testing my machines security

wild_eyed · 03-01-2004 12:37pm #1

im looking for an application that will test the security features of my machine, i am not connected to a network, its a stand alone pc, although i do connect to the internet, so i want to run this aplication from the same machine, is that possible?

joePC · 03-01-2004 5:15pm

if you are into linux you can scan your system using Nessus (nessus.org [irrc] ). But if you are in Windoze! then, I would say

1. Fully update your system off the windows update.

2.Install a firewall I recommend BlackICE

3.Scan your system with AV, Norton fully updated will do.

4. If you are using dialup then I wouldn't worrie do these steps and you should be ok.

As for the application your after yes it is possible.......!!!

theciscokid · 03-01-2004 7:09pm

GFI Languard scanner

or

Shadow security scanner

are good for windows.. or you could try eEye's retina scanner

P3nfold · 03-01-2004 8:51pm

Try a full blown security auditing tool. Nessus is my tool of choice, but there are many other options. The windows port of nessus does not have a server, so you will need to setup a unix system for the server-end connnections. And then, there is always newt, which is the commercial server/client release native to windows.

The less information your system reveals, the better. Also alter banners when you can. Set up a intrusion detection system on both ends of a NAT. Once you have everything set up to take punishment, run a remote scan of your system with nessus using every possible policy related to your operating system. It woudl also be wise to run a local security audit of your system. Local security is just as important as remote.

Nessus can be found here: http://www.nessus.org/download.html

An alternative option would be Retina, which is windows native.

Capt'n Midnight · 03-01-2004 11:18pm

nessus is linux based - but you can use the copy on the knoppix bootable CD -not much use unless the PC has a network card setup.

Then there is the security problems caused by downloads and malignant web pages - port scanners won't ick up these. So get the utils / apps on the stickies here to block the malware & a good upto date antivirus while you are at it.

A move away from IE and M$Office and Outlook would also help, disabling VB and other scripting would also help.. note: a lot of these things can get reenabled by the OS or some of the windows updates so you gotta keep disabling them.

P3nfold · 04-01-2004 1:22am

Originally posted by Capt'n Midnight
nessus is linux based

There is a native windows release called newt and a windows port.

Capt'n Midnight · 04-01-2004 3:08am

I was getting excited about Nessus for Windows for a moment..

From the site - The server (nessusd) is actually in charge of the attacks,

NeWT 1.0 - This is a commercial product from Tenable Network Security

NessusWX A native Win32 client (is just a frontend designed to collect the results. )

Edit
Top 75 Security Tools http://www.insecure.org/tools.html

muffen · 04-01-2004 3:30am

There's an online security scanner on the Symantec site. Google for it and you'll find it.

P3nfold · 04-01-2004 4:07am

Originally posted by Capt'n Midnight
I was getting excited about Nessus for Windows for a moment..

Hence "The windows port of nessus does not have a server." Nessus is your friend

testing my machines security

Comments