Home > Articles > Cisco Network Technology > General Networking > Network Security Auditing Tools and Techniques

Network Security Auditing Tools and Techniques

Chapter Description

There's more to network security than just penetration testing. This chapter discusses software tools and techniques auditors can use to test network security controls. Security testing as a process is covered, but the focus is on gathering the evidence useful for an audit.

From the Book

Network Security Auditing

Network Security Auditing

$56.00 (Save 20%)

References in This Chapter

Security Testing Frameworks

Information Systems Security Assessment Framework, http://www.oissg.org/

Open Source Security Testing Methodology Manual, http://www.isecom.org/osstmm/

NIST 800-115: Technical Guide to Information Security Testing and Assessment, http://csrc.nist.gov/publications/nistpubs/800-115/SP800-115.pdf

Open Web Application Security Project, http://www.owasp.org/index.php/Main_Page

Security Testing Tools

NMAP, http://nmap.org

Hping, http://hping.org

Nessus, http://nessus.org

RedSeal SRM, http://www.redseal.net

TcpDump, http://sourceforge.net/projects/tcpdump/

Wireshark, http://www.wireshark.org/

Core Impact, http://www.coresecurity.com/

Metasploit Project, http://www.metasploit.com/

Backtrack, http://www.backtrack-linux.org/