Download
IT Service Management (ITSM) Strategy Templates
Download Free ITIL/ITSM IT Service Management Strategy Templates

1
1.1 Background
The
- Add new comment
- Read more
- 5960 reads
Complete list of free Web Application Security Scanner
Complete list of Free Download Open Source Web Application Security Scanner Tools
1. Grabber by Romain Gaucher
http://rgaucher.info/beta/grabber/
Grabber is a web application scanner. Basically it detects some kind of vulnerabilities in your website. Grabber is simple, not fast but portable and really adaptable. This software is designed to scan small websites such as personals, forums etc. absolutely not big application: it would take too long time and flood your network. Grabber is a very small application (currently 2.5kLOC in Python) and the first reason of this scanner is to have a "minimum bar" scanner for the Samate Tool Evaluation Program at NIST. Grabber is also for me a nice way to do some automatics verification on websites/scripts I do. Users should know some things about web vulnerabilities before using this soft because it only tell you what vulnerability it is... not how to solve it.
2. Grendel-Scan by David Byrne and Eric Duprey
http://grendel-scan.com/
Grendel-Scan is an open-source web application security testing tool. It has automated testing module for detecting common web application vulnerabilities, and features geared at aiding manual penetration tests. The only system requirement is Java 5; Windows, Linux and Macintosh builds are available.
3. Paros by Chinotec
http://parosproxy.org/
Paros is for people who need to evaluate the security of their web applications. It is free of charge and completely written in Java. Through Paros's proxy nature, all HTTP and HTTPS data between server and client, including cookies and form fields, can be intercepted and modified.
- Add new comment
- Read more
- 3353 reads
Download free Policy & Procedure Manager 4.5

Well its 30 days free trial actually, but still its a very useful software for those working with a lot of documentation, policy and procedures. For more information you can visit their main site or directly download (29MB) from download.com
The web-based Policy & Procedure Manager provides your staff with instant access to your organization's policies and procedures. It notifies those who are required to read specific documents and tracks who has read them. You can use the software to create, review, approve, and archive all of your documents, not just policies and procedures.
Download Network Security Service Level Agreement (SLA) Sample Templates

Below sample service level agreement (SLA) for supporting security event feeds from network devices. This sample SLA is arranged between the network support team (NetEng) and the team to whom security monitoring is assigned (InfoSec).
The purpose of this document is to clarify support responsibilities and expectations. Specifically, it outlines:
- Services provided by NetEng to support network security event recording for monitoring and incident response
- General levels of response, availability, and maintenance associated with these services
- 3 comments
- Read more
- 9896 reads
Sample of Recovery Request and Testing Acceptance Form


Attached sample of Recovery Request form and Testing Acceptance form for backup and recovery activity. This templates is taken from Enterprise Systems Backup and Recovery a Corporate Insurance Policy. De Guise, Preston 2009
Any tips and suggestion? hope this document will be useful for your Information System Auditing Resources.
- 1 comment
- 2038 reads
PCMAV 1.9 Antivirus from PCMedia Free Download
PCMAV 1.9 Antivirus from PCMedia Free Download
PCMAV 1.9 is the most popular Antivirus in Indonesia which built by PCMedia Magazine. Attached is latest version of PCMAV 1.9 released in November 2008. PCMAV used the clamAV engine for their improvement strategy.
Download:
PCMAV1.9.RAR at 2shared.com
PCMAV1.9.RAR at 4shared.com
PCMAV1.9.RAR at securityprocedure.com
PCMAV1.9.ZIP at securityprocedure.com
- 4 comments
- 28262 reads
Download PCMAV 1.8 Update Build 1 Antivirus (PC Media Antivirus) October 2008
PCMAV 1.8.rar (1.94 MB)
PCMAV 1.8.zip (2.43 MB)
Source: VirusIndonesia.com
Copyright: PCmedia.co.id
PCMAV 1.8 or PC Media Antivirus 1.8 is one of popular antivirus built by PC Media Magazine, an Indonesian based Security/Antivirus Magazine. This popular antivirus is effectively used for Indonesian origin virus such as Aniee.J, Cyrax-Tutor, Kalong.vbs.E Kalong.vbs.E.inf, Robert. Latest release October 2008. PC MAV 1.8
- Add new comment
- 2940 reads
Download Free Security Awareness Material

Reward and Recognize the Information Security initiatives of your staff - however, big or small. Keep them motivated in fostering an Information Security Culture and Awareness in the Organization
Above is one of free security awareness material which can be downloaded at CyberExchange - ISC2, a free resources from ISC2.org
- 1 comment
- 2580 reads
Download Lynis - Audit Tool for Linux
Looking for simple tools for audit your linux system security and configuration? you may try Lynis free at no cost.
Download: http://www.rootkit.nl/projects/lynis.html
Lynis is an auditing tool for Unix (specialists). It scans the system configuration and creates an overview of system information and security issues usable by professional auditors.
This software aims in assisting automated auditing of Unix based systems and can be used in addition to other software, like security scanners, system benchmarking and fine tuning tools.
- 1 comment
- 1714 reads
OneSixtyOne Fast SNMP scanner
onesixtyone is an SNMP scanner which utilizes a sweep technique to achieve very high performance. It can scan an entire class B network in under 13 minutes. It can be used to discover devices responding to well-known community names or to mount a dictionary attack against one or more SNMP devices.
The SNMP protocol is a stateless, datagram oriented protocol. An SNMP scanner sends SNMP requests to multiple IP addresses, trying different community strings and waiting for a reply. Unfortunately SNMP servers don't respond to requests with invalid community strings and the underlying UDP protocol does not reliably report closed UDP ports. This means that "no response" from a probed IP address can mean either of the following:
* machine unreachable
* SNMP server not running
* invalid community string
* the response datagram has not yet arrived
- Add new comment
- 2931 reads