Editor's review
A tool that helps administrators monitor the security of terminals on a network remotely.
Pros: Nsauditor Network Security Auditor is a tool that allows a user to monitor the security of a number of terminals on a network. It checks for all potential security holes in the local network and informs the user of these potential problems. It not only has network auditing functions but augments these with scanning and monitoring functions as well. TCP, UDP endpoints can be identified by processes (and port numbers) using them. Unwanted connections can be identified and closed remotely right from the Nsauditor window. All in all it is a one stop shop for all things that are required by network administrators.
The main features include an HTTP Traffic generator, DNS / WHOIS lookup capabilities, Sniffing, Network Scanning, Packet filtering and analysis, Web Proxy scanning, a tough firewall, and more. A number of auditing functions help to monitor the health of the network and its security: Password auditing, Registry auditing, Log analyzer, Network attack probes, HTTP & CGI server auditing, OS detection and finger-printing, and a robust intrusion detection system. It also allows in addition to the DNS / WHOIS lookups, LM / NTLM lookups, cataloging of RPC, SQL, SNMP information after their discovery and much more. All in all, a very powerful tool for administrators to monitor network security.
Cons: The interface is really hard to get around and is definitely intended only for administrators. That may not be a bad thing seeing as this ought not to fall into the hands of anyone but an administrator, because they could wreak havoc. In fact, that is also the single biggest concern about this tool that it has too much information at one location which can pose a significant security threat.
Overall: 4 stars. Works well as it is intended to do. Difficult interface and it may pose a security threat if it falls into the wrong hands.
User comments