Vulnerability Assessment Posted by mamo on May 24 Hi all, I have not done VA for a couple of years and now need again to do this for a medium size company. Nessus became commercial (also if it is possible to use it for limited activity). Some other free/OS software went commercial. I am not [...]
Posts Tagged ‘Nessus’
Windows Patch Auditing amp quotFile and Print Sharingquot disabled
Re: Windows Patch Auditing amp quotFile and Print Sharingquot disabled Posted by Mike Drugov on Apr 30 Alright List of tools that failed Nessus FoundStone GFI MBSA Please keep in mind that on remote nodes "Windows Update Service" is disabled and stopped as well as "Client for File & Print Sharing" is uninstalled I think [...]
Vulnerability vs. Pen test
RE: Vulnerability vs. Pen test Posted by Nick Vaernhoej on Apr 24 James, My question would be, how do you think Nessus can be considered a penetration test? A penetration test is not "a tool". A penetration test is an arsenal of tools combined with technical expertise of the wielder of the tools. A penetration [...]
Vulnerability vs. Pen test
Vulnerability vs. Pen test Posted by jlay_at_slave-tothe-box.net on Apr 22 So part of PCI DSS requirements are for a quarterly vulnerability assessment, and a yearly pentest. My question is: is Nessus considered just a vulnerability scanning app? Thanks. James ———————————————————————— This list is sponsored by:… URL: http://seclists.org/pen-test/2009/Apr/0139.html
- Security Database Tools Latest updates
[Tools Updates] – Security Database Tools Latest updates Posted by SD List on Apr 9 Find these news live from www.security-database.com/toolswatch/ [+] Nessus version 4.0 released Nessus is the world’s most popular vulnerability scanner used in over 75,000 organizations world-wide. Many of the world’s largest organizations are realizing significant cost… URL: http://seclists.org/pen-test/2009/Apr/0059.html
Federally Mandated Certification of cybersecurity professionals?
Re: Federally Mandated Certification of cybersecurity professionals? Posted by Louis Brooks on Apr 03 A nationally recognized certification program could lead to a more professional view of our field. Right now anyone with a laptop, nmap and Nessus can call themselves a cybersecurity professional. A minimum standard would at least lend some creditability to the [...]
Alternatives to Nessus
RE: Alternatives to Nessus Posted by Shenk Jerry A on Mar 24 Have you ever used NetSonar – oh my goodness…my personal recommendation…don’t even waste time looking for it! —–Original Message—– On Behalf Of Neo Sent: Sunday, March 22, 2009 6:14 AM
Alternatives to Nessus
Alternatives to Nessus Posted by jond on Mar 20 Has anyone found any good alternatives to Nessus? I’ve played around with OpenVAS with their backtrack build, but either it’s not pulling all the plugins, or it’s just not as accurate as Nessus. Anyone have different experiences with OpenVAS, or know of anything else I might [...]
