Scanner for them, scanner for us.
Quick hit I hope here.
Our auditing department uses ISS and NESSUS to scan our network. The company supports us using ISS to scan but not NESSUS. So a few things me'ah:
1. Is NESSUS a better scanner overall than ISS or should be used as a 2nd opinion scanner?
2. What about SNORT? Is it comparable to ISS/NESSUS? Is SNORT betta?
3. Is there just a host scanner to have a server scan and report on itself (or just use ISS/NESSUS)?
4. I see that nmap is supposed to be a part of NESSUS as well, has anyone seen big issues with using nmap? Either alone or as part of NESSUS?
Ok, maybe not such a quick hit, but I figure we have some pretty big brains out there...
Thanks in advance!