What are your opinions on vulnerability scanners?
DoubleNNs
Member Posts: 2,015 ■■■■■□□□□□
Looking for something to use to validate patching and overall OS security posture. What is your opinion on vulnerabiluty scanners, especially on *nix?
I see Lynis and OpenVAS and am interested in exploring each. I have also used Qualys and Nexpose in past jobs.
I see Lynis and OpenVAS and am interested in exploring each. I have also used Qualys and Nexpose in past jobs.
Goals for 2018:
Certs: RHCSA, LFCS: Ubuntu, CNCF CKA, CNCF CKAD | AWS Certified DevOps Engineer, AWS Solutions Architect Pro, AWS Certified Security Specialist, GCP Professional Cloud Architect
Learn: Terraform, Kubernetes, Prometheus & Golang | Improve: Docker, Python Programming
To-do | In Progress | Completed
Certs: RHCSA, LFCS: Ubuntu, CNCF CKA, CNCF CKAD | AWS Certified DevOps Engineer, AWS Solutions Architect Pro, AWS Certified Security Specialist, GCP Professional Cloud Architect
Learn: Terraform, Kubernetes, Prometheus & Golang | Improve: Docker, Python Programming
To-do | In Progress | Completed
Comments
-
Mike7
Member Posts: 1,107 ■■■■□□□□□□
OpenVAS is a fork of Nessus after it turned commercial.
I kinda like Nessus. You can try the home edition for free and the professional license is inexpensive when compared to other commercial products. -
tedjames
Member Posts: 1,182 ■■■■■■■■□□
Nessus is good, of course. Then there's Burp Suite (free and Pro), OWASP-Zap (free with Kali Linux), web browser developer tools (free), Dirbuster (free), and I'm sure a lot of other great tools. Check out what's available in the web app scanning section of Kali Linux.
There are lots of manual techniques, too. Check this out: https://www.guru99.com/web-application-testing.html
There are plenty of other good reference sites. -
NotHackingYou
Member Posts: 1,460 ■■■■■■■■□□
I like OpenVAS for this kind of work.When you go the extra mile, there's no traffic.
-
TechGuru80
Member Posts: 1,539 ■■■■■■□□□□
What is your budget? What kind of reporting do you need? If you are an enterprise, you should be using a full solution like Qualys or Security Center...but just general scanning I prefer Nessus...Qualys requires you to run a VM appliance to scan.
-
tedjames
Member Posts: 1,182 ■■■■■■■■□□
TechGuru80 wrote: »What is your budget? What kind of reporting do you need? If you are an enterprise, you should be using a full solution like Qualys or Security Center...but just general scanning I prefer Nessus...Qualys requires you to run a VM appliance to scan.
If you can't afford Security Center ($20k I think), look into Tenable.IO. -
JoJoCal19
Mod Posts: 2,835 Mod
Nexpose (and now InsightVM) is top notch if you’re looking at professional options.Have: CISSP, CISM, CISA, CRISC, eJPT, GCIA, GSEC, CCSP, CCSK, AWS CSAA, AWS CCP, OCI Foundations Associate, ITIL-F, MS Cyber Security - USF, BSBA - UF, MSISA - WGU
Currently Working On: Python, OSCP Prep
Next Up: OSCP
Studying: Code Academy (Python), Bash Scripting, Virtual Hacking Lab Coursework -
iBrokeIT
Member Posts: 1,318 ■■■■■■■■■□
The Nessus scanner is great but I do not recommend the Tenable.IO platform, it is not ready for primetime. Trying to reliably pull scan data out via the API the last few months has been nightmare and the support resources to address the problem have been lacking.2019: GPEN | GCFE | GXPN | GICSP | CySA+
2020: GCIP | GCIA
2021: GRID | GDSA | Pentest+
2022: GMON | GDAT
2023: GREM | GSE | GCFA
WGU BS IT-NA | SANS Grad Cert: PT&EH | SANS Grad Cert: ICS Security | SANS Grad Cert: Cyber Defense Ops | SANS Grad Cert: Incident Response -
mmcabe
Member Posts: 58 ■■□□□□□□□□
Lynis is great on individual nodes. I use ZenMap for the network.
