Windows security toolbox: Network security

Ping and tracert are great, but sometimes you need a more powerful utility when troubleshooting your network -- especially where security is concerned. Check out these 12 free network security tools -- from scanners to network mappers -- that we've compiled into our Windows network security toolbox.

 

Security in the work place begins and ends with the strength of your network security. One successful attack can lead to information leaks, malware infections and can practically bring your company's daily activity to a screeching hault. Check out these 12 free tools from SearchWindowsSecurity.com to prevent these attacks from crippling your network.

 

Look@LAN Network Monitor   Engage Packet Builder   Netcat
Snort   Sysmon   Nmap
Ethereal   LanSpy 2.0   TCPView 2.34
SoftPerfect Network Scanner   SuperScan v4.0   NetStumbler

 

Look@LAN Network Monitor


Look@LAN Network Monitor is an advanced network monitor, that automatically detects and analyzes your network nodes, including operating system. The program can monitor the nodes and alert you of any changes (new nodes, offline nodes etc.). The main window lists all available nodes and detailed statistics and scan results are available for each individual machine, including a real-time traceroute report, ping results, active services (open ports) and more. In addition to the auto-detected nodes, you can also customize the scan ranges and add additional networks.

Additional features include (but are not limited to):

  • HTML reports
  • Statistical graphs
  • Network tree view
  • Single node scanning

Download Look@LAN Network Monitor
Return to Top of Page

 

Snort - Intrusion Detection

Snort® is an open source network intrusion prevention and detection system utilizing a rules-driven language which combines the benefits of signature, protocol and anomaly based inspection methods. With millions of downloads to date, Snort is the most widely deployed intrusion detection and prevention technology worldwide and has become the de facto standard for the industry.
Download Snort here
Return to Top of Page

 

Ethereal

Ethereal is used by network professionals around the world for troubleshooting, analysis, software and protocol development, and education. It has all of the standard features you would expect in a protocol analyzer, and several features not seen in any other product. Its open source license allows talented experts in the networking community to add enhancements. It runs on all popular computing platforms, including Unix, Linux, and Windows.
Download Ethereal
Return to Top of Page

 

SoftPerfect Network Scanner


SoftPerfect Network Scanner is a free multi-threaded IP, NetBIOS and SNMP scanner with a modern interface and several advanced features. It is intended for both system administrators and users who are interested in computer security. The program pings computers, scans for listening TCP ports and shows what types of resources are shared on a network (including system and hidden). p>In addition, it allows you to mount shared resources as network drives, browse them using Windows Explorer, filter the results list and more. SoftPerfect Network Scanner can also check for a user-defined port and report if it is found open, resolve host names and auto-detect your local IP range.

Main features include:

  • Fast multithreaded scanning
  • Pings computers
  • Detects hardware (MAC) addresses
  • Detects hidden shared resources (normally not visible on a network) and write accessible shares
  • Scans for listening TCP ports and SNMP services
  • Mounting and exploring of found resources
  • Doesn't require administrative privileges

Download SoftPerfect Network Scanner
Return to Top of Page

 

Engage Packet Builder

Packet injection starting from link layer (MAC address spoofing), supporting TCP. UDP and ICMP protocols
Download Engage Packet Builder
Return to Top of Page

 

Sysmon

Network monitoring tool designed to provide high performance and accurate network monitoring. Currently supported protocols include SMTP, IMAP, HTTP, TCP, UDP, NNTP, and PING tests.
Download Sysmon
Return to Top of Page

 

LanSpy 2.0


You can use LanSpy to find out who works on a remote computer, what kind of OS is installed or learn almost anything else about a remote computer in just a few seconds.

LanSpy is made for gathering the following information about a remote computer:

  • Ping
  • Domain name
  • NetBios names
  • MAC address
  • Server information
  • Domain (working group) information
  • Domain controllers
  • Remote control
  • Time
  • Disks
  • Transports
    • Users
    • Logged users
    • Global groups
    • Local groups
    • Security options
     
    SuperScan v4.0


    SuperScan 4 is an update of the Windows port scanning tool, SuperScan.

    New features in this version include:

    • Superior scanning speed
    • Support for unlimited IP ranges
    • Improved host detection using multiple ICMP methods
    • TCP SYN scanning
    • UDP scanning (two methods)
    • IP address import supporting ranges and CIDR formats
    • Simple HTML report generation
    • Source port scanning
    • Fast hostname resolving
    • Extensive banner grabbing
    • Massive built-in port list description database
    • IP and port scan order randomization
    • A selection of useful tools (ping, traceroute, Whois etc)
    • Extensive Windows host enumeration capability

    Download SuperScan v4.0
    Return to Top of Page
     
    Netcat


    Netcat is a featured networking utility which reads and writes data across network connections, using the TCP/IP protocol.

    It is designed to be a reliable "back-end" tool that can be used directly or easily driven by other programs and scripts. At the same time, it is a feature-rich network debugging and exploration tool, since it can create almost any kind of connection you would need and has several interesting built-in capabilities.

    It provides access to the following main features:

    • Outbound and inbound connections, TCP or UDP, to or from any ports.
    • Featured tunneling mode which allows also special tunneling such as UDP to TCP, with the possibility of specifying all network parameters (source port/interface, listening port/interface, and the remote host allowed to connect to the tunnel).
    • Built-in port-scanning capabilities, with randomizer.
    • Advanced usage options, such as buffered send-mode (one line every N seconds), and hexdump (to stderr or to a specified file) of trasmitted and received data.
    • Optional RFC854 telnet codes parser and responder.
      Download Netcat
      Return to Top of Page
     
    Nmap

    Nmap ("Network Mapper") is a free open source utility for network exploration or security auditing. It was designed to rapidly scan large networks, although it works against single hosts. Nmap uses raw IP packets to determine what hosts are available on the network, what services (application name and version) those hosts are offering, what operating systems (and OS versions) they are running, what type of packet filter and /firewalls are in use, and dozens of other characteristics. Nmap runs on most types of computers and both console and graphical versions are available. Nmap is free software, available with full source code under the terms of the GNU GPL.
    Download Nmap
    Return to Top of Page
     
    TCPView 2.34

    TCPView is a Windows program that will show you detailed listings of all TCP and UDP endpoints on your system, including the local and remote addresses and state of TCP connections. On Windows NT, 2000 and XP TCPView also reports the name of the process that owns the endpoint. TCPView provides a more informative and conveniently presented subset of the Netstat program that ships with Windows. The TCPView download includes Tcpvcon, a command-line version with the same functionality.
    Download TCPView 2.34
    Return to Top of Page
     
    NetStumbler


    NetStumbler is a tool for Windows that allows you to detect Wireless Local Area Networks (WLANs) using 802.11b, 802.11a and 802.11g.

    It has many uses:

    • Verify that your network is set up the way you intended.
    • Find locations with poor coverage in your WLAN.
    • Detect other networks that may be causing interference on your network.
    • Detect unauthorized "rogue" access points in your workplace.
    • Help aim directional antennas for long-haul WLAN links.
    • Use it recreationally for war driving.

    NetStumbler
    Return to Top of Page

     


    Related information from SearchWindowsSecurity.com:
This was first published in September 2008

Dig deeper on Endpoint security management tools

Pro+

Features

Enjoy the benefits of Pro+ membership, learn more and join.

0 comments

Oldest 

Forgot Password?

No problem! Submit your e-mail address below. We'll send you an email containing your password.

Your password has been sent to:

-ADS BY GOOGLE

SearchVirtualDesktop

SearchWindowsServer

SearchExchange

Close