Web site detection, login form violence, overflow detection, and dictionary attack detection, etc. . Tools: THC-HYDRA (Network Certification Tools) URL: http://www.thc.org/releases.php Category: Open Source Platform: Linux / BSD / Unix Introduction: This tool can perform the system that needs to be logged in Fast dictionary attacks, including FTP, POP3, IMAP, NetBIOS, Telnet, HTTP Auth, LDAP NNTP, VNC, ICQ, SOCKS5, PCNFS, etc., support SSL, and is now part of the NESSUS risk assessment tool. Other 25 best security tools: OpenBSD, http://www.openbsd.org/: Security and Reliable operating system. TCP wrappers, ftp: //ftp.porcupine.org/pub/security/index.html: First-class IP access control and log implementation mechanism. PWDUMP3, http://www.polivec.com/pwdump3.html: Get the password Hobs of the local or remote Windows host, regardless of whether syskey is installed. Libnet, http://www.packetfactory.net/libnet/: The programmer is allowed to construct and insert a high level development function library for network packets. IPTRAF, http://cebu.mozcom.com/riker/iptraf/: IP Network monitoring software. FPING, http://www.fping.com/: You can ping multiple IP addresses for multiple IP addresses. Bastille, http://www.bastille-linux.org/: Enhance system security script, support Linux, Mac OS X, and HP-UX operating systems. WinfingerPrint, http://winfingerprint.sourceforge.net/: a Win32-based advanced remote system scanner. TCPTraceRoute, http:/michael.toren.net/code/tcptraceroute/: Use TCP SYN to implement Tools for Traceroute. Shadow security scanner, http://www.safety-lab.com/en2/products/1.htm: a commercial risk assessment tool. PF, http://www.benzedrine.cx/pf.html: The open filter firewall is very features in the openbsd system. LIDS, http://www.lids.org/: Intrusion Detection and Intrusion Defense System on Linux Nucleus. Hfnetchk, http://www.microsoft.com/technet/treeview/default.asp? URL = / tech / security / Tools / Tools / Hfnetk.asp: Tools for checking Windows host patch installations on the network on Microsoft . Etherape, http: //therape.sourceforge.net/: The flow monitoring software Etherman is another graphical network status monitoring software that supports Unix. DIG, http://www.isc.org/products/bind/: bind The DNS query tool comes with.
