Welcome to Scribd!

Skip carousel

17 - Network Security Management Tools

Uploaded by

Mohammad Salah Ragab

0% found this document useful (0 votes)

6 views20 pages

Copyright

Available Formats

PPT, PDF, TXT or read online from Scribd

Share this document

Share or Embed Document

Sharing Options

Did you find this document useful?

Is this content inappropriate?

Report this Document

Copyright:

Attribution Non-Commercial (BY-NC)

Available Formats

Download as PPT, PDF, TXT or read online from Scribd

Flag for inappropriate content

0% found this document useful (0 votes)

6 views20 pages

17 - Network Security Management Tools

Uploaded by

Mohammad Salah Ragab

Copyright:

Attribution Non-Commercial (BY-NC)

Available Formats

Download as PPT, PDF, TXT or read online from Scribd

Flag for inappropriate content

Jump to Page

You are on page 1of 20

Search inside document

Network Security Management Tools

Objectives
Upon completion of this chapter, you will be able to:
Describe security vulnerability testing, detection, and auditing tools useful in the Cisco network security environment

Copyright 1998, Cisco Systems, Inc.

MCNSNetwork Security Management Tools17-2

Integrity Testing Tools

Copyright 1998, Cisco Systems, Inc.

MCNSNetwork Security Management Tools17-3

Managing the Secure XYZ Network

Web Surfer Dialup Client PSTN/ ISDN Remote Branch

Internet

Network Access Server

Dialup

Perimeter Router

Firewall Sales Engineering

Bastion Host: Web Server FTP Server

Campus
CiscoSecure ACS Server TACACS+, RADIUS Token Server

Campus Client

Copyright 1998, Cisco Systems, Inc.

MCNSNetwork Security Management Tools17-4

Scanners
ISS SafeSuite (UNIX and NT)
Top commercial scanner Suite of several scanners with GUI

SATAN (UNIX)
Security Administrators Tool for Analyzing Networks

Scans remote hosts for most known security holes

Copyright 1998, Cisco Systems, Inc.

MCNSNetwork Security Management Tools17-5

Scanners (cont.)
NSS (UNIX)

Strobe (UNIX)
Jackal (UNIX)

IdentTCPScan (UNIX)
CONNECT (UNIX)

FSPScan (Windows, OS/2)

XSCAN (UNIX)
Copyright 1998, Cisco Systems, Inc.
MCNSNetwork Security Management Tools17-6

Sniffers
Network General Sniffer Network General XRay Gobbler (DOS/Windows) ETHLOAD Netman suite (Etherman)

Esniff.c
Network Monitor (Microsoft)
Copyright 1998, Cisco Systems, Inc.
MCNSNetwork Security Management Tools17-7

Password Crackers/Checkers
Passwd+ Crack (UNIX)
CrackerJack (UNIX) PaceCrack95 (Windows 95) Qcrack (DOS/Windows) Pcrack (UNIX Perl script) Hades (UNIX) Star Cracker (DOS)

John the Ripper (UNIX)

Killer Cracker (UNIX, others)

Copyright 1998, Cisco Systems, Inc.

MCNSNetwork Security Management Tools17-8

Network Utilities (UNIX)

host traceroute

rusers
finger/sfingerd showmount WHOIS smrsh ssh
Copyright 1998, Cisco Systems, Inc.
MCNSNetwork Security Management Tools17-9

Logging Tools
TCP_Wrapper
swatch trimlog logdaemon (UNIX)

Copyright 1998, Cisco Systems, Inc.

MCNSNetwork Security Management Tools17-10

Tool Suites

Merlin by CIAC (UNIX) Tiger (TAMU)

Copyright 1998, Cisco Systems, Inc.

