Penetration Testing mailing list archives

RE: VA tools

From: "Robert Stull" <rstull () eeye com>
Date: Fri, 10 Mar 2006 07:47:01 -0800

Commercial tools? See sig and check out Retina. Yes, this is a biased recommendation.

Doc
____________________________ 

Robert Stull
Product Manager, Vulnerability Management Solutions
eEye Digital Security

FREE Trial Downloads: Visit www.eeye.com to download trial versions of our award-winning proactive security software, 
including: Retina® Network Security Scanner, SecureIIS(tm) Web Server Protection, and Iris® Network Traffic Analyzer. 

-----Original Message-----
From: Christophe Herault [mailto:cherault () venesege com] 
Sent: Friday, 10 March, 2006 06:31
To: pen-test () securityfocus com
Subject: Re: VA tools

Hi,

Can use SNMPWALK - CHEOPS-NG - FIREWALK - AXFR - ETC...
You could find those tools at : http://packetstorm.linuxsecurity.com/

Regards 

Le Vendredi 10 Mars 2006 09:56, DIG-591 SU-ESE IT 01 a écrit :

Netcat can carry out portscanning and firewalk also gives port info too.

Regards

HMS
-----Original Message-----
From: Doug Fox [mailto:dfox168 () hotmail com]
Sent: 10 March 2006 11:50
To: pen-test () securityfocus com
Subject: VA tools

I have been using NMAP and NESSUS to assess external-facing devices, e.g.,
routers, firewall, for their open ports, exposure, vulnerabilities, etc. as
they do not require administrative privilege to run against these devices.

I am searching for more tools which can perform the same functions.  Any
pointers/suggestions are appreciated.

Many thanks for your guidance.

DF

-- 
Christophe Herault      
<cherault () venesege com>
www.venesege.com


------------------------------------------------------------------------------
This List Sponsored by: Cenzic

Concerned about Web Application Security?
As attacks through web applications continue to rise, you need to proactively
protect your applications from hackers. Cenzic has the most comprehensive
solutions to meet your application security penetration testing and
vulnerability management needs. You have an option to go with a managed
service (Cenzic ClickToSecure) or an enterprise software (Cenzic Hailstorm).
Download FREE whitepaper on how a managed service can help you:
http://www.cenzic.com/news_events/wpappsec.php
And, now for a limited time we can do a FREE audit for you to confirm your
results from other product. Contact us at request () cenzic com
------------------------------------------------------------------------------

Current thread:

VA tools Doug Fox (Mar 10)
- Re: VA tools Alice Bryson (Mar 11)
- RE: VA tools Carl Davis (Mar 11)
- Re: VA tools Alice Bryson (Mar 12)
- <Possible follow-ups>
- RE: VA tools DIG-591 SU-ESE IT 01 (Mar 10)
  - Re: VA tools Christophe Herault (Mar 10)
- RE: VA tools Robert Stull (Mar 10)
- Re: RE: VA tools Toggmeister (Mar 11)