Vulnerability scanner

robertmiller20 · 2018-03-01T03:55:10.000Z

I’d like to get some opinions on a good choice for a vulnerability scanner. I have a vendor trying to sell me on F-Secure. I can see the virtues of it but paying by the IP makes it pretty expensive. I do like the remediation advice it gives. Is there a better choice for the money? Any comments from others using this product? Others?

zuphzuph · 2018-03-01T04:25:34.000Z

Here’s my pref: Download Tenable Nessus | Tenable®

robertmiller20 · 2018-03-01T04:30:24.000Z

Thanks — I was just reading about Nessus from another post. Does it give you results that you are able to act upon? What is your experience?

zuphzuph · 2018-03-01T04:33:51.000Z

robertmiller18:

Thanks — I was just reading about Nessus from another post. Does it give you results that you are able to act upon? What is your experience?

Reports all vulns and its extremely accurate. They have a free trial you can spin up.

darren-for-cdw · 2018-03-01T05:23:41.000Z

Kali LINUX has a vulnerability scanner as well. OpenVAS.

I know organizations that have used it effectively. Takes a bit more to set up, but it is good…and free.

Nessus is more professional, and if you have the budget, then it is a great option as well.

OpenVAS is actually a fork of Nessus, so they share some code before Nessus went closed-source.

That said, Nessus is basically the standard in vulnerability scanning. But since OpenVAS is free, and open-source, no harm in doing multiple scans with different products (and each has different definitions).

Edit: Unix to Linux…D’OH!

Rod-IT · 2018-03-01T11:24:32.000Z

Kali is Linux, not UNIX

Nessus would also be my recommendation,

giridhara-zoho · 2018-03-01T11:27:19.000Z

Hey Robert,

I would suggest you to take a look at ManageEngine Patch Manager Plus, which helps you scan all the vulnerable applications and OSs in your network. This covers Windows, Mac, Linux & 250+ third party applications. With respect to cost, it comes completely free for 25 computers.

Take a look here- Enterprise Patch Management Software | ManageEngine Patch Manager Plus

Pricing- https://store.manageengine.com/patch-management/?_ga=2.5065971.1334301096.1519630200-1096186192.1498797101

Please feel free to reach me if you need a personalized demo for the same.

Cheers!

@robertmiller18

rogenellmojado2 · 2018-03-01T12:49:31.000Z

1 for NESSUS !

kate-att-cybersecurity · 2018-03-01T14:19:16.000Z

AlienVault Unified Security Management (USM) includes Network Vulnerability Assessment. Our solution is based on OpenVAS which was mentioned in a previous comment. Here’s a page describing its capabilities. Vulnerability Assessment & Remediation | AT&T Cybersecurity The great thing with USM is that it’s part of an integrated solution, so you get a lot more than just a vuln scanner

lukaszp7317 · 2018-03-01T14:52:55.000Z

check Retina free, 256 ip limit per scan but unlimited scans, does the job.

BeyondTrust

End of Sale & End of Life | BeyondTrust | BeyondTrust

Learn about End of Sale (EoS) and End of Life (EoL) policies at BeyondTrust, including important dates, migration paths, alternatives, and more.

darren-for-cdw · 2018-03-01T15:18:03.000Z

Rod-IT:

Kali is Linux, not UNIX

D’OH! You are 100% correct. Don’t know why I mixed those up as I have a Kali VM running now in my environment.

Mr Robot would be very upset at me, thanks for calling me out Rod-IT!

Fixed!

@rod-it

jadrien · 2018-03-01T15:22:23.000Z

I recently started using the Barracuda Vulnerability Scanner

Barracuda Networks

Barracuda Vulnerability Manager

Works quite well for me and in my environment – which I host a lot of web sites.

I love the price at free.

Doesn’t look to me like you have to already have other Barracuda products. It will show up in the Barracuda Cloud Control panel.

justin1250 · 2018-03-01T17:17:37.000Z

There is also OpenVAS

http://www.openvas.org/

dorapoppitt · 2018-03-01T19:38:54.000Z

lukasos:

check Retina free, 256 ip limit per scan but unlimited scans, does the job.

https://info.beyondtrust.com/community.html

Nice one! Thanks!