MCNSNetwork Security Management Tools17-11

File/System Integrity Checkers

Used to guard against Trojan horses: MD5 COPS (UNIX) Tripwire ATP (Anti-Tampering Program)

Hobgoblin
Copyright 1998, Cisco Systems, Inc.
MCNSNetwork Security Management Tools17-12

System Monitors
Windows/NT
Cinco NeTXray for Win 95 and NT UltraScan v1.2 Port Scanner for NT Kane Security Analyst for NT

Microsoft EP Dump for NT

MicrosoftC2CERT

MCNSNetwork Security Management Tools17-13

Windows 95 Tools

NetScan Tools Network Toolbox

TCP/IP Surveyor

MCNSNetwork Security Management Tools17-14

Macintosh Tools

MacTCP Watcher

Query It!
WhatRoute

MCNSNetwork Security Management Tools17-15

Cisco IOS Software Commands

traceroute show ip route

debug ip packet
rmon show ip ?

MCNSNetwork Security Management Tools17-16

Chapter References
The following sites contain security tools:
ftp://ciac.llnl.gov/pub/ciac/sectools/unix/ ftp://coast.cs.purdue.edu/pub/tools/ ftp://ftp.cert.org/pub/tools/ ftp://ftp.win.tue.nl/pub/security/

ftp://ftp.funet.fi/pub/unix/security/
http://www.rootshell.com/ http://filepile.com/

http://www.iss.net/
Copyright 1998, Cisco Systems, Inc.
MCNSNetwork Security Management Tools17-17

Summary
Scanners automatically detect security weaknesses

ISS and SATAN are two of the most popular scanners

Sniffers capture packet traffic for later analysis Password crackers and checkers can be used to detect weak passwords, improving password security UNIX is the most powerful operating system for network security, because it has many network utilities Network logging tools are useful for detecting intrusions

Network security tools are also available for Windows NT and 95, DOS, Macintosh, and OS/2
Cisco IOS software has commands useful for security

MCNSNetwork Security Management Tools17-18

Review Questions
Q1. Which network security tool for the Windows NT platform would be useful for automatically detecting security weaknesses as part of managing network security?
A) ISS Safesuite

Q2. What is the Cisco IOS software command that can substitute for a packet sniffer?
A) debug ip packet

MCNSNetwork Security Management Tools17-19

Review Questions (Contd)

Q3. How can password crackers and checkers be used in managing network security?
A) Password crackers and checkers can be used to detect weak passwords, improving password security

Q4. Which operating system has the largest selection of network security utilities?
A) UNIX is the most powerful operating system for network security, because it has many network utilities

