There are a growing number of security assessment applications which focus on network and web security, including: BackTrack Linux, Aircrack, and Nikto, each of which were detailed in the OpenSource For U website.
Obviously cyber crime is starting to command the media headlines, and most security and law enforcement agencies are hard at work protecting systems and following the money. The concern that seems to be pushed to the back of the stove is the physical security vulnerability assessment.
Two physical security assessment tools mentioned here briefly are:
The U.S. Department of Health and Human Services has a Security Risk Assessment (SRA) app for medial and other healthcare professionals. The tool is used to help uncover weaknesses in security policies, processes and systems related to the safeguarding of HIPPA information, for IOS and Windows
The SEARCH IT Security Self-and Risk-assessment Tool© is based on two NIST Special Publications: 800-26 (Security Self-Assessment Guide for Information Technology Systems, November 2001) and 800-53 (Recommended Security Controls for Federal Information Systems, February 2005).
The self-assessment tool uses an extensive questionnaire containing specific control objectives and suggested techniques against which the security of a system or group of interconnected systems can be measured.
The questionnaire can be based primarily on an examination of relevant documentation and a rigorous examination and test of the controls. The Tool is a companion to Law Enforcement Tech Guide for Information Technology Security: How to Assess Risk and Establish Effective Policies©. Both the Tool and the Tech Guide were produced for the U.S. Department of Justice Office of Community Oriented Policing Services by SEARCH.
As helpful as these tools are, the question security and law enforcement professionals are asking of the field is “what 21st and 22nd century tools are available for use?”
If you have suggestions and recommendations, feel free to share them in the promotions tab of the LEITN LinkedIn Group forum, where you can join nearly 10,000 other members who gather to share and discuss such advances.
Wouldn’t an investment of a few minutes of your time be worth possibly preventing another criminal act?