RE: Vuln Scanner

From: Richard Zaluski (rzaluski@ivolution.ca)
Date: Sat Oct 29 2005 - 10:27:10 EDT

• Next message: Jesse: "FDA Approved Drug lasts 8x longer than Vi-ag-ra"
• Previous message: ilaiy: "Re: fast nmap scan of XP boxes?"
• In reply to: Michael Gargiullo: "Vuln Scanner"
• Next in thread: Evans, Arian: "RE: Vuln Scanner"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Perhaps you can break things up a bit... It will help you out on the HTTP
side Also, check out Wikto / Nikto.

This tool comes in commercial and free versions. It may help you in your
quest .. I don't know of any other 'free' nessus like scanners out in the
open source arena.

http://www.nstalker.com/eng/products/nstealth/freeversion/

Richard Zaluski
CISO, Security and Infrastructure Services
iVOLUTION Technologies Incorporated
905.309.1911
866.601.4678
www.ivolution.ca
rzaluski@ivolution.ca

-----Original Message-----
From: Michael Gargiullo [mailto:mgargiullo@pvtpt.com]
Sent: Friday, October 28, 2005 2:43 PM
To: pen-test@securityfocus.com
Subject: Vuln Scanner

I have a client that states in his RFP that we run nessus, and at least
one other vulnerability scanner to compare the output.

Does anyone here know of an inexpensive vulnerability scanner, that:

A) Is as effective as nessus.

B) Doesn't cost nearly as much as say ISS or SAINT (free would be
good).

C) Doesn't use nessus plugins (like x-scan).

-Mike

----------------------------------------------------------------------------

--
Audit your website security with Acunetix Web Vulnerability Scanner: 
Hackers are concentrating their efforts on attacking applications on your 
website. Up to 75% of cyber attacks are launched on shopping carts, forms, 
login pages, dynamic content etc. Firewalls, SSL and locked-down servers are
futile against web application hacking. Check your website for
vulnerabilities 
to SQL injection, Cross site scripting and other web attacks before hackers
do! 
Download Trial at:
http://www.securityfocus.com/sponsor/pen-test_050831
----------------------------------------------------------------------------
---
------------------------------------------------------------------------------
Audit your website security with Acunetix Web Vulnerability Scanner: 
Hackers are concentrating their efforts on attacking applications on your 
website. Up to 75% of cyber attacks are launched on shopping carts, forms, 
login pages, dynamic content etc. Firewalls, SSL and locked-down servers are 
futile against web application hacking. Check your website for vulnerabilities 
to SQL injection, Cross site scripting and other web attacks before hackers do! 
Download Trial at:
http://www.securityfocus.com/sponsor/pen-test_050831
-------------------------------------------------------------------------------

• Next message: Jesse: "FDA Approved Drug lasts 8x longer than Vi-ag-ra"
• Previous message: ilaiy: "Re: fast nmap scan of XP boxes?"
• In reply to: Michael Gargiullo: "Vuln Scanner"
• Next in thread: Evans, Arian: "RE: Vuln Scanner"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.7 : Sat Apr 12 2008 - 10:55:06 EDT