oss-sec mailing list archives

Re: Re: [kernel-hardening] Security vulnerability tools

From: Steve Grubb <sgrubb () redhat com>
Date: Thu, 28 Mar 2013 11:58:32 -0400

On Wednesday, March 27, 2013 05:51:19 PM Corey Bryant wrote:

Thanks Tim.  Sounds nice.  This is the first security audit tool on the 
list so if we could add more in this category that would be nice.


There is also openscap if you are wanting security auditing.
http://www.open-scap.org/page/Main_Page

You can get SCAP content from various places.

As far as tools, I often look at the collection at the owasp web site:
https://www.owasp.org/index.php?title=Phoenix/Tools

web scarab and sqlmap are good.

There are lots of tools here as well:
http://securitytools.wikidot.com/penetration-vulnerability-ids-ips

There are so many tools, its hard to find the ones that are well maintained. 
Many are good at first and then bit rot over the years.

-Steve

Current thread:

Security vulnerability tools Corey Bryant (Mar 27)
- Re: [kernel-hardening] Security vulnerability tools Tim Brown (Mar 27)
  - Re: Re: [kernel-hardening] Security vulnerability tools Corey Bryant (Mar 27)
    - Re: Re: [kernel-hardening] Security vulnerability tools Steve Grubb (Mar 28)
    - Re: Re: [kernel-hardening] Security vulnerability tools Tim Brown (Mar 28)
- Re: Security vulnerability tools Solar Designer (Mar 27)
  - Re: [kernel-hardening] Re: Security vulnerability tools Corey Bryant (Mar 27)
    - Re: Security vulnerability tools Solar Designer (Mar 28)
- Re: Security vulnerability tools Russ Allbery (Mar 27)
  - Re: Security vulnerability tools Corey Bryant (Mar 27)
- Re: Security vulnerability tools Murray McAllister (Mar 27)
- Re: Security vulnerability tools Andreas Ericsson (Mar 28)
- Re: Security vulnerability tools Corey Bryant (Mar 29)
  - Re: Re: Security vulnerability tools Raphael Geissert (Mar 29)