If it’s about security, you heard it here first
Vulnerability Assessment
Posted by mamo on May 24
Hi all,
I have not done VA for a couple of years and now need again to do this for a medium size company. Nessus became commercial (also if it is possible to use it for limited activity). Some other free/OS software went commercial. [...]
Re: Windows Patch Auditing amp quotFile and Print Sharingquot disabled
Posted by Mike Drugov on Apr 30
Alright
List of tools that failed
Nessus FoundStone GFI MBSA
Please keep in mind that on remote nodes "Windows Update Service" is disabled and stopped as well as "Client for File & Print [...]
RE: Vulnerability vs. Pen test
Posted by Nick Vaernhoej on Apr 24
James,
My question would be, how do you think Nessus can be considered a penetration test?
A penetration test is not "a tool". A penetration test is an arsenal of tools combined with technical expertise of the wielder of the tools. [...]
Vulnerability vs. Pen test
Posted by jlay_at_slave-tothe-box.net on Apr 22
So part of PCI DSS requirements are for a quarterly vulnerability assessment, and a yearly pentest. My question is: is Nessus considered just a vulnerability scanning app? Thanks.
James
———————————————————————— This list is sponsored by:…
URL: http://seclists.org/pen-test/2009/Apr/0139.html
[Tools Updates] – Security Database Tools Latest updates
Posted by SD List on Apr 9
Find these news live from www.security-database.com/toolswatch/
[+] Nessus version 4.0 released
Nessus is the world’s most popular vulnerability scanner used in over 75,000 organizations world-wide. Many of the world’s largest organizations are realizing significant cost…
URL: http://seclists.org/pen-test/2009/Apr/0059.html
Re: Federally Mandated Certification of cybersecurity professionals?
Posted by Louis Brooks on Apr 03
A nationally recognized certification program could lead to a more professional view of our field. Right now anyone with a laptop, nmap and Nessus can call themselves a cybersecurity professional. A minimum standard would at least [...]
RE: Alternatives to Nessus
Posted by Shenk Jerry A on Mar 24
Have you ever used NetSonar – oh my goodness…my personal recommendation…don’t even waste time looking for it!
—–Original Message—–
On Behalf Of Neo Sent: Sunday, March 22, 2009 6:14 AM
Alternatives to Nessus
Posted by jond on Mar 20
Has anyone found any good alternatives to Nessus? I’ve played around with OpenVAS with their backtrack build, but either it’s not pulling all the plugins, or it’s just not as accurate as Nessus.
Anyone have different experiences with OpenVAS, or know of anything [...]
Threat Expert