I think what you might be looking for is the www.disa.mil site. It has Security Guides (STIGs) as well as a tool that will scan your servers and workstations for any of the known vulnerabilities. I think, however, that this tool (DISA Gold Disk) is supported from a .mil address.
Rick From: Ziots, Edward [mailto:[email protected]] Sent: Friday, May 28, 2010 11:46 AM To: NT System Admin Issues Subject: RE: Web based scanning tool Compliant to what exactly? Z Edward Ziots CISSP,MCSA,MCP+I,Security +,Network +,CCA Network Engineer Lifespan Organization 401-639-3505 [email protected] From: Malcolm Reitz [mailto:[email protected]] Sent: Friday, May 28, 2010 11:21 AM To: NT System Admin Issues Subject: RE: Web based scanning tool Sounds like maybe something from http://www.onguardonline.gov <blockedhttp://www.onguardonline.gov> ? I don't think the more technical sites http://csrc.nist.gov <blockedhttp://csrc.nist.gov> or http://www.us-cert.gov <blockedhttp://www.us-cert.gov> will have online tools like that. -Malcolm From: David McSpadden [mailto:[email protected]] Sent: Friday, May 28, 2010 07:35 To: NT System Admin Issues Subject: Web based scanning tool A long while ago there was a .gov site that had a web based scanner. It would scan your pc and then give you the recommended security settings to be compliant. It had and NT scanner, 2000 scanner, and an XP scanner. I can not for the life of me remember it right now. Nist.gov or frc.gov or something official sounding.. "Please consider the environment before printing this email." ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~
<<image001.gif>>
