Scanners/Tools

• NetCat, the "swiss army knife", for Win32 or UNIX. (Older one for Win32⁽¹⁾.)
• NMap, scanner/mapper for Win32 or UNIX
• Nessus
• Strobe

Port Databases

• The Ports DB (www.portsdb.org) seems to have gone away, which is a pitty.
• Likewise, the Snort Port Database (www.snort.org/ports.html) has vansished.
• Whitehats Port Database
• Security Related Port List
• The IANA assigned Well Known Ports
• The IANA assigned Numbers (superset of above), AKA RFC1700

Network Streams Detection

• tcpdump, see above in sniffers.
• nstreams
• snort, Windows ports
• netwatch
• iptraf

Secure Shell (ssh)

UNIX Clients and Servers

• Open and free port of SSH
• OpenSSH RPMs (See list)

Windows Clients and Servers

• OpenSSH for Windows, command line (no GUI) client and Server.
  • Obsolete OpenSSH for Windows, but the base of the package above.
• "Official" SSH.com Server, confusing as heck.
• F-Secure SSH Server
• Bitvise SSH2 Server (I know nothing about this one).
• PuTTY: A Free Win32 Telnet/SSH Client. Great, but minial. No install, just unzip and run. Includes command line "pscp."
• SecureCRT is a very nice commercial SSH GUI client for Windows. This is the best SSH client I am aware of.
• Ancient "Official" SSH Client (Windows and tgz, non-commercial license)
• ShellGuard is a commercial command line Telnet and SSH client client for Windows
• Other lists of clients and servers:
  • List of Free and payware SSH clients and servers for Windows
  • List of Win32 ssh clients
  • Free SSH and SCP for Windows 9x, NT, ME, 2000 and XP
• Obsolete, for reference only:
  • Free ssh client for Windows (Fissh) (probably obsolete)
  • TeraTerm Homepage (Obsolete)
  • TTSSH (TeraTerm SSH1, obsolete)
  • Free (Cygwin) SSHD for NT (obsolete)

Information/Documentation

• The Snail Book (Really well done, with more technical detail than even I want!)
• SSH FAQ
• Free SSH and SCP for Windows 9x, NT, ME, 2000 and XP
• SSH on NT Mini HOWTO
• Info on SSH on Windows
• More ssh Information
• Make SSH do more
• Sealing the Pipes

Other Lists of Ports

• Links to various ssh Ports and Info
• Free and commercial ssh clients/servers
• Various ssh Ports
• Free SSH type program

Commercial

• SSH Communications (Commercial)
• F-Secure ssh

Other

• The Honeynet Project, an awesome and creative project to learn more about the so-called Blackhat community.
• Win32 and BSD Tools⁽¹⁾
• Security Portals
• As much as I hate to say it, these Security Awareness screen savers from Microsoft are excellent. Check them out, and use them! They cover The Ten Immutable Laws of Security and The Ten Immutable Laws of Security Administration.
• Mobile/Remote Security Issues
• Trinux, a single floppy Linux system, for security uses

⁽¹⁾ Winpcap is a libpcap-compatible library for Windows. Libpcap is the basis for most UNIX sniffer and packet tools, such as namp, nc, tcpdump and dsniff.

Firewalls & Firewall Tools

• How to Make A Firewall Sandwich.

Check out the OpenBSD FAQ relating to IPFilter for a VERY good and clear example of IPFiltering, which is similar to the Linux IPTables or IPChains, and which is a great example of firewall rules in action! See also:

• The OpenBSD project produces a FREE, multi-platform 4.4BSD-based UNIX-like operating system. Our efforts emphasize portability, standardization, correctness, proactive security and integrated cryptography. OpenBSD supports binary emulation of most programs from SVR4 (Solaris), FreeBSD, Linux, BSD/OS, SunOS and HP-UX.
• IPFilter, the IP Filter HOWTO, ipf(8) and ipnat(8)

Check Point Firewall-1

• I have combined my LogSwap and CPFWBack tools, and added my extract_patch tool into CPFW1TK--the Check Point Firewall-1 Tool Kit. LogSwap and CPFWBack work under both Windows and UNIX. Extract_patch is unnecessary under UNIX.

CPFW1TK-3.2.0-2.exe (288,965 bytes) has the scripts and all other binaries needed to run. It also includes the UNIX scripts just for fun, and it has some other bonus stuff. It is a self-extracting ZIP archive.
CPFW1TK-3.2.0-1.tgz (10,251 bytes) just has the UNIX scripts and ReadMe files.

