February 10th, 2002, 12:26 PM
anyone know of a good vonerability scanner for cgi, html, ect...(really anything) that tells a deteled description of what the hole does, how to fix, how bad the hole is ect? i'm tring to secure my site and all i can find are ones that'll tell me the name of the hole, or the file to run.... but nothing about it........
February 10th, 2002, 12:41 PM
I don't know of something that does all of that well, but you could languard. When it finishes it does give some of the vulns and links on them.
go to http://www.gfi.com
February 10th, 2002, 12:58 PM
Well.... There are a couple of good ones, Ill post the ones I used to use
Satan (Sorry no link)
Saint (Sorry no link)
If you go to Google and type in 'Satan security scanner' or Saint security scanner' it should give you some good results
February 10th, 2002, 01:03 PM
PS: I haven't tryed it, but any friend had counseled me this.
PSS: Tell me if it work
What is essential is invisible
to the eye ...
February 10th, 2002, 09:06 PM
there is one called n-stealth at www.nstalker.com it scanns for a huge (18000) list of exploits on your system and the database gets updated constantly. there is also a program called intellitamper that will give a list of every thing that is on your websute including cgi files. you can get it at www.158inc.com with a list of well known cgi exploits.
EDIT: i fixed the nstalker link.(i had a comma after .com.)
February 10th, 2002, 09:09 PM
5150: erm link = broken....and I wanna get that thing - looks/sounds good. =)
To be God is to be Root, if someone is erking you just type: rm -d /home/heathen
February 10th, 2002, 09:13 PM
You should go to www.neworder.box.sk and download Advanced Administrative Tools. Then you should go to www.webattack.com and download Stealth 2.0 then get Neo-trace!
February 11th, 2002, 02:53 AM
i think i have seen the SATAN proggie in your zipped proggies in the DL section of AO.
i could ne wrong though.