which scanner is better

**kinwin** · November 18th, 2004, 10:40 AM

i have used many scanners.but i don"t know which was best in scanning.Can you help me?
The scanner i have userd were
x-scan3.1
Fluxay
nmap(but it cannot used in win)
superscan
n-stleth.
In addition,my operating programme is win 2000

**recca** · November 18th, 2004, 10:47 AM

Nmap would be my scanner of choice

Install colinux on your windows machine and run it from there works like a charm

plus you have the benefit of running other linux apps within your windows machine
www.colinux.com

**axio** · November 18th, 2004, 10:55 AM

for scanning and fingerprinting nmap is quite good

nmap(but it cannot used in win)

check their site, they released a newer version that doesnt break under SP2

and if you like xscan you may like nessus (newt if in windows) for vulnerability testing
http://www.nessus.org/

**recca** · November 18th, 2004, 01:38 PM

You also might want to try GFI's N.S.S wich is a pretty decent windows based scanner
N.S.S

***phishphreek*** · November 18th, 2004, 02:28 PM

and if you like xscan you may like nessus (newt if in windows) for vulnerability testing

You will def. like nessus. I love it! newt for windows is limited. with newt you are limited to your local subnet. For full capabilities a license will cost you $6,000. Not to mention if you want support, that will cost you another $1,200 for the first year. Ouch! http://www.tenablesecurity.com/newt.html

Yep... thats enough to build 6 or more pretty powerful Linux machines all running nessus... and a whole lot of other security tools. With linux you only pay for hardware and you have a HUGE community out there for support. http://www.nessus.org/

But nessus and newt are WAY more than port scanners...

Back to the original question: I too like nmap. It has all of the features that I'd need. However, for a quick scan I'll use superscan. It is pretty accurate too. It just doesn't have all the bells and whistles.

***cacosapo*** · November 18th, 2004, 02:36 PM

nmap for basic scan.

nessus for vulnerability analysis.

you wont need more

**R0n1n** · November 18th, 2004, 05:31 PM

Nmap for port scans is clearly the way to go, Nessus is good for an open source vulnerability scanning tool. I also like Retina, but thats commerical and not cheap. NewT is fine, its a commercial version of Nessus that will run on Windows, you can download a freetrial of it, although there is something to be said for paying for what is in essence free software in the first place...

Also, bear in mind if you want to scan for application holes then you need an application scanning tool - Paros, Whisker (free) or WebInspect, AppScan (Commercial), for database a db scanning tool - AppDetective is by far the best, so be sure you are using a scanner for the right tasks.

Also, be aware that scanners miss a whole host of things so manual checks are required, this is more so with application scanning, but is still something to be wary of fur OS scans.

Also, if you are going to do any kind of pen testing with these things then be aware that they are as noisy as a noisy thing can be and will set of all kinds of IDS alarms unless you do some major tweaking.

**Riot** · November 18th, 2004, 11:37 PM

hum www.colinux.com yea good link but some real info would be nice to help him answer his question, it was still a good link

.

**arisecanfly** · November 19th, 2004, 12:32 AM

the real link to coLinux is www.colinux.org

**Riot** · November 19th, 2004, 02:01 AM

ah thank you.

Thread: which scanner is better

Thread Tools

Display

which scanner is better

Posting Permissions