Ten Tools for Security Professionals

•

2 likes•1,154 views

A short lecture that I gave to the Information and Computer Security class at Mississippi State University this semester

Technology Business

Ten security tools you can
pick up and use right now
(and a few extras)

CSE 4/6243
January 28, 2008
Wesley McGrew rwm8@cse.msstate.edu

Introduction
Focus is on “everyday” kinds of tools.

Many security tools are double-edged swords

The same tool that can be used to test your
defenses can be used in an attack

Use these tools in the lab! Never attack a
network or system without explicit and speciﬁc
permission!

Introduction
This list is inspired by previous “tool” lectures
given by Russ Ward and myself

http://sectools.org/ also a great resource

Focus is on free tools, unless otherwise stated

also plenty of good commercial tools out there,
such as Core Impact

What's hot

Lab Meeting - 20140902 - Root Guard-Protecting Rooted Android PhonesSyuan Wang

OS Database Security Chapter 6AfiqEfendy Zaen

OWASP Serbia - A6 security misconfigurationNikola Milosevic

Continuous Security - NDC Sydney 2017Laura Bell

Explore Security Testingshwetaupadhyay

Machine Learning for Malware Classification and ClusteringAshwini Almad

Ch08 Microsoft Operating System Vulnerabilitiesphanleson

Continuous security testing - sharing responsibilityVodqaBLR

Active Testingfrisksoftware

Security evaluation of pattern classifiers under attack Papitha Velumani

Building & Leveraging White Database for Antivirus Testingfrisksoftware

A5: Security Misconfiguration Tariq Islam

Security evaluation of pattern classifiers under attackShakas Technologies

AlienVault Brute Force Attacks- Keeping the Bots at Bay with AlienVault USM +...AlienVault

Sorting Out The Trashfrisksoftware

Engineering Security Vulnerability Prevention, Detection, and ResponseJinnah University for Women

An Introduction to Malware ClassificationJohn Seymour

5 Important Secure Coding PracticesThomas Kurian Ambattu,CRISC,ISLA-2011 (ISC)²

Static analysis for securityFadi Abdulwahab

Assessment and Threats: Protecting Your Company from Cyber AttacksCimation

What's hot (20)

Lab Meeting - 20140902 - Root Guard-Protecting Rooted Android Phones

OS Database Security Chapter 6

OWASP Serbia - A6 security misconfiguration

Continuous Security - NDC Sydney 2017

Explore Security Testing

Machine Learning for Malware Classification and Clustering

Ch08 Microsoft Operating System Vulnerabilities

Continuous security testing - sharing responsibility

Active Testing

Security evaluation of pattern classifiers under attack

Building & Leveraging White Database for Antivirus Testing

A5: Security Misconfiguration

Security evaluation of pattern classifiers under attack

AlienVault Brute Force Attacks- Keeping the Bots at Bay with AlienVault USM +...

Sorting Out The Trash

Engineering Security Vulnerability Prevention, Detection, and Response

An Introduction to Malware Classification

5 Important Secure Coding Practices

Static analysis for security

Assessment and Threats: Protecting Your Company from Cyber Attacks

Similar to Ten Tools for Security Professionals

Penetration testing dont just leave it to chanceDr. Anish Cheriyan (PhD)

Arved sandstrom - the rotwithin - atlseccon2011Atlantic Security Conference

Best Practices, Types, and Tools for Security Testing in 2023.docxAfour tech

IRJET- Penetration Testing using Metasploit Framework: An Ethical ApproachIRJET Journal

A Comparison Study of Open Source Penetration Testing Toolsijtsrd

Break it while you make it: writing (more) secure softwareLeigh Honeywell

smpefrsharmam

What are DevSecOps Tools and Why Do You Need Them?Dev Software

SEC 572 Entire Course NEWshyamuopiv

Understanding Vulnerabilities in SoftwareNicole Gaehle, MSIST

Pentesting with linuxHammad Ahmed Khawaja

CyberSecurity Assignment.pptxVinayPratap58

Exploits Attack on Windows VulnerabilitiesAmit Kumbhar

Current Topics paper A4 submission 4.30.2015 Master CopyTommie Walls

The Basics of Hacking and Penetration Testing ToolsHacker Combat

Sec 572 Education Organization / snaptutorial.comBaileya109

Iaetsd evasive security using ac ls on threadsIaetsd Iaetsd

Sec 572 Education Specialist-snaptutorial.comrobertlesew79

Malware Evasion TechniquesThomas Roccia

Sec 572 Enhance teaching / snaptutorial.comHarrisGeorg69

Similar to Ten Tools for Security Professionals (20)