MCNSNetwork Security Management Tools17-20

Rust for Network Programming and Automation
From Everand
Rust for Network Programming and Automation
Brian Anderson
No ratings yet
Module 5 IT Infrastructure
Document68 pages
Module 5 IT Infrastructure
Akinmulewo Ayodele
50% (2)
Ethernet
Document29 pages
Ethernet
renzelsanraz22
No ratings yet
Security Audit Tools:: System Audits
Document7 pages
Security Audit Tools:: System Audits
ajit7373
No ratings yet
Ethikal Hacker Russum
Document5 pages
Ethikal Hacker Russum
vinodhack3
No ratings yet
Computer Security and Penetration Testing: Sniffers
Document65 pages
Computer Security and Penetration Testing: Sniffers
Osei Sylvester
No ratings yet
Security Issues in Networks With Internet Access: Presented by Sri Vallabh Aida Janciragic Sashidhar Reddy
Document37 pages
Security Issues in Networks With Internet Access: Presented by Sri Vallabh Aida Janciragic Sashidhar Reddy
Harish Bedi
No ratings yet
Computer Security and Penetration Testing: Scanning Tools
Document141 pages
Computer Security and Penetration Testing: Scanning Tools
Ethan Fernandez
No ratings yet
Ipsec: Security Across The Protocol Stack: Brad Stephenson Csci Netprog
Document27 pages
Ipsec: Security Across The Protocol Stack: Brad Stephenson Csci Netprog
Ankita Baid
No ratings yet
Cain - and - Abel Tutorial From Chiranjit
Document51 pages
Cain - and - Abel Tutorial From Chiranjit
ch.das
67% (3)
Computer Security and Penetration Testing: Scanning Tools
Document37 pages
Computer Security and Penetration Testing: Scanning Tools
Osei Sylvester
No ratings yet
Internet Protocol Usenet News Servers
Document8 pages
Internet Protocol Usenet News Servers
nazeermm100
No ratings yet
Acn Lanview
Document3 pages
Acn Lanview
vichare1
No ratings yet
How To Make Securing Your Router Mikrotik
Document43 pages
How To Make Securing Your Router Mikrotik
Ahmad Fahmi Anwari
No ratings yet
UNIT 5 - SNMP and RMON PDF
Document60 pages
UNIT 5 - SNMP and RMON PDF
balagsiva
No ratings yet
Network Intrusion Detection Systems: Randy Marchany VA Tech Computing Center Blacksburg, VA 24060 Marchany@vt - Edu
Document34 pages
Network Intrusion Detection Systems: Randy Marchany VA Tech Computing Center Blacksburg, VA 24060 Marchany@vt - Edu
sjmpak
No ratings yet
Password Attacks PDF
Document32 pages
Password Attacks PDF
tewsttesre
No ratings yet
Gaggaga
Document74 pages
Gaggaga
Sayyid Ridho
No ratings yet
Cyber Security For The Power Grid: Cyber Security Issues & Securing Control Systems
Document74 pages
Cyber Security For The Power Grid: Cyber Security Issues & Securing Control Systems
Jin Hern
No ratings yet
Tema 14. SNMPNetflow
Document48 pages
Tema 14. SNMPNetflow
Paola Gagñay
No ratings yet
Hacking Primer: Martin G. Nystrom, CISSP-ISSAP Security Architect, Cisco Systems, Inc
Document35 pages
Hacking Primer: Martin G. Nystrom, CISSP-ISSAP Security Architect, Cisco Systems, Inc
Sandeep Reddy
No ratings yet
This Is The Network Administrator or Hackers Greatest Dream
Document4 pages
This Is The Network Administrator or Hackers Greatest Dream
ewrdietsch
No ratings yet
Windows Secure Backdoor
Document2 pages
Windows Secure Backdoor
robi doco
No ratings yet
01 RSA EnVision SIEM For Cisco
Document36 pages
01 RSA EnVision SIEM For Cisco
Ali Topalan
No ratings yet
7020 Cns 13-8-21 Updated Final Manual
Document44 pages
7020 Cns 13-8-21 Updated Final Manual
JEET SHARMA
100% (1)
NOC Network Managment
Document70 pages
NOC Network Managment
Luis Mejia Garcia
100% (1)
Basics of Networking
Document23 pages
Basics of Networking
Shubham Parihar
No ratings yet
Subject: Cyber Security Lab Manual: Marwadi Education Foundation Group of Institute
Document106 pages
Subject: Cyber Security Lab Manual: Marwadi Education Foundation Group of Institute
