SecurEyes Techno Services Pvt. Ltd., Bangalore

 

Details of the Audit Tools

 

Freeware :

 

  1. Nessus : Vulnerability scanner used for penetration testing
  2. Nmap : Port Scanner
  3. Metasploit framework : Vulnerability scanner 
  4. Hping2 : OS finger printing tool, also used for fire walking
  5. Ring : Passive OS finger printing tool
  6. Nmap-cronos : Passive OS finger printing tool
  7. P0f : Passive OS finger printing tool
  8. Smtpscan : Mail server profiling tool
  9. Sprint : OS detection tool
  10. Xprobe : OS detection tool
  11. Fire and Water : Web Server discovery tool
  12. Ethereal : Sniffer used for capturing and analysing traffic in a penetration test
  13. AirSnort : Wireless network penetration testing tools.
  14. Kismet : Wireless network penetration testing tools.
  15. NetStumbler : Wireless network penetration testing tools.
  16. WEPCrack : Wireless network penetration testing tools.
  17. Achillies : Web application penetration testing tool
  18. Spike Proxy : Automatic Vulnerability scanner for web applications.
  19. Odysseus : Web application audit tool
  20. Paros : Web application proxy, web application security vulnerability scanner.
  21. WinHex : Physical Memory editor used for penetration testing of applications
  22. Netcat : Network penetration testing tool.

 

Proprietary :

 

  1. Windows-VA script : In house developed script used for vulnerability assessment of Windows operating system
  2. Linux-VA script : In house developed script used for vulnerability assessment Linux operating system.
  3. Solaris-VA script : In house developed script used for vulnerability assessment of Solaris operating system.
  4. AIX-VA script : In house developed script used for vulneability assessment of AIX operating system.
  5. Router-VA script : In house developed script used for vulnerability assessment of Routers
  6. Switch-VA script : In house developed script used for vulnerability assessment of Switch.
  7. WSDigger  : Web Services profiling and attack tool.
  8. Cookie Digger : Web application audit tool which helps in calculating the strength of cookies and session ID's
  9. Code Scoping tool : Code security audit tool
  10. Validator. NET : Web application audit tool for applications built using.net techology
  11. HACME Bank : Web Application audit trainer application