Posts Tagged ‘Nessus’

Vulnerability Assessment

Vulnerability Assessment

Posted by mamo on May 24

Hi all,
I have not done VA for a couple of years and now need again to do this for a medium size company. Nessus became commercial (also if it is possible to use it for limited activity). Some other free/OS software went commercial. [...]

Windows Patch Auditing amp quotFile and Print Sharingquot disabled

Re: Windows Patch Auditing amp quotFile and Print Sharingquot disabled

Posted by Mike Drugov on Apr 30

Alright
List of tools that failed
Nessus FoundStone GFI MBSA
Please keep in mind that on remote nodes "Windows Update Service" is disabled and stopped as well as "Client for File & Print [...]

Vulnerability vs. Pen test

RE: Vulnerability vs. Pen test

Posted by Nick Vaernhoej on Apr 24

James,
My question would be, how do you think Nessus can be considered a penetration test?
A penetration test is not "a tool". A penetration test is an arsenal of tools combined with technical expertise of the wielder of the tools. [...]

Vulnerability vs. Pen test

Vulnerability vs. Pen test

Posted by jlay_at_slave-tothe-box.net on Apr 22

So part of PCI DSS requirements are for a quarterly vulnerability assessment, and a yearly pentest. My question is: is Nessus considered just a vulnerability scanning app? Thanks.
James
———————————————————————— This list is sponsored by:…
URL: http://seclists.org/pen-test/2009/Apr/0139.html

- Security Database Tools Latest updates

[Tools Updates] – Security Database Tools Latest updates

Posted by SD List on Apr 9

Find these news live from www.security-database.com/toolswatch/
[+] Nessus version 4.0 released
Nessus is the world’s most popular vulnerability scanner used in over 75,000 organizations world-wide. Many of the world’s largest organizations are realizing significant cost…
URL: http://seclists.org/pen-test/2009/Apr/0059.html

Federally Mandated Certification of cybersecurity professionals?

Re: Federally Mandated Certification of cybersecurity professionals?

Posted by Louis Brooks on Apr 03

A nationally recognized certification program could lead to a more professional view of our field. Right now anyone with a laptop, nmap and Nessus can call themselves a cybersecurity professional. A minimum standard would at least [...]

Alternatives to Nessus

RE: Alternatives to Nessus

Posted by Shenk Jerry A on Mar 24

Have you ever used NetSonar – oh my goodness…my personal recommendation…don’t even waste time looking for it!
—–Original Message—–
On Behalf Of Neo Sent: Sunday, March 22, 2009 6:14 AM

Alternatives to Nessus

Alternatives to Nessus

Posted by jond on Mar 20

Has anyone found any good alternatives to Nessus? I’ve played around with OpenVAS with their backtrack build, but either it’s not pulling all the plugins, or it’s just not as accurate as Nessus.
Anyone have different experiences with OpenVAS, or know of anything [...]