This link has been bookmarked by 19 people . It was first bookmarked on 23 Dec 2006, by someone privately.
-
22 Feb 12
-
15 Mar 10
-
30 Jun 09
-
18 Feb 09
-
24 Sep 08
Mairon CroesFrom site: "Nessus is a proprietary comprehensive vulnerability scanning software. Its goal is to detect potential vulnerabilities on the tested systems."
wikipedia articles crossplatform software mac linux windows tools scanners vulnerabilities exploits testing hacking security
-
02 Oct 07
-
23 Dec 06
-
In typical operation, nessus begins by doing a port scan with its own internal portscanner (or it can optionally use Nmap [1]) to determine which ports are open on the target and then tries various exploits on the open ports. The vulnerability tests, available as a large body of plugins, are written in NASL (Nessus Attack Scripting Language), a scripting language optimised for custom network interaction.
Optionally, the results of the scan can be reported in various formats, such as plain text, XML, HTML and LaTeX. The results can also be saved in a knowledge base for reference against future vulnerability scans. Scanning can be automated through the use of a command-line client.
If the user chooses to do so (by disabling the option 'safe checks'), some of Nessus's vulnerability tests may try to cause vulnerable services or operating systems to crash. This lets a user test the resistance of a device before putting it in production.
Nessus provides additional functionality beyond testing for known network vulnerabilities. For instance, it can use Windows credentials to examine patch levels on computers running the Windows operating system, and can perform password auditing using dictionary and brute force methods.
-
Would you like to comment?
Join Diigo for a free account, or sign in if you are already a member.