TVSNet Technologies Ltd, Chennai

Details of the Information Security Audit Tools

Freeware :

1. Smartwhois: To perform initial information gathering of the network
2. SPIKE Proxy: is a full featured HTTP and HTTPS proxy built with Python
3. WebGoat: This is used to investigate common server-side application flaws
4. Nikto : Web Systems & Application Security
5. Paros proxy : A web application vulnerability assessment proxy
6. Burp suite:  An integrated platform for attacking web applications
7. Nessus : Network Security
8. Nmap: Network Security
9. Whois: To perform initial information gathering of the network
10. SolarWinds : Used for Penetration Testing
11. Ethereal:  Network Sniffing
12. Shadow security scanner: Web server Vulnerability Scanning
13. TamperIE: Proxy tool
14. Brutus: Password Cracker
15. Visual Trace Route : To perform initial information gathering of the network
16. Neo Trace Route : To perform initial information gathering of the network

Commercial :

1. Acunetix Web Vulnerability Scanner: Acunetix WVS automatically checks web applications for vulnerabilities such as SQL Injection, cross site scripting, and weak password strength on authentication pages.