Vulnerability Analysis
Analysis tools

There are many tools available to help to determine vulnerabilities in endpoint devices, such as network hosts and servers. These tools may be obtained from either the company that creates the operating system or a third party. In many cases these tools are provided for free.

Knoppix-STD
Knoppix Security Tools Distribution (STD) is a Linux LiveCD distribution that contains many valuable security tools. The LiveCD is a bootable CD-ROM that contains the Linux operating system, along with software applications, that can be run from memory without installation on the hard drive. After the LiveCD is ejected from the CD-ROM drive, the system can be rebooted to return to the original operating system. Knoppix STD contains many useful features, such as:

  • encryption tools
  • forensics tools
  • firewall tools
  • intrusion detection tools
  • network utilities
  • password tools
  • packet sniffers
  • vulnerability assessment tools
  • wireless tools

There are many additional versions of LiveCDs available. If one distribution does not support a particular system or piece of hardware, it may be necessary to try another distribution. Most LiveCD releases are available as free downloads that can be burned to a CD by the end user.

Microsoft Baseline Security Analyzer
The Microsoft Baseline Security Analyzer (MBSA) can be used to scan hosts running Windows 2000, Windows XP, and Windows Server 2003 operating systems to determine potential security risks. MBSA scans for common system misconfigurations and missing security updates. MBSA includes both a graphical and command line interface that can perform local or remote scans. After a system scan, the MBSA provides a report outlining potential vulnerabilities and the steps required to correct them. This tool is available as a free download from Microsoft.


Web Links