.

SARA

<<

Dengar13

User avatar

Sr. Member
Sr. Member

Posts: 380

Joined: Tue Sep 20, 2005 8:43 am

Location: The Steel City

Post Tue Feb 21, 2006 3:58 am

SARA

What are your thoughts on this tool?  Have a security assessment coming up and wanted other's opinions.
A+, Net+, MCP, CEH
MCSE: Security/Messaging
MCSA: Security/Messaging
Former U.S. Marine and damn proud of it!
<<

don

User avatar

Administrator
Administrator

Posts: 4226

Joined: Sun Aug 28, 2005 10:47 pm

Location: Chicago

Post Wed Feb 22, 2006 12:02 am

Re: SARA

For those interested...

Description from web site:

The Security Auditor's Research Assistant (SARA) is a third generation network security analysis tool that is:

1. Operates under Unix, Linux, MAC OS/X or Windows (through coLinux) OS'.
2. Supports the FBI/SANS Top 20 Consensus (8 Oct 04).
3. Can adapt to many firewalled environments.
4. Support remote self scan and API facilities.
5. Used for CIS benchmark initiatives
6. Plug-in facility for third party apps
7. SANS/ISTS Certified
8. CVE standards support (20040901)
9. Enterprise search module
10. Standalone or daemon mode
11. Free-use open SATAN oriented license
12. Updated twice a month (we try)
13. User extension support
14. Based on the SATAN model

The first generation assistant, the Security Administrator's Tool for Analyzing Networks (SATAN) was developed in early 1995. It became the benchmark for network security analysis for several years. However, few updates were provided and the tool slowly became obsolete in the growing threat environment.


http://www-arc.com/sara/

Don
CISSP, MCSE, CSTA, Security+ SME
<<

Dengar13

User avatar

Sr. Member
Sr. Member

Posts: 380

Joined: Tue Sep 20, 2005 8:43 am

Location: The Steel City

Post Wed Feb 22, 2006 12:13 am

Re: SARA

Thanks for the reply, Don!  In addition, we are going to use the latest and greates version of Nessus.  Any other ideas would be appreciated.  We are going for our PCI cert!
A+, Net+, MCP, CEH
MCSE: Security/Messaging
MCSA: Security/Messaging
Former U.S. Marine and damn proud of it!
<<

Dengar13

User avatar

Sr. Member
Sr. Member

Posts: 380

Joined: Tue Sep 20, 2005 8:43 am

Location: The Steel City

Post Fri Feb 24, 2006 3:06 pm

Re: SARA

This is a great tool.  It caught many vulnerabilities (Web, ports, etc.).  I wouldn't use this alone.  I see many guests on here lurking and browsing this forum.  Why not join this site and contribute?
A+, Net+, MCP, CEH
MCSE: Security/Messaging
MCSA: Security/Messaging
Former U.S. Marine and damn proud of it!

Return to Tools

Who is online

Users browsing this forum: No registered users and 0 guests

.
Powered by phpBB® Forum Software © phpBB Group.
Designed by ST Software