Thank you for visiting our website. OneConsult GmbH specializes
in IT security consulting and strategic consulting. We offer our
clients unbiased advice because we are independent from manufacturers
and products, as well as training and coaching from recognized specialists
.
This page contains a small selection of tools that
can be used to test the security level of an infrastructure or that
we recommend for protection against hackers and virus attacks. There
is no difference between the use of test tools and a real hacker
attack, as hackers use tools of the same type. We therefore expressly
disclaim any liability for loss or damage caused!
| Test
tool: Susceptibility to remote administration tools (RAT,
trojans) |
OneConsult®
Pandora LT |
IMPORTANT:
OneConsult® Pandora LT has been upgraded since Computerworld
went to press. As a result, the GUI and functionality of the
current version 3.11 differ from the version described in
the article. Please read the installation and operation instructions.
OneConsult® Pandora LT was developed as a user-friendly
application for testing whether an IT infrastructure is protected
against attacks based on protocol tunneling, also known as
inside-out attacks (breakout from the LAN via the firewall
to the external network).
If no appropriate protection mechanisms (e.g. firewall with
black/white list approach, IDS/IPS, anti-trojan programs or
web proxy with user authentication) have been installed on
the target system or network, it should be possible to control
the system 'infected' with the client component remotely via
the server component (through one or more firewalls).
OneConsult® Pandora LT is a client/server program
optimized for Windows XP and the LTI version is freeware
(please nevertheless note the license agreement). Please contact
us, if you are interested in the payware OneConsult®
Pandora PRO (incl. https and dns tunneling) tool. |
|
|
|
| |
|
Update information service: Register here
to receive information about new (free) versions of OneConsult®
Pandora.
|
| Own IP
address |
|
We have provided
this page on which your computer's (external) IP address and
the information communicated by your browser (which you are
using to view this page) can be displayed. |
|
| Port list |
|
Our comprehensive
list of ports and the services behind them (including malware
and trojans). |
|
| Multifunctional
network tool |
Netcat |
Netcat
is a multifunctional network tool (TCP and UDP) for Linux and
Windwos. It is also called Swiss Army Knife for networks, because
its usefulness and versatility. With Cryptcat there is also
a encrypted variation available.
|
|
| farm9.org/Cryptcat |
| Port
scanner / OS and service detection |
Hping2 |
Hping2 is a versatile network tool (TCP/IP) for Linux and
Windows. All kind of TCP/IP packets can be sent and the
responses are displayed like the output of the command ping.
|
|
| Nmap |
Nmap
is the best-known port scanner. It is the basis for most security
scanners (including commercial ones) and is a very good tool
for identifying services and operating systems. Although Nmap
also supports UDP port scans, it is less suitable for this (we
recommend Unicornscan). The source code is subject to a GPL
(Gnu Public License) and is freeware. There are versions for
Microsoft Windows and for Linux/Unix. |
|
|
|
| Unicornscan |
Unicornscan
is a fast, high-performance port scanner that is equally suitable
for TCP and UDP scans. The source code is subject to a GPL (Gnu
Public License) and is freeware. The software runs under Linux/Unix. |
|
| Xprobe2 |
Xprobe2 is
considered one of the most reliable tools for remote operating
system identification. Xprobe2 is subject to a GPL, is freeware
and runs under Linux/Unix. |
|
| Security
Scanner (allround) |
Nessus |
Until the end of 2004, Nessus was the best-known non-commercial
security scanner, with well over 100,000 installations. Since
the end of 2004, users have had to pay recurring annual license
fees for the latest plug-ins and/or for commercial use. Nessus
operates on the client server principle, with the tests being
carried out by the server (only runs under Linux/Unix). It
is configured and controlled via the client (Linux/Unix and
Windows). All tests are implemented in the form of plug-ins.
The plug-in database updates automatically via the Internet
when a simple command is input. |
|
|
|
|
|
| GFiLANguard |
LANguard is
a very powerful commercial security scanner that runs under
Windows and can also install the latest patches and updates
on the target systems. |
|
| Web
server security scanner |
Nikto |
Nikto
is a security scanner that is specialized for web servers (ports
80 and 443). It meticulously collects and displays security-relevant
information and highlights security loopholes The script is
written in Perl and requires a Perl interpreter. |
|
| Wireless
LAN security scanner |
Aircrack-NG |
Aircrack-NG
is a wireless tool suite for Windows and Linux, which displays
wireless devices, supports packet injection and cracking 802.11
WEP- and WPA-PSK-Keys. |
|
| Airsnort |
Airsnort is
a scanner for wireless LANs. It sniffs for all information that
is transmitted via access points in the Ether and displays it.
Airsnort runs under Linux/Unix and is freeware. |
|
| Ministumbler |
Ministumbler provides
equivalent functionality like Netstumbler - for Windows Mobile.
|
|
| Netstumbler |
Netstumbler is a scanner
for wireless LANs. It sniffs for all information that is transmitted
via access points in the Ether and displays it graphically.
Netstumbler runs under Windows and is freeware. |
|
| WifiFoFum |
WifiFoFum
is like Ministumbler and can localize wireless devices and display
them grafically on a small radar screen. |
|
| Firewall |
Windows
Firewall & XPFiremon |
Service
Pack 2 for the Windows XP operating system includes a firewall
that (when correctly configured) is intended to provide adequate
protection for most user PCs against direct hacker attacks and
unauthorized system access. Service Pack 2 (SP2) can be downloaded
free via the update function in Internet Explorer.
|
|
|
XPFiremon is a freeware tool, whose functions complement
the Windows XP firewall by displaying the status of the firewall
(active/inactive) by means of a symbol in the system tray.
Right-clicking on the symbol also enables the user to conveniently
configure the firewall settings. |
|
| ZoneAlarm |
ZoneAlarm
is a good, widely used firewall. It runs under Windows and the
basic version for private users (not for commercial use) is
freeware. |
|
| Protection
against viruses, worms and trojans |
AntiVir |
AntiVir
provides outstanding protection against malicious mobile code
(viruses, worms, trojans, etc.). There are versions for Windows
and Linux/Unix. AntiVir Personal Edition in the basic version
for private users (not for commercial use) is freeware. |
|
| BitDefender |
BitDefender
provides good protection against malicious mobile code (viruses,
worms, trojans, etc.). There are versions for Windows and Linux/Unix.
There are free versions for private users (not for commercial
use). |
|
The information on this page reflects our personal
opinions. Please let us know if any of the information on this page
is incorrect.
