Features of a vulnerability scanner

From: Marc Ruef (maru_at_scip.ch)
Date: 12/01/03

Next message: Skid: "RE: System Security Audits"

Previous message: Carlos Eduardo Pinheiro: "Re: Reporting aspect of pen-testing"
Next in thread: Patrick Boucher: "Re: Features of a vulnerability scanner"
Reply: Patrick Boucher: "Re: Features of a vulnerability scanner"
Reply: Blake Wiedman [Icons]: "RE: Features of a vulnerability scanner"
Reply: wirepair: "Re: Features of a vulnerability scanner"
Maybe reply: Gonenc, Ozan: "RE: Features of a vulnerability scanner"
Maybe reply: Kohlenberg, Toby: "RE: Features of a vulnerability scanner"
Reply: Anders Thulin: "Re: Features of a vulnerability scanner"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Date: Mon, 1 Dec 2003 11:26:38 +0100
To: <pen-test@securityfocus.com>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Dear List

I would like to ask you pen-testers two generic questions about vulnerability scanners:

1. Which features for you are very important or is the most important in a vulnerability scanner software?
2. Which features are you missing in the existing vulnerability scanner products?

A vulnerability scanner in this context is a tool that looks automaticly for potential security holes. There are for example Nessus, ISS Internet Scanner, Symantec NetRecon, GFI LanGuard, SATAN, SAINT, Vigilante, Dante Security Scanner, ... Port scanner and enumeration utilities like nmap, N-Stealth, Whisker or Nikto are here not counted to vulnerability scanners.

Yours,

Marc Ruef

- --
) scip AG (
Technoparkstr. 1
8005 Zürich
T +41 1 445 18 18
F +41 1 445 18 19

maru@scip.ch
www.scip.ch

- - Pragmatisches Projektmanagement -

-----BEGIN PGP SIGNATURE-----
Version: PGP 8.0
Comment: http://www.scip.ch

iQA/AwUBP8sXXhe5hzJzqVMhEQLYZwCgpFHRj/ilv51PUAEFHWRqbuo+fHkAn24J
z6YgR9JIPl1/Q6lcCfOw4zKr
=RDZw
-----END PGP SIGNATURE-----

---------------------------------------------------------------------------
----------------------------------------------------------------------------

Next message: Skid: "RE: System Security Audits"

Previous message: Carlos Eduardo Pinheiro: "Re: Reporting aspect of pen-testing"
Next in thread: Patrick Boucher: "Re: Features of a vulnerability scanner"
Reply: Patrick Boucher: "Re: Features of a vulnerability scanner"
Reply: Blake Wiedman [Icons]: "RE: Features of a vulnerability scanner"
Reply: wirepair: "Re: Features of a vulnerability scanner"
Maybe reply: Gonenc, Ozan: "RE: Features of a vulnerability scanner"
Maybe reply: Kohlenberg, Toby: "RE: Features of a vulnerability scanner"
Reply: Anders Thulin: "Re: Features of a vulnerability scanner"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Relevant Pages

RE: Features of a vulnerability scanner
... because the banner clearly shows a non-vulnerable ... One of the most important feature in a vulnerability scanner is it's ... Which features for you are very important or is the most important ... > for potential security holes. ...
(Pen-Test)
RE: Features of a vulnerability scanner
... AEPOS Technologies Corporation ... Which features for you are very important or is the most important in a vulnerability scanner software? ... Which features are you missing in the existing vulnerability scanner products? ...
(Pen-Test)
RE: Features of a vulnerability scanner
... My major gripe is reporting, I would love a product that gives me full ... Security Technician ... Features of a vulnerability scanner ...
(Pen-Test)
Re: Features of a vulnerability scanner
... One of the most important feature in a vulnerability scanner is it's ... That's one of the primary thing that, I think, is missing. ... Which features are you missing in the ... > for potential security holes. ...
(Pen-Test)