Security Tools

Old Content

This content is old! It’s still useful, but it’s old, and there may be bit rot, newer/better tools or ways to do things. Sanity check and do your research.

Tip

Everything listed on this page is free, unless otherwise noted (or unless I goofed).

---

Security Tools

General

• The NMap “Top 75 Security Tools” list
• SecurityConfig.com
• The Log Analysis Site
• James Madison University’s R.U.N.S.A.F.E. program (End User tips and awareness)

Disk/File Wiping

• “Autoclave” hard drive sterilization on a bootable floppy (Linux Floppy!)
• DoD 5200.28-STD secure delete program ($$)
• Maresware Forensic Processing Software
• Berkewipe: Secure delete program for Linux/UNIX
• Wipe: Secure delete program for Linux/UNIX
• Overwrite: Secure delete program for Linux/UNIX
• fwipe: Secure delete program for Linux/UNIX
• Secure Deletion of Data from Magnetic and Solid-State Memory
• Shred: Secure delete program for Windows
• sDelete: Secure delete program for Windows (Sysinternals!)
• Cleandrive (WipeDrv.exe & CleanDrv.exe): Secure delete program for hard drives ($$)
• pdwipe: Secure delete program for hard drives ($$)
• Secure delete program for Windows (Restricted)
• National Industrial Security Program (DoD 5220.22-M)

Password Databases

You need to use a password database because humans are bad a remembering good passwords, you can’t share passwords among sites, and so you need to have a lot of passwords. Some useful thoughts on this include:

• The Real Life Risks of Re Using The Same Passwords
• Password managers don’t have to be perfect, they just have to be better than not having one
• When Accounts are “Hacked” Due to Poor Passwords, Victims Must Share the Blame
• 86% of Passwords are Terrible (and Other Statistics)"

There are a great many password databases out there these days. I personally don’t trust any of the cloud or browser-based ones, because anything automated is that much easier to crack in to. It’s a few extra steps to manually copy & paste the password from the manager into the correct fields, but it’s a lot more secure.

• Password Safe is a free utility originally from Bruce Schneier and Counterpane Labs which allows you to keep your passwords securely encrypted on your computer. A single Safe Combination–just one thing to remember–unlocks them all. Check Password Safe’s releases to find the newest version.
• KeePass seems to be another good one, and it has many cross-platform variations to chose from.
• See my random password/pin generator (written in Perl). It also creates unpronounceable names for aliens, for when you’re writing SciFi and get stuck for a name… ;-)

Sniffers

There’s a more up-to-date list at 2019 Best Packet Sniffers (10 Packet Analyzers Reviewed)@lahmstache UPDATED: June 21, 2019

• Wireshark for Linux, Mac and Windows.
• Snort.
• Analyzer ¹ (For Windows).
• WinDump ¹.
• TCPDump (For UNIX).
• dsniff, mailsnarf, urlsnarf, & webspy ¹.
• UNIX Logging Utilities List and UNIX IDS List from Packetstorm.
• Mognet, a free Java-based packet sniffer and analyzer which comes complete with source code. It runs on handheld devices or on desktops and is available under the GNU General Public License (GPL).

Scanners/Tools

• NetCat, the “swiss army knife”, for Win32 or UNIX. (Older one for Win32. ¹)
• NMap, scanner/mapper for Win32 or UNIX
• Nessus
• Strobe

Port Databases

• The Ports DB ( www.portsdb.org) seems to have gone away, which is a pitty.
• Likewise, the Snort Port Database ( www.snort.org/ports.html) has vansished.
• Whitehats Port Database
• Security Related Port List
• The IANA assigned Well Known Ports
• The IANA assigned Numbers (superset of above), AKA RFC1700

Network Streams Detection

• tcpdump, see above in sniffers.
• nstreams
• snort, Windows ports
• netwatch
• iptraf

Secure Shell (ssh)

UNIX Clients and Servers

• Open and free port of SSH
• OpenSSH RPMs (See list)

