Wininterrogate is a Win32 file system and process enumeration/integrity tool. A command line version of wininterrogate (currently available in CVS) will be bundled with the next release

Winfingerprint is a Win32 Host/Network Enumeration Scanner. Winfingerprint is capable of performing SMB, TCP, UDP, ICMP, RPC, and SNMP scans. Using SMB, winfingerprint can enumerate OS, users, groups, SIDs, password policies, services, service packs and hotfixes, NetBIOS shares, transports, sessions, disks, security event log, and time of day utilizing NT Domain (Net*), Active Directory, or WMI APIs. Winfingerprint-cli is a command line version of winfingerprint and it is currently bundled with each release.

The Windows configuration analysis tool runs on your workstation. Although I encourage you to download and run it from the website to make sure you have the latest version, the tool does not transfer the confidential configuration information to my server. If you participate in the anonymous statistics program, machine-identifiable information (such as IP and DNS information) is not sent to my statistics-gathering server.

The Unix configuration analysis tool runs on your workstation to analyze the information extrated by the script. Since most IT Security auditors use Windows workstations, the analyzer runs on Windows.

The best collection of Scripts to perfrom Auditing on Linux / Unix servers. It support Linux , HPUX, Solaris and Tru64

Sussen is a tool that checks for vulnerabilities and configuration issues on computer systems. It is based on the Open Vulnerability and Assessment

SQLAT is a suite of tools which could be usefull for pentesting a MS SQL Server. The tools are still in development but tend to be quite stable.The tools do dictionary attacks, upload files, read registry and dump the SAM. They do this by wrapping extended stored procedures. There is also a tool for doing a minimal analysis of a SQL Server with output as HTML. You need to be ’sa’ to run some of the tools, but this usually isn’t a problem.

The Router Audit Tool (rat) downloads configurations of devices to be audited (optionally), and then checks them against the settings defined in the benchmark. The Router Security Configuration Guide provides technical guidance intended to help network administrators and security officers improve the security of their networks.

Rootkit scanner is scanning tool to ensure you for about 99.9%* you're clean of nasty tools. This tool scans for rootkits, backdoors and local exploits by running tests

Pwdump is a tool that is used to grab Windows password hashes from a remote Windows computer.

The Windows NT and Windows 2000 Resource Kits come with a number of command-line tools that help you administer your Windows NT/2K systems. Over time, I've grown a collection of similar tools, including some not included in the Resource Kits. What sets these tools apart is that they all allow you to manage remote systems as well as the local one. The first tool in the suite was PsList, a tool that lets you view detailed information about processes, and the suite is continually growing. The "Ps" prefix in PsList relates to the fact that the standard UNIX process listing command-line tool is named "ps", so I've adopted this prefix for all the tools in order to tie them together into a suite of tools named PsTools.

Oscanner is an Oracle assessment framework developed in Java. It has a plugin-based architecture and comes with a couple of plugins that currently do:- Sid Enumeration- Passwords tests (common & dictionary)- Enumerate Oracle version- Enumerate account roles- Enumerate account privileges- Enumerate account hashes- Enumerate audit information- Enumerate password policies- Enumerate database links

A tool to Audit Cisco Configuration Files.

The Microsoft Internet Security and Acceleration (ISA) Server Best Practices Analyzer Tool is designed for administrators who want to determine the overall health of their ISA Server computers and to diagnose current problems. The tool scans the configuration settings of the local ISA Server computer and reports issues that do not conform to the recommended best practices

As its name suggests, this program lists all alternate data streams of an NTFS directory.  Of course it shows the ADS of encrypted files, even when these files were encrypted with another copy of Windows 2000

Provides templates for the major IIS-dependent Microsoft products. IIS Lockdown Tool functions by turning off unnecessary features, thereby reducing attack surface available to attackers. To provide in-depth defense or multiple layers of protection against attackers, URLscan, with customized templates for each supported server role, has been integrated into the IIS Lockdown Tool.

Hyena uses an easy-to-use visual Explorer-style interface for all operations, including right mouse click pop-up context menus for all objects. Management of users, groups (both local and global), shares, domains, computers, services, devices, events, files, printers and print jobs, sessions, open files, disk space, user rights, messaging, exporting, job scheduling, printing, and more are all supported. Hyena also features extensive Active Directory, Exchange, and WMI support as well.

Foundstone HackPack™ is a tool designed to aid security professionals in keeping up with changes and updates to security software. The tool offers a simple interface to a large variety of security tools. Much like an RSS reader for web page updates, HackPack shows a user a list of all the tools they want to track, along with current versions and links to download locations. This allows users to stay on top of which tools are being updated as well as monitor any current news and information on the tools the user is interested in. Keeping users up to date on new releases means new features can be tested and put to use more quickly allowing for users of HackPack to stay on top of security tools landscape.

fwlogwatch is a packet filter / firewall / IDS log analyzer written by Boris Wesslowski originally for RUS-CERT. It supports a lot of log formats and has many analysis options. It also features incident report and realtime response capabilities, an interactive web interface and internationalization.