Extract_patch was created for extracting Check Point patches under Windows, without installing WinZip, since Check Point are now distributing all patches in TGZ format. But it will work for any TGZ (or .tar.gz, or .gz or .tar) you wish to extract under Windows, without having to install WinZip. It combines Win32 ports of the GNU tar.exe, gzip.exe and md5sum.exe utilities, so you can unpack and verify *.tgz files.

LogSwap archives or "rolls" Firewall-1 logs. It includes Logswap.cmd, obsolete.com, audit.com and gzip.exe for Win32.

CPFWBack greatly automates the annoying process of backing up Firewall-1 configurations. It includes CPFWBack.cmd, zip.exe, unzip.exe and vdate.exe for Win32 and CPFWBack.sh for UNIX.

• I've also created an add-on called jpcshrc for the default csh configuration in Nokia's IPSO 3.4.1-FCS5. It sets the csh prompt to your current working directory, and add some aliases (mostly DOS commands, since I can't remember what OS I'm using).
• The Check Point User Group including the old Phoneboy site.
• Essential Check Point FireWall-1, ISBN 0201699508, written by Dameon D. Welch-Abernathy (AKA PhoneBoy), owner/operator of the above FireWall-1 FAQ site. There is also Essential Check Point FireWall-1 NG in the works, probably available in early 2004.
• Tom Horsley's NTP Time for Windows is a nice NTP client program. It is free, but is a client only, and can be configured to talk to only one NTP server at a time. NTP works much better when referencing a pool of servers. BUT, it allows you to use NTP to time-sync a hardened NT Firewall server. The NT Resource kit TimeServ will not run with the NT Workstation service disabled or removed (which it should be on a firewall!!!)
• fwlogsum "is a perl script to summarise FW1 logs making it easier to see what services are being blocked or allowed through your firewall."

WatchGuard Firebox II with the Live Security Service (LSS)

• Fix-wls converts those annoying WatchGuard *.WLS files to Self-Extracting archives.

Securing or Hardening Systems

I have much more information on this topic, and will post references as I have time.

NT4

• Lance Spitzner's Armoring NT
• The SANSStep-by-Step Guides
• L0phtCrack password cracking program for NT.
• See below for the IIS 4 and IIS5 Lockdown Tool.
• See below for the HFNetChk tool.

Win 2000

• Securing IIS 5.0 Using Batch-Oriented Command Files, the document.
• Securing IIS 5.0 Using Batch-Oriented Command Files, the tools. This package is essential to any attempt to secure Win 2000 or NT via script. It includes: auditpol.exe, CryptPwd.exe, passprop.exe, Reg.exe, regini.exe, xcacls.exe.
• The Art and Science of Web Server Tuning with Internet Information Services 5.0
• A small write-up about the IIS 4 and IIS 5 Lockdown Tool and the download page for it.
• HFNetChk, the Microsoft Network Security Hotfix Checker, which is a command-line tool that administrators can use to centrally assess a computer or group of computers for the presence or absence of security patches. You can use the Hfnetchk tool to assess patch status for the Windows NT 4.0 and Windows 2000 operating systems, as well as hotfixes for Internet Information Server 4.0 (IIS), Internet Information Services 5.0 (IIS), SQL Server 7.0, and SQL Server 2000 (including Microsoft Data Engine [MSDE]), and Internet Explorer 5.01 or later.
• Microsoft Personal Security Advisor (MPSA) "is an easy to use web application that will help you secure your Windows NT 4.0 and Windows 2000 computer system. Simply navigate to the MPSA site and press the Scan Now button to receive a detailed report of your computer's security settings and recommendations for improvement." More of a SOHO than corporate focus. (Curiously, this does not seem to work too well using Netscape. I wonder why???)
• Migrating Microsoft® Hotmail® from FreeBSD to Microsoft Windows® 2000 Technical Case Study, this is just kind of interesting, in scope if nothing else.

UNIX

• Lance Spitzner's Armoring Solaris II
• Lance Spitzner's Armoring Linux(getting old)
• Securing a UNIX Host
• The Solaris Security FAQ
• The Bastille Linux Project
• How to install Solaris and have a good host security
• The SANS Securing Solaris 8 & 9 Using the Center for Internet Security Benchmark.
• The SANS Securing Linux A Survival Guide for Linux Security.
• Open BSD: The most secure OS there is.
• Crack and Cracklib password cracking or strengthening for UNIX.
• John the Ripper password cracking for UNIX and NT (need pwdump, pwdump2, pwdump3 v2 (ZIP or here), or pwdump3e (ZIP) for NT cracking), runs on UNIX, DOS or Win16.