Site Home  »   15. Conformidad »  15 3 Consideraciones sobre la auditoría de sistemas »  15.3.2. Protección de las herramientas de auditoria de sistemas

15.3.2. Protección de las herramientas de auditoria de sistemas

Tags:  

Control:

Se deberían proteger los accesos a las herramientas de auditoría de los sistemas de información con objeto de prevenir cualquier posible mal uso o compromiso.

Posibles Soluciones a este control:

OSSA
 This is a VA / PT report for a fictitious bank called eClipse Bank PLC carried out by another fictitious company Cynergi Solutions Inc. All names, URLs, IPs, etc are fictitious Vulnerability Assessment & Penetration Test Report template
OSSIM
 Open Source Security Information Management: Colección de herramientas bajo la licencia BSD, diseñadas para ayudar a los administradores de red en la seguridad de las computadoras, detección de intrusos y prevención. OSSIM
DSNIFF
 Collection of tools for network auditing and penetration testing. dsniff, filesnarf, mailsnarf, msgsnarf, urlsnarf, and webspy passively monitor a network for interesting data (passwords, e-mail, files, etc.). arpspoof, dnsspoof, and macof facilitate the interception of network traffic normally unavailable to an attacker (e.g, due to layer-2 switching). sshmitm and webmitm implement active monkey-in-the-middle attacks against redirected SSH and HTTPS sessions by exploiting weak bindings in ad-hoc PKI. Dsniff
L0pht HOLDINGS Password auditing and recovery. 15 days trial. l0phtcrack
BACKTRACK
 BackTrack is intended for all audiences from the most savvy security professionals to early newcomers to the information security field. BackTrack promotes a quick and easy way to find and update the largest database of security tool collection to-date. BackTrack

MATRIUX

 Fully featured security distribution consisting of a bunch of powerful, open source and free tools that can be used for various purposes including, but not limited to, penetration testing, ethical hacking, system and network administration, cyber forensics investigations, security testing, vulnerability analysis, and much more. Matriux

SANS

 The SANS SIFT Workstation is a VMware Appliance that is pre-configured with all the necessary tools to perform a detailed digital forensic examination. It is compatible with Expert Witness Format (E01), Advanced Forensic Format (AFF), and raw (dd) evidence formats. The brand new version has been completely rebuilt on an Ubuntu base with many additional tools and capabilities that can match any modern forensic tool suite. SANS

IDA PRO

 IDA Pro is a Windows or Linux hosted multi-processor disassembler and debugger that offers so many features it is hard to describe them all. IDA Pro


Post a comment

Your Name or E-mail ID (mandatory)





 RSS of this page

Written by:   Version:   Last Edited By:   Modified

Información de contacto

http://www.iso27000.es/ISO27002/contacto.gif