digg

Facebook Connect Join Digg About
See the original image at networkworld.com

6 free security tools you shouldn't live without

networkworld.com I won't keep you in suspense. I'll go ahead and name them right here, at the top of my post -- the six free security tools that all IT folks should know about and use: MetaSploit, Splunk, Google (don't laugh -- it's true!), KeePass, Helix and Netwox. Now read on to learn why.

Who dugg this? Made popular May 30, 2008

Digg DudeWhat is Digg?

Digg is a place for people to discover and share content from anywhere on the web. Digg surfaces the best stuff as submitted and voted on by the community. Take the Tour to learn more.

51 Comments

show profanity settings
expand all
  • brkhobowriter, on 05/30/2008, -7/+46Buried for having to go through 3 pages for 6 items.
  • Dradis, on 05/29/2008, -3/+31Thank you for providing a different opinion, fnxy. It's not often on Digg that you see people advocating not using Windows and trash-talking it, so thank you for that breath of fresh air. I can only hope that more people on Digg continue on this trail you've blazed and provide more comments of an anti-Windows nature.
  • ray023, on 05/29/2008, -3/+25fnxy, your profile photo looks like three adjacent penises
  • Regbooker, on 05/30/2008, -1/+17I spent about 5 years as a server administrator during college. Best security tool I can recommend: Common sense, and know what you'll do before you do it. Always read the documentation first. 90% of intrusions are because of human error.
  • inactive, on 05/29/2008, -3/+18fnxy you moron, some of the security tools target/use Linux and MacOS.
  • inactive, on 05/30/2008, -0/+14wat??? no NMAP ???
  • wontstoptalking, on 05/29/2008, -2/+15fnxy, I am your father.
  • tiuk, on 05/30/2008, -0/+9And those tools are:
    1) Metasploit
    2) Splunk
    3) Google
    4) KeePass
    5) Helix
    6) Netwox

    Search them yourself and avoid the ad-whoring this site does.
  • inactive, on 05/30/2008, -1/+9Buried for being an ad bitch.
  • vade79, on 05/30/2008, -0/+8Metasploit is really only needed/desired for those developing exploits, kind of pointless for securing your stuff or general IT use...matter of fact this list sucks in general. An on-the-fly better list for securing/monitoring your network/etc (and still free):

    1. nmap
    2. nessus
    3. snort
    4. tcpdump / ethereal
    5. iptables / pf
    6. grsecurity / other system hardening

  • eldridgea, on 05/30/2008, -0/+8Actually OpenBSD.
    "Only two remote holes in the default install, in more than 10 years!"
    http://www.openbsd.org/
  • Regbooker, on 05/30/2008, -0/+6A normal lapse for Finnish colleges. I'm getting my Doctorate now.
  • reqage, on 05/30/2008, -0/+6I've never tried Helix before but back|track is handy. http://www.remote-exploit.org/backtrack.html
  • datagod, on 05/30/2008, -0/+6I vote for IPCop. Been running that for years now on an old P200.
  • yogiincork, on 05/30/2008, -1/+5NOOOOOOOOOOOOOO!
  • imabot, on 05/30/2008, -1/+5virtual shotgun to your face! haha
  • richbradshaw, on 05/30/2008, -0/+4Read the article. In this context, security means pen-testing, or "hacking" for a more mainstream term.

    Half these tools use Linux based software to achieve this.
  • thushan, on 05/30/2008, -0/+4Havent used Helix before but I use BackTrack frequently, its got all the tools anyone would possibly need for security auditing. If your a network admin, you should always have BackTrack in your arsenal.

    The guides here are invaluable if your keen on making full use of BT:
    http://forums.remote-exploit.org/forumdisplay.php? ...
  • silverglade00, on 05/30/2008, -0/+4Look at all the tools talking on THIS page...
  • jakobrowning, on 05/30/2008, -0/+4Does avast allow you to make tools and exploits for testing? Is it an information aggregator for IT-related information and events? Is it a password management application? Is it a system auditer? Is it a multi-tool utility?

    No?

    Then what the ***** is a crappy little free anti-virus doing in the comments here?

    FAIL!
  • armo, on 05/30/2008, -1/+5If you think you're immune to security issues because you install Linux you're an idiot. You still need to properly secure your computer, keeping updated and proper firewalling are an absolute must. And if you're allowing any external access (ssh, apache etc.) you need to be particularly careful as these are commonly exploited.
  • holyskeleton, on 05/30/2008, -1/+4Bad title -- I should live without 5 of these.
  • takatoo, on 05/30/2008, -0/+3where's my Nmap?
  • idc5, on 05/30/2008, -0/+2He makes it seem like he's doing us a favor by listing the tools in the beginning. Is he trying to make up for what's up ahead.. 6 tools in 3 pages?
  • jakobrowning, on 05/30/2008, -1/+3Why do so many people on digg act like using Linux automatically protects them from the baddies of the internets? Sure there aren't spyware and viruses, but that doesn't equal security. A human can just as easily get into your magic Linux box and do damage if the user doesn't know how to lock down their machine properly.
  • inactive, on 06/04/2008, -0/+1Thats funny...Really 6... How much will it cost man
  • billbugger, on 06/04/2008, -0/+1Atleast he gave the list off right at the top. I don't mind it in this situation
  • fnxy, on 05/30/2008, -0/+1I never said anything about immunity from viruses on linux (im well aware you aren't immune), nor did I say these tools were for windows only, I was just trying to point that security in general is something you worry about alot more in Windows than most Linux distos. What are u faggets flaming me for?
  • ManiacX, on 06/02/2008, -0/+0That's why you use Adblock ;)