Priyanka Doshi
No ratings yet
Computer Forensics and Investigations
Document33 pages
Computer Forensics and Investigations
jaya prasanna
No ratings yet
Firewalls Complete
Document406 pages
Firewalls Complete
Ing Alfredo Jean
No ratings yet
SNMP
Document31 pages
SNMP
Astri Mayasari
No ratings yet
SNMP
Document31 pages
SNMP
saikat_bandyopadhyay
No ratings yet
Securing Windows Server: 1.wireless LAN Auditing Tools
Document46 pages
Securing Windows Server: 1.wireless LAN Auditing Tools
pranab94
No ratings yet
Comptia Security Sy0 401 PDF
Document19 pages
Comptia Security Sy0 401 PDF
Stee Ochieng'
No ratings yet
Eti Unit6
Document24 pages
Eti Unit6
Shital Deore
No ratings yet
NSC File
Document9 pages
NSC File
Yash Kinha
No ratings yet
Principles of Unix System Management - Solaris 8
Document186 pages
Principles of Unix System Management - Solaris 8
Venkateswara Reddy V
No ratings yet
SNMP
Document31 pages
SNMP
jeevasakthi
No ratings yet
Certified Penetration Testing Professional CPTP
Document12 pages
Certified Penetration Testing Professional CPTP
lasaus
No ratings yet
CSA Applying Recon CHPT 1
Document46 pages
CSA Applying Recon CHPT 1
RammyBrad
No ratings yet
Enumeration EH A
Document35 pages
Enumeration EH A
Mustefa Mohammed
No ratings yet
Arcsight Connector Supported Products Flyer
Document8 pages
Arcsight Connector Supported Products Flyer
Ramnesh Dubey
No ratings yet
Assignment 1.3 - Linux Networking and Command Line Tools-2
Document8 pages
Assignment 1.3 - Linux Networking and Command Line Tools-2
Denis Osanya
No ratings yet
The 7 Layers of The OSI Model Are Shown Below
Document18 pages
The 7 Layers of The OSI Model Are Shown Below
raiched
No ratings yet
Dhansham - Engineer's Notebook Checkpoint Firewalls Gaia - Palo Alto - Useful CLI Commands
Document11 pages
Dhansham - Engineer's Notebook Checkpoint Firewalls Gaia - Palo Alto - Useful CLI Commands
Heera Singh
No ratings yet
Vxworks Product Overview
Document4 pages
Vxworks Product Overview
Anirban Bhattacharjee
No ratings yet
Disabling MS Advanced Threat Protection and Advanced Threat Analytics
Document76 pages
Disabling MS Advanced Threat Protection and Advanced Threat Analytics
Saadat Rehman
No ratings yet
Chapter 5 S
Document30 pages
Chapter 5 S
Nasis Dereje
No ratings yet
EC-Council - Certified Security Analyst: Course Introduction Student Introduction
Document30 pages
EC-Council - Certified Security Analyst: Course Introduction Student Introduction
Salman Aslam
No ratings yet
Sesi 26 How To Secure An Application
Document68 pages
Sesi 26 How To Secure An Application
Abiyau Neo
No ratings yet
Ethical Hacking Training
Document31 pages
Ethical Hacking Training
Khoi Dang
No ratings yet
Chapter 8 - Network Management: Malfunction
Document30 pages
Chapter 8 - Network Management: Malfunction
ajith54
No ratings yet
DCN - SNMP
Document31 pages
DCN - SNMP
Sandip Kumar Gupta
No ratings yet
Chapter 7 Systems Security
Document30 pages
Chapter 7 Systems Security
Success College
No ratings yet
Sniffer
Document18 pages
Sniffer
Narasimha Yadav
No ratings yet
Week 1 - Lecture - 1 - 2
Document43 pages
Week 1 - Lecture - 1 - 2
Hasan Ahmed
No ratings yet
SNMP
Document31 pages
SNMP
Vinay Verma
No ratings yet
Auditing Information Systems
From Everand
Auditing Information Systems
Jack J. Champlain
No ratings yet
Linux Networking Clearly Explained
From Everand
Linux Networking Clearly Explained
Bryan Pfaffenberger
Rating: 2 out of 5 stars
2/5 (3)
Cisco Network Administration Interview Questions: CISCO CCNA Certification Review
From Everand
Cisco Network Administration Interview Questions: CISCO CCNA Certification Review
Equity Press
Rating: 4.5 out of 5 stars
4.5/5 (6)
Linux Essentials for Hackers & Pentesters: Kali Linux Basics for Wireless Hacking, Penetration Testing, VPNs, Proxy Servers and Networking Commands