Penetration testing dont just leave it to chance

Arved sandstrom - the rotwithin - atlseccon2011

Best Practices, Types, and Tools for Security Testing in 2023.docx

IRJET- Penetration Testing using Metasploit Framework: An Ethical Approach

A Comparison Study of Open Source Penetration Testing Tools

Break it while you make it: writing (more) secure software

smpef

What are DevSecOps Tools and Why Do You Need Them?

SEC 572 Entire Course NEW

Understanding Vulnerabilities in Software

Pentesting with linux

CyberSecurity Assignment.pptx

Exploits Attack on Windows Vulnerabilities

Current Topics paper A4 submission 4.30.2015 Master Copy

The Basics of Hacking and Penetration Testing Tools

Sec 572 Education Organization / snaptutorial.com

Iaetsd evasive security using ac ls on threads

Sec 572 Education Specialist-snaptutorial.com

Malware Evasion Techniques

Sec 572 Enhance teaching / snaptutorial.com

Recently uploaded

AI as an Interface for Commercial BuildingsMemoori

SAP Build Work Zone - Overview L2-L3.pptxNavinnSomaal

Transcript: New from BookNet Canada for 2024: BNC CataList - Tech Forum 2024BookNet Canada

The Future of Software Development - Devin AI Innovative Approach.pdfSeasiaInfotech2

Training state-of-the-art general text embeddingZilliz

Bun (KitWorks Team Study 노별마루 발표 2024.4.22)Wonjun Hwang

Kotlin Multiplatform & Compose Multiplatform - Starter kit for pragmaticscarlostorres15106

Ensuring Technical Readiness For Copilot in Microsoft 3652toLead Limited

Are Multi-Cloud and Serverless Good or Bad?Mattias Andersson

Commit 2024 - Secret Management made easyAlfredo García Lavilla

WordPress Websites for Engineers: Elevate Your Brandgvaughan

DevoxxFR 2024 Reproducible Builds with Apache MavenHervé Boutemy

Unraveling Multimodality with Large Language Models.pdfAlex Barbosa Coqueiro

Developer Data Modeling Mistakes: From Postgres to NoSQLScyllaDB

"Debugging python applications inside k8s environment", Andrii SoldatenkoFwdays

"ML in Production",Oleksandr BaganFwdays

DevEX - reference for building teams, processes, and platformsSergiu Bodiu

"LLMs for Python Engineers: Advanced Data Analysis and Semantic Kernel",Oleks...Fwdays

Leverage Zilliz Serverless - Up to 50X Saving for Your Vector Storage CostZilliz

Search Engine Optimization SEO PDF for 2024.pdfRankYa

Recently uploaded (20)

AI as an Interface for Commercial Buildings

SAP Build Work Zone - Overview L2-L3.pptx

Transcript: New from BookNet Canada for 2024: BNC CataList - Tech Forum 2024

The Future of Software Development - Devin AI Innovative Approach.pdf

Training state-of-the-art general text embedding

Bun (KitWorks Team Study 노별마루 발표 2024.4.22)

Kotlin Multiplatform & Compose Multiplatform - Starter kit for pragmatics

Ensuring Technical Readiness For Copilot in Microsoft 365

Are Multi-Cloud and Serverless Good or Bad?

Commit 2024 - Secret Management made easy

WordPress Websites for Engineers: Elevate Your Brand

DevoxxFR 2024 Reproducible Builds with Apache Maven

Unraveling Multimodality with Large Language Models.pdf

Developer Data Modeling Mistakes: From Postgres to NoSQL

"Debugging python applications inside k8s environment", Andrii Soldatenko

"ML in Production",Oleksandr Bagan

DevEX - reference for building teams, processes, and platforms

"LLMs for Python Engineers: Advanced Data Analysis and Semantic Kernel",Oleks...

Leverage Zilliz Serverless - Up to 50X Saving for Your Vector Storage Cost

Search Engine Optimization SEO PDF for 2024.pdf