Companies can use NMAP to scan their systems to identify open ports, running services, and vulnerabilities. Running this tool against your company’s servers and identifying non-essential ports and services, then disabling those is a great way to reduce your attack surface.

Download NMAP

Most companies have a website. Using ZAP you can run a web vulnerability scan against your website. Then you can look up the vulnerabilities and remediate them.

Download Zed Attack Proxy (ZAP)

This open-source vulnerability scanner is great for companies on a tight budget. It scans systems such as workstations and servers on your network to identify vulnerabilities. After scanning you can remediate the vulnerability via patching or configuration changes on those systems.

Download OpenVAS

Nikto is another web vulnerability scanner you can use to identify vulnerabilities on your corporate website. It is an effective tool used by most penetration testers.

Download Nikto

Unencrypted workstations, external hard drives, and USB thumb drives are all great ways to ensure that your company experiences a data breach. Use Veracrypt to encrypt your workstations (if they don’t have built-in encryption) and your removable storage devices. The great thing about Veracrypt is that the encryption is operating system independent, so a storage device encrypted with Veracrypt will work on Windows, Mac, and Linux systems as long as Veracrypt is installed on the system.

Download VeraCrypt