Re: Audit Tools

From: dcdave (dcdave@att.net)
Date: 08/29/01

• Previous message: Serge Wroclawski: "Re: Audit Tools"
• In reply to: milt@necam.com: "Audit Tools"
• Next in thread: Brian Carvalho: "Re: Audit Tools"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

---

Message-ID: <02d901c130b4$f2e31760$78bc509c@anonymous>
From: "dcdave" <dcdave@att.net>
To: <milt@necam.com>, <focus-ms@securityfocus.com>
Subject: Re: Audit Tools
Date: Wed, 29 Aug 2001 13:03:46 -0500

Milt,
As long as you remember the definition of 'tools', there are tools which
will tell you the information you specified if you know how to use them.
There is a wide range in completeness and price. Talisker's (hi!) page has
probably the most complete information I know of in one place
http://www.networkintrusion.co.uk/
You should learn how to configure and run tools in order to produce the most
useful results, and learn how to interpret results (requires as much
experience with what a reported vulnerability means to your system/network
and what other defenses might/might not mitigate it, what the impacts of
correcting it, whether it is a false positive, etc).
In my experiences in the field on both sides of the network, and as a
certified trainer in how to do these things, I have learned that most people
are surprised at how much more value you can get out of experience than out
of a first-time tool-user.
It is not a bad idea to consider bringing in a pro to show you how, at least
the first time...
I remember when I could fix most cars with a pair of pliers, a knife and a
piece of wire...

rgds,
dcdave

----- Original Message -----
From: <milt@necam.com>
To: <focus-ms@securityfocus.com>
Sent: Wednesday, August 29, 2001 10:57 AM
Subject: Audit Tools

> Lets assume our company takes over another ... actually taking place ...
our
> company wants to audit the other company's network ... at this point we
are
> told it is NT ... not told too much else like what version, service packs,
> controllers, backups, etc. Is there an audit tool that will tell us such
things
> as security holes, number of users, groups, rights, etc.? I need a
'all-in-one'
> 'sweeper package'... is there such a thing? ... what would you recommend?

---

• Previous message: Serge Wroclawski: "Re: Audit Tools"
• In reply to: milt@necam.com: "Audit Tools"
• Next in thread: Brian Carvalho: "Re: Audit Tools"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

---

Relevant Pages Renaming of client machines on a domain ... Reason I ask is because, when I rename a machine on the network the machine ... or audit tools on the networks. ... (microsoft.public.win2000.networking) Audit Tools ... Subject: Audit Tools ... company wants to audit the other company's network ... ... 'sweeper package'... ... what would you recommend? ... (Focus-Microsoft)

---

• Security
• UNIX
• Linux
• Coding
• Usenet

• News
• Mailing-Lists
• Newsgroups
• Service
• About
• Privacy
• Search
• Imprint

www.derkeiler.com  > Mailing-Lists  > securityfocus  > focus-ms  > 2001-08