I want to add that I too use and recommend Nessus. I am using it in production and for many test and papers I write. I also recommend the following tools in addition to nessus:
1. nmap - services listening and open 2. whisker 3. ettercap - while this isn't a security analysis tool, I use it to demonstrate and determine ease of use of tools attackers have. and I use hping and snort for other analysis. All of these are free and all perform the job well. Charles ________________________________________________________________ The information contained in this message is intended only for the recipient, may be privileged and confidential and protected from disclosure. If the reader of this message is not the intended recipient, or an employee or agent responsible for delivering this message to the intended recipient, please be aware that any dissemination or copying of this communication is strictly prohibited. If you have received this communication in error, please immediately notify us by replying to the message and deleting it from your computer. Thank you, Standard & Poor's