EDITORS' PICK: GFI LANguard Network Security Scanner Listing updated: February 22, 2008

GFI LANguard Network Security Scanner (N.S.S.) is a complete network vulnerability management solution that allows you to scan, detect, assess and remediate security vulnerabilities and provides patch management functionality.

This award-winning solution scans the entire network, performs over 15,000 vulnerability assessments and identifies possible security threats. The complete and thorough vulnerability assessment database includes standards such as OVAL (2,000+ checks) and SANS Top 20.

GFI LANguard also allows auto-downloads of missing patches as well as patch roll-back. Custom software can also be deployed. This results in a consistently configured environment that is secure against vulnerabilities. All this is achieved through a single console with extensive reporting functionality, effectively addressing the three pillars of vulnerability management: security scanning, patch management and network auditing.

GFI LANguard N.S.S. 8 is an essential, cost-effective solution for businesses to safeguard their systems and networks from hacker attacks and security breaches. A free 30-day trial is available for download on our website.

• Company: GFI Software
• URL: www.gfi.com
• Email: info@gfi.com
• Screenshot: click here
• Price: $249 for 4 IPs

• Users' Rating: 4.41 [221 votes] - Vote
• Comments: 13 comments - View / Post

Advanced Administrative Tools Listing updated: October 16, 2002

AATools for Windows is a set of utilities for analyzing network properties. AATools is a 12-in-1 utility, including Port Scanner, CGI Analyzer, Proxy Analyzer, Email Verifier, Links Analyzer, Network Status, Process Info, Whois, System Info, Resource Viewer and Registry Cleaner.

• Company: G-Lock Software
• URL: www.glocksoft.com
• Email: info@glocksoft.com
• Screenshot: click here
• Price: $49.95

• Users' Rating: 4.29 [31 votes] - Vote
• Comments: 0 comments - Post

AW Security Port Scanner Listing updated: March 27, 2002

AWSPS features a set of tools for assessment of Network Security including a TCP Connect scanning engine, with adjustable maximum number of simultaneously opened ports and no-connection time-out adjustment. A TCP Syn scanning engine for Windows 2000 platforms with TCP/IP and ICMP packet capture and more. A UDP Port scanner with test probing of ports to confirm whether the host is up. A NetBIOS scanner. Mapping of Ports to applications feature (Ports Finder). Local Connections and Listening Ports instant report. Local TCP, UDP and ICMP statistics instant report. Local Active Routes, DNS Servers and Persistent Routes. Local IP Statistics/Settings reports. Local Transport Protocols/Winsock Service Providers list and details.

• Company: Atelier
• URL: www.atelierweb.com
• Email: sales@atelierweb.com

• Users' Rating: 4.53 [45 votes] - Vote
• Comments: 0 comments - Post

Enterprise Security Reporter Listing updated: January 23, 2008

The Enterprise Security Reporter platform features agent-less, fast, comprehensive discovery and reporting solutions for file security, group memberships, Active Directory, printers, file shares and other security settings on Windows and SharePoint servers. Enterprise Security Reporter is essential for administrators burdened with compliance reporting and security audits, automating reporting and simplifying analysis.

Enterprise Security Reporter provides a reporting and auditing solution for corporate data stored on a file share, or in a SharePoint site. Easily discover necessary security information, run reports, create custom reports and conduct ad-hoc queries across the entire organization.

• Company: ScriptLogic
• URL: www.scriptlogic.com
• Email: sales@scriptlogic.com

• Users' Rating: 3.78 [9 votes] - Vote
• Comments: 0 comments - Post

Infiltrator Network Security Scanner Listing updated: October 12, 2003

Infiltrator is a network security scanner that can quickly audit your network computers for possible vulnerabilities, exploits, and information enumerations. It comes with a built-in database of known vulnerabilities, that can be updated online and allows you to select the items to scan for or to add custom entries to be included. Infiltrator can reveal and catalog a variety of information, including installed software, shares, users, drives, hotfixes, NetBios and SNMP information, open ports and much more. It can also audit password and security policies, perform HTTP/CGI server auditing, registry auditing In addition, Infiltrator also comes with 18 network utilities for footprinting, scanning, enumerating and gaining access to machines (ping sweep, whois lookups, email tracing, share scanning and more). The program can be run from the commandline, allowing for external scheduling and automated scanning.

• Company: Infiltration Systems
• URL: www.infiltration-systems.com
• Email: support@infiltration-systems.com
• Screenshot: click here
• Price: $195.95

• Users' Rating: 3 [2 votes] - Vote
• Comments: 0 comments - Post

Maxpatrol - network Security Scanner Listing updated: September 16, 2004

MaxPatrol is a network security scanner optimized for effective use by companies of any size (serving from a few to tens of thousands of nodes). It supports vulnerability testing for servers with non-standard configurations, intelligent recognition of vulnerabilities in known (and custom) web-server scripts, identification of RPC services and more. The program uses inspection methods to minimize false detections. MaxPatrol has at its disposal a protection analyzer developed for web servers and web applications (e.g. internet shops).
Although MaxPatrol operates within Microsoft Windows, it can test for possible vulnerabilities in any software or hardware platform: from Windows workstations to Cisco networks (*nix, Solaris, Novell, AS400, etc.). Additional features include scheduled scans, custom level vulnerabilities, full scan history and more.

