Cleaning Instructions

• CERT steps for recovering from a UNIX or NT compromise
• 
  

Cleaning and Forensics Tools

• Lavasoft's Ad-Aware, an anti-spyware application.
• Spybot Search & Destroy, an anti-spyware application. (Note: you may have to use more than one spyware cleaner to thoroughly clean your system.
• SwatIt (trojan detector)
• fport.zip (maps ports to processes via command line)
• Active Ports (maps ports to processes with a gui)
• MS Port Reporter(logs TCP/IP port usage data, other details here)
• Microsoft Baseline Security Analyzer (MBSA) (checks patch levels on Windows systems)

Windows Syslog Tools

• Snare Agent for Windows (yes, a syslog agent)

Other Tools

• Email Address Obfuscator
• Media Control Guidelines and tools for Duke system administrators
• Password protection information and tools for Duke system administrators
• Configuration information for users who want to run accounts without administrator privileges