Penetration Testing mailing list archives

RE: network policy checking

From: "Sol_Invictus" <sol () haveyoubeentested org>
Date: Thu, 27 Mar 2008 20:27:23 -0400

I would recommend Tenable Security's Nessus Scanner with Direct Feed.
Nessus has the capability to perform local checks on machines and compare
them with different compliance standards.  They currently have over 100
different compliance policies that you can use and customize for your needs.

While Nessus is free, the direct feed for plugins will cost you only $1200
annually.  This includes email support as well.

si
-----Original Message-----
From: listbounce () securityfocus com [mailto:listbounce () securityfocus com] On
Behalf Of Sony C
Sent: Thursday, March 27, 2008 6:07 PM
To: pen-test () securityfocus com
Subject: network policy checking

Hello fellow pen-testers,

I am looking for tools that perform network policy checking. Specifically,
tools that allow the user to define a policy and then test the network
elements to see if they adhere to this policy. As one might guess, this can
be accomplished either via config file checking (passive) or actual network
testing (active, via SNMP etc). 
I am interested in both flavors, if they are available. These tools can be
commercial or open-source/free/shareware. 
While it is a broad requirement, this hypothetical tool will primarily be
looking at routers, firewalls, etc. 

Thank you in advance for sharing your thoughts.

Regards,
SC.




 
____________________________________________________________________________
________
Be a better friend, newshound, and 
know-it-all with Yahoo! Mobile.  Try it now.
http://mobile.yahoo.com/;_ylt=Ahu06i62sR8HDtDypao8Wcj9tAcJ

------------------------------------------------------------------------
This list is sponsored by: Cenzic

Need to secure your web apps NOW?
Cenzic finds more, "real" vulnerabilities fast.
Click to try it, buy it or download a solution FREE today!

http://www.cenzic.com/downloads
------------------------------------------------------------------------


------------------------------------------------------------------------
This list is sponsored by: Cenzic

Need to secure your web apps NOW?
Cenzic finds more, "real" vulnerabilities fast.
Click to try it, buy it or download a solution FREE today!

http://www.cenzic.com/downloads
------------------------------------------------------------------------

Current thread:

network policy checking Sony C (Mar 27)
- Re: network policy checking Razi Shaban (Mar 27)
- RE: network policy checking Sol_Invictus (Mar 27)
- Re: network policy checking Todd Haverkos (Mar 27)
  - Re: network policy checking Mamba M (Mar 27)
- <Possible follow-ups>
- Re: network policy checking Sony C (Mar 27)
  - RE: network policy checking Erin Carroll (Mar 27)
  - Re: network policy checking kevin horvath (Mar 28)
  - Re: network policy checking R. DuFresne (Mar 28)
- Re: network policy checking matt . foster (Mar 28)
- Re: network policy checking Sony C (Mar 28)