Internal Vulnerability Scanner Suggestions

mark6729 · 2017-08-23T13:17:55.000Z

Hi All,

I am looking into purchasing/trying a Internal Vulnerability scanner for my windows domain network. There are quite a few products to pick from. I am hoping you lovely spiceheads can give me some suggestions for product(s) you use or used and experience with them. I know the pricing can vary on these, so I am not going to worry about the budget at the moment. Ideally something I can test with and without domain credentials, list the vulnerabilities based upon know threats for Windows workstations and servers. etc.

Rod-IT · 2017-08-23T13:18:36.000Z

Nessus plugin for Kali, but there are many, it depends on what you are hoping to scan for, but we use Nessus to identify vulnerabilities and issues on our boxes, i even use the free version at home to learn it

dbeuerlein · 2017-08-23T13:24:19.000Z

OpenVAS has a free and paid solution as well. Comes with a Web interface that you’d setup and get going.

Not the most clear interface, but useful.

mark6729 · 2017-08-23T13:24:19.000Z

Thanks I ran across that and it seems like a good tool.

maxsec · 2017-08-23T14:33:13.000Z

Alienvaults Ossim or the full pay for USM

Tenables Nessus

Are the two to look at. Openvas is ok but like ossim it.needs more.care and attention to the pay for varients

benscalf1642 · 2017-08-23T14:43:08.000Z

MBSA is a very basic - but free - tool published by Microsoft. It’ll give you a good place to start and might help direct the rest of your requirements.

servermonkey8064 · 2017-08-23T14:52:36.000Z

Nessus. It’s not free but it’s what most paid people who come onsite will use for their automated testing.

Rod-IT · 2017-08-23T15:49:42.000Z

hutchingsp:

Nessus. It’s not free but it’s what most paid people who come onsite will use for their automated testing.

But there is a free version, it’s not got all the features, but it’s enough for the basic scans

kate-att-cybersecurity · 2017-08-23T15:49:59.000Z

Martin2012:

Alienvaults Ossim or the full pay for USM

Tenables Nessus

Are the two to look at. Openvas is ok but like ossim it.needs more.care and attention to the pay for varients

Hey there Martin, thanks for mentioning us! Please send me a PM with your mailing address and Tshirt size so I can get some swag to you!

dbeuerlein · 2017-08-23T15:50:55.000Z

Kate (AlienVault):

Martin2012:

Alienvaults Ossim or the full pay for USM

Tenables Nessus

Are the two to look at. Openvas is ok but like ossim it.needs more.care and attention to the pay for varients

Hey there Martin, thanks for mentioning us! Please send me a PM with your mailing address and Tshirt size so I can get some swag to you!

Why can’t I get some swag?

servermonkey8064 · 2017-08-23T15:51:06.000Z

Rod-IT:

hutchingsp:

Nessus. It’s not free but it’s what most paid people who come onsite will use for their automated testing.

But there is a free version, it’s not got all the features, but it’s enough for the basic scans

It almost certainly won’t be free for commercial use.

cameroncox4 · 2017-08-23T16:53:01.000Z

In no particular order, Nessus, OpenVAS, Qualys and LanGuard. Lots of options out there, depending on your ability to setup and configure or your budget.

lukaszp7317 · 2017-08-23T18:45:08.000Z

Retina Network Community - for a free product does very comprehensive scan and unlike others the only limitation is 256 ips per scan.

Alienvault Ossim takes time to set up - I couldn’t even get it to discover my network.

zuphzuph · 2017-08-24T13:49:40.000Z

Nessus/Rapid7 Insight Ops/Metasploit/AV’s OSSIM take your pick. Personally, I prefer Nessus above all else.