3.2 Security Assessment Tools Flashcards
(Network Tool Types)
Port Scanners
tools designed to scan one or more systems to determine which TCP/UDP ports are open, closed, or filtered
(Network Tool Types)
Vulnerability Scanners
programs designed to scan systems for weaknesses
(Network Tool Types)
Protocol Analyzers
tools that can be used to capture and analyze traffic passing over a communications channel on a network
(Network Tool Types)
SCAP Scanner
Security Content Automation Protocol employs existing open security standards in order to conduct vulnerability scans-while measuring and ranking the discovered vulnerabilities according to predetermined baselines
(Network Tool Types)
Network Enumerator
scans systems and gives us more details such as usernames, groups, shares, and audit options
(Network Tool Types)
Fuzzer
testing tools used to find implementation bugs in software by submitting malformed or semi-malformed data to an application in an automated fashion
(Network Tool Types)
HTTP Interceptor
capture web traffic between the source web browser and the destination website
(Network Tool Types)
Exploitation Tools/Frameworks
can exploit discovered vulnerabilities
(Network Tool Types)
Visualization Tools
specialize in converting raw data into useful visual aids
(Network Tool Types)
Log reduction tools
filters out junk data while ensuring important data is brought into focus and analyzed
(Network Tool Types)
Log analysis tools
can help aggregate data, correlate it, and perform detailed reporting
(Host Tool Types)
Password Crackers
specialized tools designed to essentially guess passwords
(Host Tool Types)
vulnerability scanner
designed to run on a specific host and look for vulnerabilities and misconfigurations on the host
(Host Tool Types)
Command Line Tools
can be used to perform routine network troubleshooting in addition to security assessments
(Host Tool Types)
Antivirus
must be assessed for signs of tampering by malware aiming to disable the alerting/notificaiton/real-time protection features of antivirus tools
