Patch Utilities

From ChekMate Security Group

oloricorlivi

• BigFix Consumer Edition BigFix Consumer Edition is a powerful solution for home users that: Alerts you if any known problems or updates apply to your computer. Offers an automated fix that's easy to understand and simple to install. Proactively reduces the number of problems that affect your computer. BigFix Consumer Edition for the home is free to use.
• CIS Benchmark/Security Tools For the first time ever, a large group of user organizations, information security professionals and auditors have agreed on security configuration specifications that represent a prudent level of due care, and are working together to define consensus best-practice security configurations for computers connected to the Internet. Now you can determine how your systems measure up to these widely accepted security benchmarks. In accordance with the CIS not-for-profit mission, the Benchmarks and Scoring Tools are available free
• Daisy Daisy is a program that reviews your system for service pack and os level, determining what hotfixes the base os needs, and downloading and installing them in a correct and consistent manner. It checks that the hotfixes installed on the system are installed correctly.
• DCOMbobulator Tame Windows insecure DCOM facility. Ever since Windows 98, a powerful, but unnecessary and rarely used facility known as DCOM (Distributed Component Object Model) has been an integral part of Windows. The DCOMbobulator checks the effectiveness of Microsoft's security patches and allows the user to increase the security of their system by simply turning DCOM off.
• Ecora NetExplorer Ecora NetExplorer automatically discovers just about every type of device running within a specified IP range, giving you a complete, up-to-date inventory of your network. NetExplorer can also scan all TCP and UDP ports to close potential security holes.
• GFI LANguard Network Security Scanner The freeware version includes port scanning features. By analyzing the operating system and the applications running on your machine/network, GFI LANguard N.S.S. identifies possible security holes. In other words, it plays the devil's advocate and alerts you to weaknesses before a hacker can find them, enabling you to deal with these issues before a hacker can exploit them.
• HFNetChkPro FREE version of Shavlik HFNetChkPro for Microsoft Security Patch Management. Streamline Microsoft patch management with no time-outs. Get patching in 30 minutes!
• Microsoft Baseline Security Analyzer In response to direct customer need for a streamlined method of identifying common security misconfigurations, Microsoft has developed the Microsoft Baseline Security Analyzer (MBSA). It includes a graphical and command line interface that can perform local or remote scans of Windows systems. MBSA runs on Windows 2000, Windows XP, and Windows Server 2003 systems and will scan for common system misconfigurations in the following products: Windows NT 4.0, Windows 2000, Windows XP, Windows Server 2003, Internet Information Server (IIS), SQL Server, Internet Explorer, and Office. MBSA 1.2 will also scan for missing security updates for the following products: Windows NT 4.0, Windows 2000, Windows XP, Windows Server 2003, IIS, SQL Server, IE, Exchange Server, Windows Media Player, Microsoft Data Access Components (MDAC), MSXML, Microsoft Virtual Machine, Commerce Server, Content Management Server, BizTalk Server, Host Integration Server, and Office.
• Microsoft Office Update Inventory Tool The Office Update Inventory Tool version 2.1 enables administrators to check one or more computers in their organization for the status of Microsoft Office 2000, Office XP, and Office 2003 updates.
• Microsoft UrlScan Security Tool A security tool that restricts the types of HTTP requests that Internet Information Services (IIS) will process. By blocking specific HTTP requests, the UrlScan security tool helps prevent potentially harmful requests from reaching the server. UrlScan 2.5 will now install as a clean installation on servers running IIS 4.0 and later.
• Retina Messenger Service Vulnerability Scanner The Retina Messenger Service Vulnerability Scanner is a tool created by eEye that is able to scan up to 256 IP addresses at once to determine if any are vulnerable to the recent Microsoft Windows Messenger Service flaw (MS03-043). If an IP address is found to be vulnerable, then the Retina Messenger Service Vulnerability Scanner will flag that IP address.
• Retina MyDoom Scanner The Retina MyDoom Scanner is a tool created by eEye that is able to scan up to 256 IP addresses at once to determine if any have been infected by the recent MyDoom email virus or its variants. If an IP address is found to be infected/vulnerable, then the Retina MyDoom Scanner will flag that IP address
• Retina RPC DCOM Scanner The Retina RPC DCOM Vulnerability Scanner is a tool created by eEye that is able to scan up to 256 IP addresses at once to determine if any are vulnerable to the two recent Microsoft Windows RPC DCOM flaws. If an IP address is found to be vulnerable, then the Retina RPC DCOM Vulnerability Scanner will flag that IP address.
• SPCHECK SPCHECK is a command line utility that can be used to check the service pack and hot fixes on any NT Workstation or Server (assuming you have administrative privileges on the machine).
• UnPlug n' Pray Universal Plug & Play management. At the end of 2001, Microsoft revealed a critical defect in Windows XP and ME: Windows' Universal Plug and Play service (UPnP) would allow a malicious hacker to remotely take over any system that was running and exposing the UPnP service to the Internet. This UnPlug n' Pray utility lets anyone check for the presence of the dangerous UPnP service in their system, then easily and safely enable and disable it as needed.
• XPdite Crucial Windows XP Vulnerability Fixer. Windows XP has always contained an extremely serious vulnerability which allows any malicious hacker to cause the files contained in any directory to be deleted. This vulnerability can be cured by installing XP's large (50 to 140 MB) Service Pack 1 — which is preferable whenever possible. But this free and lightweight XPdite utility fixes the problem quickly and easily for systems not yet running Service Pack 1. A silent running option also makes it ideal for corporate deployment.