10 Free SMB Security Tools
This slide show features an assortment of solutions that SMBs can use to minimize their security spend
![](https://eu-images.contentstack.com/v3/assets/blt6d90778a997de1cd/bltc94608acf452fd67/655cf371ab171e040a838b2a/329050_DR23_Graphics_Website_V5_Default_Image_v1.png?width=700&auto=webp&quality=80&disable=upscale)
Without a doubt, budget and cost concerns remain the No. 1 obstacle to effective implementation of security controls at most SMB companies. While low-cost technology may not eliminate the budget required to pay people who know how to use them, effective use of free tools can certainly go a long way toward establishing security on a shoestring.
SMBs can take more control over their wireless networks using Kismet, a nifty wireless detector, sniffer, and intrusion detection system built into one. The tool finds networks by passively collecting packets and can decloak hidden SSIDs. It offers a simple wireless IPS that can help SMBs detect active wireless sniffing programs and wireless network attacks.
Microsoft Windows Server Update Services (WSUS) might be fine for updating Microsoft-related products come patch time. But what about all of those other vulnerable third-party apps? Enter PDQ Deploy, a free tool that can help SMBs quickly push out patches or new software no matter who the developer is.
Worried your IT staff needs to brush up on security-specific skills? Or simply want to let your customers know you have the know-how to keep their data safe? Then check out antivirus vendor AVG's unique SMB Boot Camp program, a free course that teaches SMBs how to analyze and understand security risks and create a security policy, with material delivered via email and online. Businesses that go through and pass the test can put a special badge on their sites to prove their security know-how.
If an SMB saves dough on antivirus renewals, then it can squirrel more away for other important security tools and practices. One way to do that is through Microsoft Security Essentials, Microsoft's lightweight AV option. Now, many people will point to MSE's failure on the recent AV-TEST certification. Be aware that the low score was mostly reflective of poor marks in detecting zero-day and newer attacks, something that all AV software is notoriously bad at. This is where a layered approach comes into play given that AV is not the only software that SMB should be depending on.
It's inevitable for malware infections to sneak through AV defenses, no matter what vendor you depend on. SMB admins need additional removal tools to remediate machines when this happens and Malwarebytes Anti-Malware Free fits the bill, without an actual bill to pay. The tool does a good job of seeking out and cleaning up worms, Trojans, rootkits, spyware, and other malicious programs.
Think of ComboFix as a useful tool for a last-ditch attempt to clean up malware-laden PCs before giving up and completely reimaging them. The tool is meant to be used by experts only -- used incorrectly and it'll brick the machine -- but in conjunction with help from experts on the Bleepingcomputer.com forums, SMB admins can easily be walked through the process of remediating an infected machine when other tools aren't working.
Take advantage of pfSense, a customized distro of FreeBSD that's designed to be used as a firewall and router platform to tighten the reins on network traffic. SMBs can use this tool to harden the network through robust authentication, VPN capabilities, and stateful packet filtering, among others features.
Larger organizations that would best be defined as the "M" in SMB may need to take security to the next level for the sake of contracts with compliance-burdened B2B customers. In these instances, security monitoring and correlation will grow in importance, but the cost of most enterprise-class security information and event management (SIEM) makes it seem out of reach. An open-source alternative with SIEM functions, such as event collection, normalization, correlation, and incident response, OSSIM keeps SIEM on the table for midmarket firms.
SMBs can monitor hosts, network equipment, and services using this open-source system and network monitoring application. The tool not only gives better visibility to spot breaches more quickly, but can also offer invaluable data for improved network operations.
Need some quick-and-dirty information about potential vulnerabilities in assets associated with none of your websites or publicly facing IP addresses? Qualys FreeScan will scan the perimeter for security vulnerabilities, malware infections, SSL configuration problems. and vulnerabilities in Web applications.
Need some quick-and-dirty information about potential vulnerabilities in assets associated with none of your websites or publicly facing IP addresses? Qualys FreeScan will scan the perimeter for security vulnerabilities, malware infections, SSL configuration problems. and vulnerabilities in Web applications.
Need some quick-and-dirty information about potential vulnerabilities in assets associated with none of your websites or publicly facing IP addresses? Qualys FreeScan will scan the perimeter for security vulnerabilities, malware infections, SSL configuration problems. and vulnerabilities in Web applications.
About the Author(s)
You May Also Like
CISO Perspectives: How to make AI an Accelerator, Not a Blocker
August 20, 2024Securing Your Cloud Assets
August 27, 2024