SECURITY TOOLS

Attack & Penetration tools:

Nessus:
http://www.nessus.org/

Hping2
http://www.hping.org/

DSniff
http://naughty.monkey.org/~dugsong/dsniff/

GFI LANguard
http://www.gfi.com/lannetscan/

Sam Spade
http://www.samspade.org/ssw/

ISS Internet Scanner:
http://www.iss.net/products_services/enterprise _protection/vulnerability_assessment/ scanner_internet.php

Nikto
http://www.cirt.net/code/nikto.shtml

SuperScan: Foundstone's Windows TCP port scanner
http://www.foundstone.com/index.htm?subnav= resources/navigation.htm&subcontent=
/resources /proddesc/superscan.htm

Retina:
http://www.eeye.com/html/Products/Retina/index.html

SAINT
http://www.saintcorporation.com/saint/

SARA: Security Auditor's Research Assistant
http://www-arc.com/sara/

N-Stealth: Web server scanner
http://www.nstalker.com/nstealth/

Firewalk: Advanced traceroute
http://www.packetfactory.net/projects/firewalk/

XProbe2: Active OS fingerprinting tool
http://www.sys-security.com/html/projects/X.html

SolarWinds Toolsets: A plethora of network discovery/monitoring/attack tools
http://www.solarwinds.net/

THC-Amap: An application fingerprinting scanner
http://www.thc.org/releases.php

Hunt: An advanced packet sniffing and connection intrusion tool for Linux
http://lin.fsid.cvut.cz/~kra/index.html#HUNT

Achilles: A Windows web attack proxy
http://achilles.mavensecurity.com/

Brutus: A network brute-force authentication cracker
http://www.hoobie.net/brutus/

Fragroute: IDS systems' worst nightmare
http://www.monkey.org/~dugsong/fragroute/

SPIKE Proxy: HTTP Hacking
http://www.immunitysec.com/resources-freesoftware.shtml

Shadow Security Scanner: A commercial vulnerability assessment tool
http://www.safety-lab.com/en2/products/1.htm

nmap
http://www.insecure.org