security issues for desktop computers
[@more@]security issues for desktop computers
Links to Security tools and information.
1. http://www.cert.org/advisories/index.html
2. http://www.alw.nih.gov/Security/security.html
3. http://www.webtechniques.com/archives/2000/06/conn/
5. http://idm.internet.com/security/
6. http://www.sans.org/top20/ - SANS Top 20 list
7. http://www.cert.org/security-improvement/
8. http://www.tamu.edu/cis/qapcm/Security/desktop.html
9. http://www.w3.org/Security/Faq/www-security-faq.html
10. http://winfiles.cnet.com/bugs/
12. http://www.microsoft.com/technet/security/tools/Tools/mbsahome.asp
13. http://www.secadministrator.com/forums/Index.cfm?CFID=10493790&CFTOKEN=77149961&CFApp=64&Microsoft
14. Shields Up! — see if your server is exposing unnecessary IP ports
15. Shavlik Network Security Hotfix Checker — from the creators of the HfNetChk tool
16. Microsoft security home page — bulletins, security checklists, and information on security best practices
17. Gibson Research Corporation — keep up to date with Steve Gibson's research into leading-edge security issues
18. CERT
19. SANS Institute
20. NTBugtraq
21. http://www.montana.edu/wwwsy/incidentreporting/ - Link to a web page for security incident reporting
22. http://www.cisecurity.org/ - The Center for Internet Security has established a benchmark for O/S security. A recent SANS report says that implementation of these benchmarks eliminate 95% of the O/S security concerns.
23. http://www.cybercrime.gov/index.html - Link to The governments Computer Crime and Intellectual Property Section of the Criminal Division of the U.S. Department of Justice.
24. http://www.nipc.gov/cybernotes/cyber2003.htm Department of Homeland Security CyberNotes for 2003.
25. http://www.osvdb.org/ - Open Source Vulnerability Database
Vulnerability and Remediation scanning tools
Cheops (UNIX) - .http://www.marko.net/cheops or ftp://ftp.marko.net/pub/cheops
Cheops-ng (UNIX) - http://cheops-ng.sourceforge.net/
Engage Packet Builder (Windows) - http://www.engagesecurity.com/downloads/
Ethereal (Both) - http://www.ethereal.org
Fragrouter/Fragroute (UNIX) - http://www.monkey.org/~dugsong/fragroute/index.html
Hping2 (UNIX) - http://www.hping.org/download.html
Ndiff (UNIX) - http://www.vinecorp.com/ndiff/
Nessus (UNIX-Server, Both-Client) - http://www.nessus.org
NeWT (Windows based Nessus) - http://www.tenablesecurity.com/newt.html
Nikto (UNIX) - http://www.cirt.net/code/nikto.shtml
Nlog (UNIX) - http://www.secureaustin.com/ nlog/
Nmap (UNIX) - http://www.insecure.org
Nmapwin (Windows) - http://sourceforge.net/projects/nmapwin
NmapNT (Windows) - http://www.eeye.com/html/Research/Tools/nmapNT.html
SAINT (UNIX) - http://www.wwdsi.com/saint/
SARA (UNIX) – http://www-arc.com/sara/
Tcpdump (UNIX) - http://www.tcpdump.org
Tkined (UNIX) - http://www.knopper.net/download/tkined/
Windump (Windows) - http://netgroup-serv.polito.it
Winpcap (Windows) - http://netgroup-serv.polito.it/winpcap/
SuperScan (Windows) - http://www.foundstone.com/resources/freetools/
Microsoft Security Tools
Microsoft Security Guidance Center
Microsoft Baseline Security Analyzer
Security Planning Tool for IIS
Microsoft Security Checklists
Make Your Windows Servers Secure
Windows 2000 Server Baseline Security
Windows 2000 Professional Baseline Security
Windows 2000 Common Criteria Configuration Guide
Secure Internet Information Services 5
NIST Baseline Security Settings for Windows 2000 Workstations
Windows NT 4.0 Server Baseline Security
Windows NT 4.0 Workstation Baseline Security
Windows NT 4.0 Workstation Configuration
Windows NT 4.0 Domain Controller Configuration
Windows NT 4.0 C2 Configuration
Windows NT 4.0 Member Server Configuration
来自 “ ITPUB博客 ” ,链接:http://blog.itpub.net/83980/viewspace-792886/,如需转载,请注明出处,否则将追究法律责任。
转载于:http://blog.itpub.net/83980/viewspace-792886/