Standalone Auditing software, SPA/SIAA complient, Windows & Mac?

525 pts.
Audit and compliance
I am looking for some recommendations on auditing software that I might be able to use. Because we have a mix of both Mac and PC, as well as some machines that are not on the domain (a situation not under my control), I'm interested in a potentially standalone application. The main requirements are that it can work on both PC and Mac (if necessary, I can look for two separate solutions, but a single would be preferable); SPA/SIIA compliant, and standalone. I'm interested in suggestions on both freeware or purchased, since I'd like to look at a wide range of choices. The software will be used in a University environment, in a research facility.

Answer Wiki

Thanks. We'll let you know when a new response is added.

Two applications leap to mind: nmap (port scanner) and Nessus (vulnerability scanner).

Nessus has vulnerability tests for just about everything out there. Read more at The only thing is that the scanning engine itself runs in a Unix/Linux environment. But at a university, that should be no problem.

For a really good list of security tools, visit (Home of nmap).

Personally, I’m a tool junkie, and so, have lots more than that – but those two will go a long way.

As long as you’re auditing, I’d also suggest looking into monitoring your firewall logs and analyzing them on a regular (automated) basis. I wrote some PERL code about 10 years ago which is based on output from a cisco Pix firewall, but it can be easily adapted to almost any text-based format (and some binary formats as well).

Also – having worked doing network security at a university, I wish you luck in dealing with the politics of the situation.


Discuss This Question: 1  Reply

There was an error processing your information. Please try again later.
Thanks. We'll let you know when a new response is added.
Send me notifications when members answer or reply to this question.
  • Pressler2904
    I agree that University politics are way too much fun to describe...... Look into Big Fix - available for a variety of platforms (including Win, Mac (OS 9.2 and 10.x i believe) and several Linux flavors). Not only will it scan, but it can push "fixlets" - patches - as well... I used it a while ago, and was quite impressed with its' performance. Look into anything Netopia might have as well (maybe the Timbuktu suite???) as they are very much cross/multiple platform (Mac & PC).
    2,190 pointsBadges:

Forgot Password

No problem! Submit your e-mail address below. We'll send you an e-mail containing your password.

Your password has been sent to:

To follow this tag...

There was an error processing your information. Please try again later.

Thanks! We'll email you when relevant content is added and updated.


Share this item with your network: