Included are links to utilities which I use on a regular basis for securing Windows machines. Use of them is at your own risk. These tools are merely links --none are maintained or stored by myself personally or by The Pennsylvania State University. Please read associated site information for information regarding licensing, requirements, etc.
Microsoft Windows 2000 Service Pack
4Microsoft Windows XP Service
Pack 1 Microsoft Windows NT Service Pack 6a - Available in 56-bit and 128-bit encryption.Microsoft Critical Patch MS03-039 (KB 824146) to
prevent RPC Buffer
Overrun - Must be downloaded prior to placing computer on the network. Download patch halfway down the page under "Resolution" heading.Microsoft Critical Updates - Click on critical updates link on this page to automatically download the latest security patches for your Microsoft software.IIS Security Rollup Patch - If your
machine is running IIS, you must use
this patch in addition to any applicable operating system patches. Patches/Hotfixes contained in this are not found in the Operating System patch.NMapNT - Port Scanner for Windows NT.Superscan - Windows Port
scanner, pinger, and resolver created by Foundstone.FPort - Command line utility which maps all open TCP and UDP ports to the owning application. Created by Foundstone and is for
Windows NT/2000 only.Sysinternals Suite of Tools - TCPView and Process
Explorer are two of the Sysinternals Windows tools that are highly recommended.Active Ports - An NT/2000/XP program which monitors open ports and
maps them to the owning application.Inzider - Maps ports to owning application. Must be installed to run.Sam Spade - General Utility which includes whois, ping, dig,
nslookup, SMTP relay checker, etc. WinSCP - Secure Copying UtilityTiny Personal Firewall - Firewall may be
installed freely for personal use. Business and institutional users may use this for
evalutaion purposes.Zone Alarm and Zone Alarm Pro -
Zone Alarm Personal firewall is freely downloadable. Zone Alarm Pro is a 30 day trial
download.HFNetchk - Command line utility that tells
you if you are up to date on Windows patches.Microsoft
Baseline Security Analyzer - Checks for hotfixes and security misconfigurations on Windows systems.Microsoft Windows 2000 IIS 5.0 Hotfix Checker - Tools which checks to ensure all current IIS patches are installed.IIS
Lockdown Tool - Turns off unnecessary services and features of IIS. Includes URLScan, which can be installed to restrict the type of HTTP
requests that the server can process.GFI Languard Scanner - A Windows scanner to search for vulnerabilities
on your network.Eeye Nimda Scanner - Scans Class B or Class C subnets to look for Nimda vulnerabilities and infections.Eeye Code Red Scanner - Scans Class B or Class C
subnets to look for Code Red 1 and 2 vulnerabilities and infections.Eeye SQL Sapphire Worm Scanner
- Scans up to 254 addresses at a time to determine if any hosts are vulnerable to the SQL Sapphire Worm.Eeye SQL Spida Worm Scanner - scans
up to 254 addresses at a time to determine if any hosts are vulnerable to the SQL Spida Worm.Microsoft RPC DCOM Vulnerability Scanner - Command line tool that searches for the presence of the MS03-039 Patch.Popsickle - PSU Email Utility to view / remove
unwanted emailSymantec Norton Antivirus - Site License valid for current
PSU faculty, staff, and students only.Penn State Anywhere Virtual Private Network (VPN) - Creates an encrypted
tunnel to PSU for traffic into the University. Requires a valid current PSU userid and password.PSU Secure Server - Change your PSU Password, Web Site/DFS Permissions, and more.PSU WebmailPASS - Access to PSU DCE/DFS FilesPenn State Portal ITS to block ports at Border Router July 28, 2003 - Clicking on the red info
button right above the summary will display technical details regarding this change.PSU ITS System and Service Alerts - Extensive up-to-date information
regarding current computer alerts, viruses, hoaxes, trojans, and PSU computer-related announcements.IANA Port-Numbers - TCP/UDP Port ListingsTrojan Port List - Searchable by
Port Number, NameTrojan Port List - Searchable by Name, Size, Programming
Language, Affected Systems, etc.
Security Focus - Offers a wealth of information as well as listservs such as Bugtraq, Incidents, Focus-MS, etc. Null User NetBios EnumerationLabmiceSetting an Alternate Listening Port for Remote
Desktop - You can change Remote Desktop to run on a port of your choice instead of port 3389. In addition to the registry change described in
this article, you must also enter a colon followed by the new port number in the connection client (This information should be entered to the right of
the
IP address you are attempting to connect to).Extensive Services information for Windows - This page contains a Zip file with
extensive information about Windows services, such as their usage, their dependencies, and default and recommended settings.