Windows Clients and Servers

• OpenSSH for Windows, command line (no GUI) client and Server.
  • Obsolete OpenSSH for Windows, but the base of the package above.
• “Official” SSH.com Server, confusing as heck.
• F-Secure SSH Server
• Bitvise SSH2 Server (I know nothing about this one).
• PuTTY: A Free Win32 Telnet/SSH Client. Great, but minial. No install, just unzip and run. Includes command line “pscp.”
• SecureCRT is a very nice commercial SSH GUI client for Windows. This is the best SSH client I am aware of.
• Ancient “Official” SSH Client (Windows and tgz, non-commercial license)
• ShellGuard is a commercial command line Telnet and SSH client client for Windows
• Other lists of clients and servers:
  • List of Free and payware SSH clients and servers for Windows
  • List of Win32 ssh clients
  • Free SSH and SCP for Windows 9x, NT, ME, 2000 and XP
• Obsolete, for reference only:
  • Free ssh client for Windows (Fissh) (probably obsolete)
  • TeraTerm Homepage (Obsolete)
  • TTSSH (TeraTerm SSH1, obsolete)
  • Free (Cygwin) SSHD for NT (obsolete)

Information/Documentation

• The Snail Book (Really well done, with more technical detail than even I want!)
• SSH FAQ
• Free SSH and SCP for Windows 9x, NT, ME, 2000 and XP
• SSH on NT Mini HOWTO
• Info on SSH on Windows
• More ssh Information
• Make SSH do more
• Sealing the Pipes

Other Lists of Ports

• Links to various ssh Ports and Info
• Free and commercial ssh clients/servers
• Various ssh Ports
• Free SSH type program

Commercial

• SSH Communications (Commercial)
• F-Secure ssh

Other

• The Honeynet Project, an awesome and creative project to learn more about the so-called Blackhat community.
• Win32 and BSD Tools ¹
• Security Portals
• As much as I hate to say it, these Security Awareness screen savers from Microsoft are excellent. Check them out, and use them! They cover The Ten Immutable Laws of Security and The Ten Immutable Laws of Security Administration.
• Mobile/Remote Security Issues
• Trinux, a single floppy Linux system, for security uses

---

Firewalls & Firewall Tools

• How to Make A Firewall Sandwich.

Check out the OpenBSD FAQ relating to IPFilter for a VERY good and clear example of IPFiltering, which is similar to the Linux IPTables or IPChains, and which is a great example of firewall rules in action! See also:

• The OpenBSD project produces a FREE, multi-platform 4.4BSD-based UNIX-like operating system. Our efforts emphasize portability, standardization, correctness, proactive security and integrated cryptography. OpenBSD supports binary emulation of most programs from SVR4 (Solaris), FreeBSD, Linux, BSD/OS, SunOS and HP-UX.
• IPFilter, the IP Filter HOWTO, ipf(8) and ipnat(8)

Check Point Firewall-1

• I have combined my LogSwap and CPFWBack tools, and added my extract_patch tool into CPFW1TK–the Check Point Firewall-1 Tool Kit. LogSwap and CPFWBack work under both Windows and UNIX. Extract_patch is unnecessary under UNIX.

CPFW1TK-3.2.0-2.exe (288,965 bytes) has the scripts and all other binaries needed to run. It also includes the UNIX scripts just for fun, and it has some other bonus stuff. It is a self-extracting ZIP archive. CPFW1TK-3.2.0-1.tgz (10,251 bytes) just has the UNIX scripts and ReadMe files.

Extract_patch was created for extracting Check Point patches under Windows, without installing WinZip, since Check Point are now distributing all patches in TGZ format. But it will work for any TGZ (or .tar.gz, or .gz or .tar) you wish to extract under Windows, without having to install WinZip. It combines Win32 ports of the GNU tar.exe, gzip.exe and md5sum.exe utilities, so you can unpack and verify *.tgz files.

LogSwap archives or “rolls” Firewall-1 logs. It includes Logswap.cmd, obsolete.com, audit.com and gzip.exe for Win32.

CPFWBack greatly automates the annoying process of backing up Firewall-1 configurations. It includes CPFWBack.cmd, zip.exe, unzip.exe and vdate.exe for Win32 and CPFWBack.sh for UNIX.

