PricewaterhouseCoopers Pvt. Ltd., Gurgaon

Details of the Information Security Audit Tools

Freeware Tools :

1. Nessus : Network Vulnerability Assessmen
2. NMAP : Port scanner
3. RAT : Router and firewall benchmarking
4. Ethereal : Network traffic sniffing and analysis
5. MBSA : Windows security assessment
6. AirSnort : Wireless Network security
7. Phonesweep : War dialing
8. RIP query : Router security assessment
9. Netcat : Backdoor
10. Nikto : Web Applications security
11. CAIN & Able : Traffic sniffing and Password cracking
12. Brutus : Password cracking
13. JohntheRipper : Password cracking
14. SNMPWalk : Router and network management
15. SNMP Scanner : Router and network management
16. DumpSec : Windows security assessment
17. SQL Scan : Database security assessment
18. Absinthe : SQL Injection
19. Acunetix : Web Vulnerability Scanner
20. SiteDigger : Google Hacking

Commercial Tools :

1. Core Impact : Penetration Testing
2. Appscan : Web Systems & Applications security
3. ACL: Audit command La
4. Retina : Vulnerability Scanner
5. Languard : Vulnerability Scanner
6. SolarWinds : Network security
7. ISS : Vulnerability Scanner

Proprietary Tools:

1. Windows server Security assessment scripts
2. Unix/Linux/AIX server security assessment scripts
3. Oracle security assessment scripts
4. MSSQL security assessment scripts
5. ASP and Java Scripts : Web application assessment