CERT-In:Indian Computer Emergency Response Team

Kanhere

Details of the Audit Tools

Freeware

1. Cops -- Host-based Auditing -Using system checker analyses and reports on a multiple cops results files.

2. Ncarp -- Host-based Auditing -Using system checker analyses and reports on a multiple cops results files.

3. crack -- Host-based Auditing -Using system checker analyses and reports on a multiple cops results files.

4. Tiger -- Host-based Auditing -Using system checker analyses and reports on a multiple cops results files.

5. Tcpdump -- Network Traffic analysis and intrusion Detection -Monitors all network traffic passing on the local sensor segment, reacting to anomaly or signature based activity.

6. sysniff -- Network Traffic analysis and intrusion Detection -Monitors all network traffic passing on the local sensor segment, reacting to anomaly or signature based activity.

7. NetRanger -- Network Traffic analysis and intrusion Detection -Monitors all network traffic passing on the local sensor segment, reacting to anomaly or signature based activity.

8. Nocol -- Network Traffic analysis and intrusion Detection -Monitors all network traffic passing on the local sensor segment, reacting to anomaly or signature based activity.

9. Localmail -- Security Management & Improvement - Security tool to limit no. of program that can be executed

10. smrsh -- Security Management & Improvement - Security tool to limit no. of program that can be executed

11. lodgemon -- Security Management & Improvement - Security tool to limit no. of program that can be executed

12. npasswd -- Security Management & Improvement - Security tool to limit no. of program that can be executed

13. Nmap -- Network- Based Auditing - Network scanner that can check for a vulnerabilities by attempting to exploit them, rather than using port numbers or banner/grabbing to determine what software is running.

14. Nessus -- Network- Based Auditing - Network scanner that can check for a vulnerabilities by attempting to exploit them, rather than using port numbers or banner/grabbing to determine what software is running.

15. thresher -- Network- Based Auditing - Network scanner that can check for a vulnerabilities by attempting to exploit them, rather than using port numbers or banner/grabbing to determine what software is running.

16. Cybercop -- Network- Based Auditing - Network scanner that can check for a vulnerabilities by attempting to exploit them, rather than using port numbers or banner/grabbing to determine what software is running.

17. HP open view -- A network monitor & protocol analyzer for both shared & switch network environment

18. Observer 10 -- A network monitor & protocol analyzer for both shared & switch network environment

19. Cramm -- A network monitor & protocol analyzer for both shared & switch network environment

20. Cobra -- A network monitor & protocol analyzer for both shared & switch network environment