• Company: Positive Technologies
• URL: www.maxpatrol.com
• Email: antipov@Securitylab.ru
• Screenshot: click here
• Price: $877

• Users' Rating: 3.77 [13 votes] - Vote
• Comments: 0 comments - Post

Megaping Listing updated: July 29, 2003

MegaPing provides a package of utilities for Information System specialists, system administrators, IT solution providers or individuals. It includes: Scanners: Comprehensive Security Scanner, Port scanner (TCP and UDP ports), IP scanner, NetBIOS scanner, Share Scanner. All Scanners can scan individual computers, any range of IP addresses, domains, and selected type of computers inside domains. Security scanner provides the following information: NetBIOS names, Configuration info, Missing Security Patchs, Installed Service Packs, open TCP and UDP ports, Transports, Shares, Users, Groups, SNMP, Services, Drivers, Local Drives, Sessions, Remote Time of Date, Printers. Monitors: Host and Port Monitor. System Information: System Info Viewer, Advanced Process Viewer, Network Resources Viewer. Network utilities: DNS list host, DNS lookup name, Network Time Synchronizer, Ping, Traceroute, Whois, and Finger. It can generate reports in HTML or TXT format, and copy data to the Clipboard. In addition, Process and Port monitor allows to log errors and informational messages to HTTP log file with different format options. Monitor notification options include email with SMTP server auto discovery, sound notification.

• Company: Magneto Software
• URL: www.magnetosoft.com
• Email: support_unreg@magnetosoft.com
• Screenshot: click here
• Price: $89.00

• Users' Rating: 4.36 [11 votes] - Vote
• Comments: 0 comments - Post

Nessus Security Scanner Listing updated: October 30, 2007

Traditional network security scanners tend to focus on the services listening on the network - and only on these. Now that viruses and worms are propagating thanks to flaws in mail clients or web browsers, this conception of security is getting outdated.
Nessus has the ability to detect the remote flaws of the hosts on your network, but their local flaws and missing patches as well - whether they are running Windows, Mac OS X or a Unix-like system. Each security test is written as an external plugin, written in NASL. This means that updating Nessus does not involve downloading untrusted binaries from the internet. The Nessus Security Scanner includes NASL, (Nessus Attack Scripting Language) a language designed to write security test easily and quickly. Nessus does not believe that the target hosts will respect the IANA assigned port numbers. This means that it will recognize a FTP server running on a non-standard port (ie: 31337), or a web server running on port 8080. If a host runs the same service twice or more, Nessus will test all of them. Nessus has the ability to test SSLized services such as https, smtps, imaps, and more. You can even supply Nessus with a certificate so that it can integrates into a PKI-fied environement. Nessus gives you the choice between performing a regular non-destructive security audit on a routine basis, or to throw everything you can at a remote host to see how will it withstands attacks from intruders.

• Company: Nessus
• URL: nessus.org
• Email: deraison@cvs.nessus.org

• Users' Rating: 4 [3 votes] - Vote
• Comments: 0 comments - Post

NetIQ Vulnerability Manager Listing updated: July 25, 2006

NetIQ Vulnerability Manager ensures that you are identifying the latest system vulnerabilities and complying with corporate and regulatory policies to manage information security risk. NetIQ has teamed with TruSecure to provide you with information on vulnerabilities and exploits through our AutoSync capabilities in Vulnerability Manager. AutoSync provides a common pipe for publishing and delivering vulnerability knowledge as well as other security-related content including patch databases, regulation templates and even sample policy templates. AutoSync can be configured to pull new updates hourly, daily or in the middle of the night to ensure that your vulnerability scans aren't using stale knowledge. NetIQ provides checks to evaluate the most common security controls. Additionally, NetIQ Vulnerability Manager provides templates organized by regulations such as Sarbanes-Oxley, HIPAA, FERC and GLBA or by best practices such as SANS Top 20, Center for Internet Security, workstation hardening and other operating system baselines. Controls assessments can be run as-needed or scheduled to occur regularly to ensure on going policy compliance. Reports highlighting your most critical and most at-risk systems, provide summaries. NetIQ Vulnerability Manager has the power to identify missing patches on Windows, Unix and Linux platforms. Moreover, NetIQ Vulnerability Manager assists patch management efforts on Windows workstations and servers by assessing automatic update settings and identifying patch installation failures and other events related to patch deployments.

• Company: NetIQ Corporation
• URL: www.netiq.com
• Email: info@netiq.com

• Users' Rating: 4 [22 votes] - Vote
• Comment: 1 comment - View / Post

NetworkActiv Scanner Listing updated: September 6, 2002

A network scanner including the following features:
Port scan (TCP/UDP/SYN), IP address range scan (ICMP/TCP/UDP), Trace-route, and Ping.

All features are integrated into one interface, which allows for fast action when you find a computer on a network, an open port, etc..

• Company: NetworkActiv
• URL: www.networkactiv.com
• Email: support@networkactiv.com
• Screenshot: click here
• Price: $49

• Users' Rating: 4.25 [8 votes] - Vote
• Comments: 0 comments - Post