2015 – This page is so damn old. Back in 2008 I thought I can post some tools that an IS Auditor should know about and could learn to use on an audit. If you are an IS auditor, a penetration tester, or anybody who happened to stumble I apologize.<\/p>\n
These are all tools I\u2019ve used to conduct an audit of an agency or university.\u00a0 I have working knowledge of all of these tools and would be able to offer advice or assistance in their use.\u00a0 I would also suggest getting familiar with all of the tools listed in the Security List Top 100 Tools (http:\/\/sectools.org\/)<\/p>\n
Footprinting<\/span><\/strong><\/p>\n BiDiBlah <\/strong>(http:\/\/www.sensepost.com<\/a>) Network\/Port Scanning<\/span><\/strong><\/p>\n Nmap <\/strong>(http:\/\/www.nmap.org<\/a>) Windows Enumeration<\/span><\/strong><\/p>\n net view<\/strong> (Windows Default) Sniffing<\/span><\/strong><\/p>\n Ettercap <\/strong>(http:\/\/ettercap.sourceforge.net<\/a>) Password Tools<\/span><\/strong><\/p>\n Cain & Abel<\/strong> (http:\/\/www.oxid.it<\/a>) Vulnerability Scanners<\/span><\/strong><\/p>\n Tenable Nessus<\/strong> (http:\/\/www.nessus.org<\/a>) Wireless<\/span><\/strong><\/p>\n Kismet <\/strong>(http:\/\/www.kismetwireless.net<\/a>) Database Tools<\/span><\/strong><\/p>\n Navicat <\/strong>(http:\/\/www.navicat.com<\/a>)
\nSiteDigger <\/strong>(http:\/\/www.foundstone.com<\/a>)<\/p>\n
\nScapy <\/strong>(http:\/\/www.secdev.org<\/a>)
\nScanline<\/strong> (http:\/\/www.foundstone.com<\/a>) [Stand-Alone]<\/p>\n
\nnbtstat <\/strong>(Windows Default)
\nBrowstat <\/strong>(exe<\/a>) [Stand-Alone]
\n– (Windows XP Support Tools<\/a>)
\n– (Windows 2000 Resource Kit<\/a>)
\n– Command Help<\/a>
\nNbtscan <\/strong>(http:\/\/www.unixwiz.net<\/a>) [Stand-Alone]
\nEnum <\/strong>(http:\/\/www.darkridge.com<\/a>) [Stand-Alone]
\nDumpsec <\/strong>(http:\/\/www.somarsoft.com<\/a>) [Stand-Alone]
\n– (needs to be installed by then you can just copy the DumpSec exe file)
\nSolarwinds <\/strong>Tools (http:\/\/www.solarwinds.com<\/a>)<\/p>\n
\nCain & Abel<\/strong> (http:\/\/www.oxid.it<\/a>)
\nTcpdump <\/strong>(http:\/\/www.tcpdump.org<\/a>)
\nWireshark <\/strong>(http:\/\/www.wireshark.org<\/a>)<\/p>\n
\nJohn the Ripper<\/strong> (http:\/\/www.openwall.com<\/a>)
\nCifspwscan <\/strong>(http:\/\/www.cqure.net<\/a>) [Stand-Alone (Needs Java)]
\nTHC-Hydra<\/strong> (http:\/\/freeworld.thc.org\/thc-hydra\/<\/a>)
\nPwdumpX <\/strong>(http:\/\/www.packetstormsecurity.org<\/a><\/a>)[Stand-Alone]
\nPwdump2 <\/strong>(http:\/\/www.packetstormsecurity.org<\/a>)[Stand-Alone]
\nCachedump <\/strong>(http:\/\/www.packetstormsecurity.org<\/a>)[Stand-Alone]
\nSamInside <\/strong>(http:\/\/www.insidepro.com<\/a>)[Stand-Alone]
\ncreddump <\/strong>(http:\/\/code.google.com\/p\/creddump\/<\/a>) [Needs Python]<\/p>\n
\neEye Retina<\/strong> (http:\/\/www.eeye.com<\/a>)
\nHP WebInspect<\/strong> (http:\/\/www.hp.com<\/a>)
\nApplication Security AppDetective<\/strong> (http:\/\/www.appsecinc.com<\/a>)
\nNikto <\/strong>(http:\/\/www.cirt.net<\/a>)<\/p>\n
\nAircrack-ng<\/strong> (http:\/\/www.aircrack-ng.org<\/a>)
\nKarmasploit <\/strong>(http:\/\/trac.metasploit.com\/wiki\/Karmetasploit<\/a>)<\/p>\n
\nSQL Ninja<\/strong> (http:\/\/sqlninja.sourceforge.net<\/a>)
\nSQLat <\/strong>(http:\/\/www.cqure.com<\/a>)[Stand-Alone]
\nAutomagic <\/strong>(http:\/\/packetstormsecurity.org\/UNIX\/scanners\/automagic.zip<\/a>)
\nOracle Audit Tools (OAT)<\/strong> (http:\/\/www.cqure.com<\/a>)[Stand-Alone (Needs Java)]
\nOracle Assessment Kit (OAK)<\/strong> (http:\/\/www.databasesecurity.com<\/a>) [Stand-Alone]<\/p>\n