The price is right for these Windows security tools

Tight budgets and strict regulations often translate to uneasy times for those responsible for managing Windows Server environments. It seems there is more pressure to perform security assessments of corporate networks, leaving many administrators and IT managers wondering what to do.

The choice is often between doing it in-house with various Windows security tools or hiring an outside company. In many situations, there is no budget set aside for this testing. There's often no wrong answer to which way to go; however, certain regulations require that independent third parties are used to perform the work.

Having worked as an independent consultant for more than a decade -- often consulting with businesses in these specific situations -- I have found a reasonable compromise that shows due care is taking place, and reasonable security evaluations are ongoing and consistent. The first step in any good information security program is to acknowledge any weaknesses. There are many great open source and free tools, combined with low-cost commercial alternatives, available to perform reasonable security vulnerability assessments to help point out and correct issues.

The following list of Linux and Windows security tools can help ferret out weaknesses on servers and related network systems.

Kali Linux

Kali Linux is a live Linux DVD and virtual machine that offers vulnerability scanning, penetration testing and forensics tools to uncover niche vulnerabilities and research network events. This is a free, open-source utility. Some commercial alternatives include GFI LanGuard and Nexpose Community Edition.

NetScantools Basic

NetScantools Basic is a toolkit with various rudimentary network and security-related functions. The Pro version seeks vulnerabilities from open ports, to DNS weaknesses, to email security issues and just about everything in between.

TamoSoft Essential NetTools

TamoSoft Essential NetTools is a toolkit similar to NetScanTools Pro that checks for issues with network configuration and security. It is available free of charge.

Wireshark

Wireshark is a free, open-source network analyzer that captures packets to and from Windows servers. CommView and CommView for WiFi are commercial, yet low cost, network analyzers that do just as much on wired and wireless networks, often in a simpler manner.

Burp Proxy

Burp Proxy is a low-cost tool for evaluating IIS-based website and Web application vulnerabilities.

Microsoft Baseline Security Analyzer

The Microsoft Baseline Security Analyzer is a free tool that is installed on Windows servers to seek out weak passwords, missing patches and other security misconfigurations.

Metasploit Framework

Metasploit Framework is a free, open-source security tool that exploits specific vulnerabilities found on Windows systems to determine the severity of the vulnerability, such as obtaining a remote command prompt on a system without having to login.