    https://addons.mozilla.org/en-US/firefox/addon/186 ...
  • JustinEwing, on 06/03/2008, -0/+0Long Live MetaSploit and NMAP!!!
  • maxtooo, on 06/18/2008, -0/+0That's truth that the only one you need is a Common Sense. If you dont have it even 6 security tools wont save you. A user should just know the way he or she can be tricked and be aware.
    "Types of computer and server attacks
    1. Phishing. It is quite broad definition. The main goal of phishing is to get information from a user (such as passwords, credit card number etc.) or money. This method is basically used for many users not only for one. For instance, quasi-tech support sends the same email messages to the known clients of a bank. Usually support service asks users to confirm their account passwords supposedly because of server maintenance.... http://spyoverview.com/articles9.php "
  • fotbr, on 05/30/2008, -1/+1If you're playing in the windows world, Cain & Abel and Wireshark are also handy tools.
  • hojibuji, on 06/07/2008, -0/+0oh my god, someone actually knows what they're talking about! good list, I concur. although I don't agree with downplaying the importance of metasploit as much as you do. as a system/network administrator concerned with security, you should be aware of what is available for metasploit and what it can do to your systems...
  • ManiacX, on 06/01/2008, -0/+0I'm sorry, I think you are missing a bunch:
    http://www.scribd.com/doc/3191076/Must-Have-Hackin ...
  • dwninjungleland, on 05/31/2008, -2/+2Doctorate? HA!
  • shoppersdreams, on 05/23/2009, -0/+0http://www.shoppersdreamsstores.com has security system's and video equipment if you need it
  • hostwebsolution, on 06/01/2008, -0/+0Security is a big subject, really depends on your goals. Attack or Defense? Audit, reconnaissance, exploitation etc.

    Nmap and Nessus are not in the list but are two of the best as mentioned.

    http://www.broadbandsecurity.org - Nmap an Nessus scans of your internet connection - test two of the best tools from point of view of an external probe.
  • mydave, on 08/12/2008, -0/+0It has a strange name, but MetaSploit is a very cool development platform that assists information security professionals in creating tools and exploits.
    http://www.pcard4u.com
    http://www.wmf2007.com/
    http://blog.ashtech.info/2007/10/16/
  • foolishfool, on 05/30/2008, -1/+0Its more secure that way. Trust me.
  • mrBitch, on 05/30/2008, -2/+1SquareEnix, you moron. Read the article.
    In this context, security tools mean "hacking".
    These security tools are NOT anti virus programs. Please go back to your Windows PC and close your web browser IMMEDIATELY.
  • fnxy, on 05/30/2008, -3/+1Im glad you think so, you have alot of creativity there.
  • Rabbitez, on 05/30/2008, -6/+4I get by without any of these. All I need is Total Annihilation (which is a game), utorrent and firefox.
  • pHreaksYcle, on 05/30/2008, -6/+47) Ubuntu
  • Zippo, on 05/30/2008, -5/+2While people are sick of Windows bashing, it is kinda sad that, according to this article, you shouldn't live without these SIX security tools.
  • yahoofrom, on 05/30/2008, -4/+13 pages bad! I want 6 pages!
  • my10cent, on 05/30/2008, -5/+1ANd then you should install Lunux and live without any hardware support not to mention a busted harddrive because of the way it partitions, no thanx dude I stick to good old Windows.
  • synys73r, on 05/30/2008, -6/+1avast.com
  • abhiroop, on 05/30/2008, -6/+1This guy is obviously didn't say it write and intended it in a condescending manner. True installing Linux is a MAJOR change, but honestly I've had it for about 2 years now (without re-installing it ever), and its been great, no virus/mal-ware attacks so I've just been sitting actually doing things like WORKING. Now when an article like this comes up I don't need to see it. Seriously SIX tools you need to install JUST for security?
  • dwninjungleland, on 05/30/2008, -9/+25 Years of College? HA!
  • Fetching more discussions...
    Show 51 - 52 of 52 discussions

  • Add a Comment

    Login or register to comment!
    Or, sign-in super fast with your Facebook account ...


© Digg Inc. 2009 — Content created and posted by Digg users is dedicated to the public domain | Terms of Use Updated | Privacy Policy
DIGG, DIGG IT, DUGG, DIGG THIS, Digg graphics, logos, designs, page headers, button icons, scripts, and other service names are the trademarks of Digg Inc.