Penetration Testing mailing list archives

Re: Vuln Scanning software choices

From: Brad Spangler <brad_spangler () yahoo com>
Date: Fri, 11 Nov 2005 04:17:53 -0600

The more people who use and contribute to the GPL fork of Nessus,
OpenVAS (formerly GNessus), the more useful it will become.

http://www.openvas.org/doku.php

I would also imagine that a little monetary support for the project from
your company, less than you would pay Tenable, might possibly result in
some fairly good support from the folks involved with the project. Talk
it over with them.


Tblinux wrote:

I know that most if not all of you use or have used Nessus at some
point. I've been following the thread. Now that it appears that Nessus
is seriously ratcheting down support for independent consultants and
corporate / gov't users without a registered and paid for license what
scanning software are you considering? Has anyone done a *complete*
comparison of all of the scanning software out there and made a choice
based on the findings? If so what was it?

I work for a fairly large company and the contract negotiations with
Tenable are going poorly and the company I work for is looking at the
options.

Any input would be greatly appreciated!!!!

------------------------------------------------------------------------------

Audit your website security with Acunetix Web Vulnerability Scanner:
Hackers are concentrating their efforts on attacking applications on
your website. Up to 75% of cyber attacks are launched on shopping carts,
forms, login pages, dynamic content etc. Firewalls, SSL and locked-down
servers are futile against web application hacking. Check your website
for vulnerabilities to SQL injection, Cross site scripting and other web
attacks before hackers do! Download Trial at:

http://www.securityfocus.com/sponsor/pen-test_050831
-------------------------------------------------------------------------------



------------------------------------------------------------------------------
Audit your website security with Acunetix Web Vulnerability Scanner: 

Hackers are concentrating their efforts on attacking applications on your 
website. Up to 75% of cyber attacks are launched on shopping carts, forms, 
login pages, dynamic content etc. Firewalls, SSL and locked-down servers are 
futile against web application hacking. Check your website for vulnerabilities 
to SQL injection, Cross site scripting and other web attacks before hackers do! 
Download Trial at:

http://www.securityfocus.com/sponsor/pen-test_050831
-------------------------------------------------------------------------------

Current thread:

Vuln Scanning software choices Tblinux (Nov 10)
- Re: Vuln Scanning software choices Brad Spangler (Nov 11)
- Re: Vuln Scanning software choices Barrie Dempster (Nov 11)
- Message not available
  - Re: Vuln Scanning software choices Christoph Puppe (Nov 15)
- <Possible follow-ups>
- RE: Vuln Scanning software choices Michael Gargiullo (Nov 21)
- Re: Vuln Scanning software choices Christoph Puppe (Nov 23)