Re: Distributed Vulnerability Scanners

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Talisker,

As far as distributed vulnerability scanners go, I have to throw in a couple of points. One person already mentioned nCircle (which is where I work): we're a totally distributed solution (multiple lightweight appliance-based scanners reporting to a central console that stores all the data for all of the appliances). As well, I'd say that our vulnerability coverage and accuracy is among the best out there. Of course, I may have a bit of a bias... ;)

Note that I wouldn't put Nessus in the truly "distributed" model. In my experience, though it uses a client-server model, it really doesn't have a good way to control multiple scanner instances from a single point. (IIRC, Tenable's solution is an attempt to put some sort of way to do that on top of nessus). As well, I have heard that Foundstone's Foundscan product suffers from a similar limitation, but I haven't validated that firsthand.

In all seriousness, and bias aside, due to the fact that you can truly distribute scanners throughout the network (regardless of where your data store and reporting interface is) I'd put nCircle's stuff at the top in terms of true distributed scanning...

M

On Wednesday 05 March 2003 2:56 pm, Talisker wrote:
> Hi
> I'm looking for vulnerability scanners that will do their business

• --
• ----------------------------------------------------- | Michael Murray, CISSP <mmurray@nCircle.com> | Manager, Exposure Research and Ontology | nCircle Network Security 415-625-5968 | cell - 415.297.3576 -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.7 (GNU/Linux)

Do you need help?

In addition to our free technical library, Pantek provides professional IT services to companies who utilize Open Source software: Learn more about Pantek's Technical Support offerings Place an order for 24/7/365 Technical Support here Learn more about Pantek, who we are, and what we do Chat with a Live Operator Related securityfocus.com Links bugtraq certification focus-bsd focus-ids focus-ih focus-linux focus-ms focus-sun focus-unix-other focus-virus forensics incidents libnet linux-secnews ms-secnews pen-test secpapers secprog sectools secureshell security-basics securityjobs sf-news vuln-dev webappsec Request more information about Pantek

iD8DBQE+aPNTUsC8b1YJAp8RAgyLAJoCshqoOK7FX3a1lI3/O6uUPHeB8ACffy77 rZQahtmORPk8PrIqIlibZdQ=
=dLn6
-----END PGP SIGNATURE-----

Are your vulnerability scans producing just another report? Manage the entire remediation process with StillSecure VAM's Vulnerability Repair Workflow.
Download a free 15-day trial:
http://www2.stillsecure.com/download/sf_vuln_list.html Received on Sun Mar 9 13:06:22 2003