Standalone Auditing software, SPA/SIAA complient, Windows & Mac?

525 pts.
Tags:
Auditing (compliance)
Mac
PC
SIIA
Software
SPA
I am looking for some recommendations on auditing software that I might be able to use. Because we have a mix of both Mac and PC, as well as some machines that are not on the domain (a situation not under my control), I'm interested in a potentially standalone application. The main requirements are that it can work on both PC and Mac (if necessary, I can look for two separate solutions, but a single would be preferable); SPA/SIIA compliant, and standalone. I'm interested in suggestions on both freeware or purchased, since I'd like to look at a wide range of choices. The software will be used in a University environment, in a research facility.
ASKED: June 9, 2008  2:43 PM
UPDATED: June 10, 2008  5:21 PM

Answer Wiki

Thanks. We'll let you know when a new response is added.

Two applications leap to mind: nmap (port scanner) and Nessus (vulnerability scanner).

Nessus has vulnerability tests for just about everything out there. Read more at nessus.org. The only thing is that the scanning engine itself runs in a Unix/Linux environment. But at a university, that should be no problem.

For a really good list of security tools, visit www.insecure.org (Home of nmap).

Personally, I’m a tool junkie, and so, have lots more than that – but those two will go a long way.

As long as you’re auditing, I’d also suggest looking into monitoring your firewall logs and analyzing them on a regular (automated) basis. I wrote some PERL code about 10 years ago which is based on output from a cisco Pix firewall, but it can be easily adapted to almost any text-based format (and some binary formats as well). http://www.networkeval.com/downloads/parselog.zip

Also – having worked doing network security at a university, I wish you luck in dealing with the politics of the situation.

Bob

Discuss This Question: 1  Reply

 
There was an error processing your information. Please try again later.
Thanks. We'll let you know when a new response is added.
Send me notifications when members answer or reply to this question.

REGISTER or login:

Forgot Password?
By submitting you agree to receive email from TechTarget and its partners. If you reside outside of the United States, you consent to having your personal data transferred to and processed in the United States. Privacy
  • Pressler2904
    I agree that University politics are way too much fun to describe...... Look into Big Fix - available for a variety of platforms (including Win, Mac (OS 9.2 and 10.x i believe) and several Linux flavors). Not only will it scan, but it can push "fixlets" - patches - as well... I used it a while ago, and was quite impressed with its' performance. Look into anything Netopia might have as well (maybe the Timbuktu suite???) as they are very much cross/multiple platform (Mac & PC).
    2,190 pointsBadges:
    report

Forgot Password

No problem! Submit your e-mail address below. We'll send you an e-mail containing your password.

Your password has been sent to:

To follow this tag...

There was an error processing your information. Please try again later.

REGISTER or login:

Forgot Password?
By submitting you agree to receive email from TechTarget and its partners. If you reside outside of the United States, you consent to having your personal data transferred to and processed in the United States. Privacy

Thanks! We'll email you when relevant content is added and updated.

Following