• I’ve also created an add-on called jpcshrc for the default csh configuration in Nokia’s IPSO 3.4.1-FCS5. It sets the csh prompt to your current working directory, and add some aliases (mostly DOS commands, since I can’t remember what OS I’m using).
• The Check Point User Group including the old Phoneboy site.
• Essential Check Point FireWall-1, ISBN 0201699508, written by Dameon D. Welch-Abernathy (AKA PhoneBoy), owner/operator of the above FireWall-1 FAQ site. There is also Essential Check Point FireWall-1 NG in the works, probably available in early 2004.
• Tom Horsley’s NTP Time for Windows is a nice NTP client program. It is free, but is a client only, and can be configured to talk to only one NTP server at a time. NTP works much better when referencing a pool of servers. BUT, it allows you to use NTP to time-sync a hardened NT Firewall server. The NT Resource kit TimeServ will not run with the NT Workstation service disabled or removed (which it should be on a firewall!!!)
• fwlogsum “is a perl script to summarise FW1 logs making it easier to see what services are being blocked or allowed through your firewall.”

WatchGuard Firebox II with the Live Security Service (LSS)

• Fix-wls converts those annoying WatchGuard *.WLS files to Self-Extracting archives.

---

Securing or Hardening Systems

I have much more information on this topic, and will post references as I have time.

NT4

• Lance Spitzner’s Armoring NT
• The SANS Step-by-Step Guides
• L0phtCrack password cracking program for NT.
• See below for the IIS 4 and IIS5 Lockdown Tool.
• See below for the HFNetChk tool.

Win 2000

• Securing IIS 5.0 Using Batch-Oriented Command Files, the document.
• Securing IIS 5.0 Using Batch-Oriented Command Files, the tools. This package is essential to any attempt to secure Win 2000 or NT via script. It includes: auditpol.exe, CryptPwd.exe, passprop.exe, Reg.exe, regini.exe, xcacls.exe.
• The Art and Science of Web Server Tuning with Internet Information Services 5.0
• A small write-up about the IIS 4 and IIS 5 Lockdown Tool and the download page for it.
• HFNetChk, the Microsoft Network Security Hotfix Checker, which is a command-line tool that administrators can use to centrally assess a computer or group of computers for the presence or absence of security patches. You can use the Hfnetchk tool to assess patch status for the Windows NT 4.0 and Windows 2000 operating systems, as well as hotfixes for Internet Information Server 4.0 (IIS), Internet Information Services 5.0 (IIS), SQL Server 7.0, and SQL Server 2000 (including Microsoft Data Engine [MSDE]), and Internet Explorer 5.01 or later.
• Microsoft Personal Security Advisor (MPSA) “is an easy to use web application that will help you secure your Windows NT 4.0 and Windows 2000 computer system. Simply navigate to the MPSA site and press the Scan Now button to receive a detailed report of your computer’s security settings and recommendations for improvement.” More of a SOHO than corporate focus. (Curiously, this does not seem to work too well using Netscape. I wonder why???)
• Migrating Microsoft® Hotmail® from FreeBSD to Microsoft Windows® 2000 Technical Case Study, this is just kind of interesting, in scope if nothing else.

UNIX

• Lance Spitzner’s Armoring Solaris II
• Lance Spitzner’s Armoring Linux(getting old)
• Securing a UNIX Host
• The Solaris Security FAQ
• The Bastille Linux Project
• How to install Solaris and have a good host security
• The SANS Securing Solaris 8 & 9 Using the Center for Internet Security Benchmark.
• The SANS Securing Linux A Survival Guide for Linux Security.
• Open BSD: The most secure OS there is.
• Crack and Cracklib password cracking or strengthening for UNIX.
• John the Ripper password cracking for UNIX and NT (need pwdump, pwdump2, pwdump3 v2 ( ZIP or here), or pwdump3e ( ZIP) for NT cracking), runs on UNIX, DOS or Win16.

Old Content

This content is old! It’s still useful, but it’s old, and there may be bit rot, newer/better tools or ways to do things. Sanity check and do your research.