There are many tools available to help to determine vulnerabilities in
endpoint devices, such as network hosts and servers. These tools may be
obtained from either the company that creates the operating system or a third
party. In many cases these tools are provided for free.
Knoppix-STD
Knoppix Security Tools Distribution (STD) is a Linux
LiveCD distribution that contains many valuable security tools. The LiveCD is a
bootable CD-ROM that contains the Linux operating system, along with software
applications, that can be run from memory without installation on the hard
drive. After the LiveCD is ejected from the CD-ROM drive, the system can be
rebooted to return to the original operating system. Knoppix STD contains many
useful features, such as:
- encryption tools
- forensics tools
- firewall tools
- intrusion detection tools
- network utilities
- password tools
- packet sniffers
- vulnerability assessment tools
- wireless tools
There are many additional versions of LiveCDs available. If one
distribution does not support a particular system or piece of hardware, it may
be necessary to try another distribution. Most LiveCD releases are available as
free downloads that can be burned to a CD by the end user.
Microsoft
Baseline Security Analyzer
The Microsoft Baseline Security Analyzer
(MBSA) can be used to scan hosts running Windows 2000, Windows XP, and Windows
Server 2003 operating systems to determine potential security risks. MBSA scans
for common system misconfigurations and missing security updates. MBSA includes
both a graphical and command line interface that can perform local or remote
scans. After a system scan, the MBSA provides a report outlining potential
vulnerabilities and the steps required to correct them. This tool is available
as a free download from Microsoft.