2021 / Incident Response / Penetration test category

Security Tools – provide more security yourself!

Security Tools – provide more security yourself!

There are numerous security tools that are open source and can therefore be used free of charge. It is no secret that even trained pentesters use many of these tools. The SANS Institute has listed a considerable number of tools that help to determine the level of IT security – at different levels – and subsequently increase it.

At this point it should be noted that the mere possession and use of tools does not help much. Cement, hammers and tile cutters are also available at hardware stores – but not everyone knows how to use them. And even in the digital environment, using tools can end up creating more work. But those who have knowledge should dare to take a look.

Free security tools – sufficient to capture a status quo

The SANS Institute has sorted the tools into the categories “Blue Team”, “Cloud Security”,“Penetration Testing” and a few more. Thus, tools can be searched for specifically to analyze an existing problem or to answer a question. There are also short description texts about the software and a reference to the author. However, the note “less is more” applies at this point. We advise against installing everything for no reason.

From Acheron to DNSSpoof to EZ Tools – the list is extensive, but holds both well-known and lesser-known tips. The small PDF document shows that the community around the development of relevant security tools is present. The document with about 150 free security tools can be downloaded easily – without depositing an e-mail address.

The SANS Institute. Monitor, support and shape a safer Internet

If you are regularly looking for information, impulses or news concerning harmful activities on the Internet, you should pay a visit to the website of the SANS Institute in recurring intervals. Since 1989, the Institute has been providing information on a wide variety of hazards and today represents an important institution for the dissemination of helpful information. In addition to pure information, the institute also offers training, certification and other degrees.

Photo of author

Chris Wojzechowski

Mein Name ist Chris Wojzechowski und ich habe vor wenigen Jahren meinen Master in Internet-Sicherheit in Gelsenkirchen studiert. Ich bin geschäftsführender Gesellschafter der AWARE7 GmbH und ausgebildeter IT-Risk Manager, IT-Grundschutz Praktiker (TÜV) und besitze die Prüfverfahrenskompetenz für § 8a BSIG. Unser Brot und Buttergeschäft ist die Durchführung von Penetrationstests. Wir setzen uns darüber hinaus für ein breites Verständnis für IT-Sicherheit in Europa ein und bieten aus diesem Grund den Großteil unserer Produkte kostenfrei an.