From Everand
Linux Essentials for Hackers & Pentesters: Kali Linux Basics for Wireless Hacking, Penetration Testing, VPNs, Proxy Servers and Networking Commands
Linux Advocate Team
No ratings yet
NBMB
Document3 pages
NBMB
Luis Utos Ceras
No ratings yet
300 210 Sitcs
Document3 pages
300 210 Sitcs
llefela2000
No ratings yet
Polycom Unified Communications For Cisco Uc Manager Environments Admin Guide Enus
Document95 pages
Polycom Unified Communications For Cisco Uc Manager Environments Admin Guide Enus
iwc2008007
No ratings yet
Ironport 3 Cisco+Web+Security+Appliance
Document7 pages
Ironport 3 Cisco+Web+Security+Appliance
Frederic Masiala
No ratings yet
Packet Icons - Original
Document10 pages
Packet Icons - Original
kushara
No ratings yet
Engagement Guide BB
Document38 pages
Engagement Guide BB
IVAN CASTAÑEDA MARQUEZ
No ratings yet
R1 Cisco
Document3 pages
R1 Cisco
Hector Gasga
No ratings yet
Spa 504 G 1
Document7 pages
Spa 504 G 1
Anonymous PbuinjU
No ratings yet
Datasheet ASAs
Document15 pages
Datasheet ASAs
Baruko Dohko
No ratings yet
PROGNOSIS IP Telephony Manager Key Features With CUCM Appliances v2 - 0
Document32 pages
PROGNOSIS IP Telephony Manager Key Features With CUCM Appliances v2 - 0
chaitanya dhaka
No ratings yet
SNTC HW Install Guide
Document14 pages
SNTC HW Install Guide
Josue Mora Vargas
No ratings yet
Rohit Namdev BE
Document2 pages
Rohit Namdev BE
Aarav Tutorials
No ratings yet
Installation Guide For Cisco Business Edition 7000H/M (M5), Release 12.5
Document36 pages
Installation Guide For Cisco Business Edition 7000H/M (M5), Release 12.5
Samuel Gabra
No ratings yet
Kron PDF
Document8 pages
Kron PDF
Juan Berríos
No ratings yet
Chapter 3 Company Profile
Document7 pages
Chapter 3 Company Profile
sunil
No ratings yet
Cisco's Innovation Through Acquisition Strategy
Document47 pages
Cisco's Innovation Through Acquisition Strategy
api-19012351
100% (2)
Newest PP Icons
Document81 pages
Newest PP Icons
Daniela Lara Cisternas
No ratings yet
Chpt.5.Supplemental Cisco - ppt.2
Document52 pages
Chpt.5.Supplemental Cisco - ppt.2
Pinto Pio
No ratings yet
Routing Product Comparison: Cisco HPE Huawei SD-WAN Vendors
Document6 pages
Routing Product Comparison: Cisco HPE Huawei SD-WAN Vendors
Kunal
No ratings yet
CFG DWDM Controllers
Document24 pages
CFG DWDM Controllers
Valentina Salihu
No ratings yet
Csa Xe 3 13s Asr 920 Book1g 10G Ports PDF
Document16 pages
Csa Xe 3 13s Asr 920 Book1g 10G Ports PDF
Syed Jailany
No ratings yet
Huawei and Cisco Switches Interoperation V2.5
Document2 pages
Huawei and Cisco Switches Interoperation V2.5
Cristian Alberto Oyarzo Calisto
No ratings yet
CUCM BK CEF0C471 00 Cucm-features-And-services-guide Chapter 01100
Document10 pages
CUCM BK CEF0C471 00 Cucm-features-And-services-guide Chapter 01100
Darwin Olayo Hernández
No ratings yet
Cisco 860 Series, Cisco 880 Series, and Cisco 890 Series Integrated Services Routers Hardware Installation Guide
Document136 pages
Cisco 860 Series, Cisco 880 Series, and Cisco 890 Series Integrated Services Routers Hardware Installation Guide
Angel Muñoz
No ratings yet
White Paper c11 741071
Document20 pages
White Paper c11 741071
Eh Photography
No ratings yet
4000 Series Router Poster
Document1 page
4000 Series Router Poster
kanggodolanan
No ratings yet
Elevator Pitch Tips1 - v2
Document19 pages
Elevator Pitch Tips1 - v2
blezythecat
No ratings yet
Hyperflex 4.0: Key Technical Updates
Document26 pages
Hyperflex 4.0: Key Technical Updates
Anonymous N22tyB6UN
No ratings yet
Data Center Transformation: Patrick Mckinnis Systems Engineer Cisco Systems, Inc
Document38 pages
Data Center Transformation: Patrick Mckinnis Systems Engineer Cisco Systems, Inc
jeffgrantinct
No ratings yet