BEST IT Security and Auditing Software 2007

Since we have started IT security auditing and assessment, we have tested and used tons of tools, utilities and softwares. A lot of them were discontinuted, closed their code or just bought by vendors. But (hopefully), the best are still alive.

Now, by the end of the year 2007, i become slightly melancholic and decide to release a survey of the most efficient IT Security Softwares for auditors, security administrators and pentesters.

However, I deeply think that every little script or utility wrote by individual developer or hacker is a gem. Just take a look at sourceforge project repositories to be amazed. They will continue to serve us for years to come.

— Happy New Year.

Commercial softwares

Name Link
Core Impacthttp://www.coresecurity.com
LanGuard NSShttp://www.gfi.com
Acunetix WVSwww.acunetix.com
WebInspectwww.spidynamics.com

Methodologies and references

Name Link
OSSTMMhttp://www.isecom.org/
OWASP Software and Methodologyhttp://www.owasp.org
PTF Penetration tests Frameworkhttp://www.vulnerabilityassessment.co.uk
WTF Wireless Testing Frameworkhttp://www.wirelessdefence.org
WebAppSec documentshttp://www.webappsec.org
NIST Releaseshttp://csrc.nist.gov/publications/
DISA STIGshttp://iase.disa.mil/stigs
AuditNet Resourceshttp://www.auditnet.org

Survey realised with Security-Database Tools Watch Service Statistics.

Copyright © 2008 Security-Database.com


Comments