Vulnerability Scanner

Hello all. I would like some information on some good vulnerability scanners for the Windows environment to evaluate my machines. I think it would be good for penetration testing and the like. Any help or information is appreciated. I have begun a preliminary search on google and found an http stealth scanner from astalavista, who knows what else I will find, but some direction would be helpful. Thanks.

Guus pointed me to a program yesterday call Nessus. I didn't install it, but the doc's on it sound like it might be something you might want to look at. You can find it HERE


Cheers:

All the ones that I have seen and used for windows are extremely expensive.

NAI's cybercop (I think it may be end of life now)

ISS's Internet Scanner.

ISS is a very nice scanner; however, it is uber expensive. If you got the dough (to get an unlimited travelling license), it is quite good...otherwise, you get an annoyance of only being able to scan certain things a certain number of times in a year...

If you are not talking about too many devices or if you have a little more time, nessus is a great freeware scanning tool that can do a great deal of the things that the commercial scanners do and tends to stay a little more up to date with the vulnerabilities (however it isn't windows).

There have been other miscelleanous scanners (for example STAT) for windows, but in general they weren't nearly as diverse as say ISS or nessus...

Hope this points you in the right direction...

Neb

Cisco has one that can scan 5 hosts at a time for free.

http://www.cisco.com/go/scanner

Make sure you download both the scanner and 5 host license file

Thanks to all for the information and direction.

I have found a very nice shareware program called AATools. It has many, many functions and is very user friendly. Check it out here!
It runs on all windoze platforms...

http://www.gfi.com/lannetscan/index.htm

Try the above Gem, I use it when I need to know which machine to beat the Windows Admins over the head with.

in all seriousness the previous version (V2) was invaluable for helping us rid ourselves of a serious Nimda infection

Try LANGuard for standard basic vulnerabilities. I quite like it.

Also, grab Typhon I, which is free, and I also think that you can get Typhon II demo now.

Both these are on windows platforms.

Just Go To www.sygate.com and do there test for your comp its a good one

I have used Nessus for several years now, both internally and with clients that have over 500 servers. I like Nessus for several reasons:

1: It is free
2: Vulnerability updates tend to come out within a few hours of an alert compared to weeks if not months from other vendors.
3: It can be as comprehensive or as unobtrusive as you like, you decide how you want it to run. I would recommend NOT doing DOS attacks on a live network as you will likely loose your job because of it.

There are 2 parts to Nessus, the server and the client. Both can run on the same machine if you like BUT the server only runs on a Unix, Solaris or Linux box at this time so if you don't have access to one of these systems you need to consider another product. I have run it without any probles over FreeBSD, Redhat and Solars. Netrecon is OK but expensive and has crashed more than one Netware server if it is way out of date on the patches and upgrades.

Best of luck,

Jon

Guys, guys, guys... search before posting! This scanner thing has been discussed for like million times!

t2k2, you made a good start by choosing this forum to find info. But when you were here, before posting, you could see lots of similar discussions.

http://www.antionline.com/forumdispl...?s=&forumid=69

Peace always,
<jdenny>

i tryed sysgate's detection pages and it all looked really good when i was using sygate firewall but when i tested any other firewall it would all ways come up with the same results,a few open ports,even when i turned my firewall off,same,then i told my firewall's to block everything and it still said that i had vunrabilitys.i did this with about 5 different firewalls and always exactly the same no matter what i did.

then i put sygate back on but turned it of completely and did it again and it showed that i was completely secure. :confused: :confused:

Sounds very dodgy to me,and if your thinking that there might be some problem with there site, i tested all my firewalls on various other sites like sheilds up and blackcode and this time they told me my vunrabilitys, i fixed them and it came up as better,so then i tested sysgate and these other sites said that it was insucure, and ports that were suposedly closed by sygates site annalasis, were acctully open

Sounds to me like sysgate's site some how detects when you have sysgate installed and shows you what you want to see.

anyone else noticed this :confused:

I have Languard, pretty nifty. I downloaded Typhon I, but I haven't tried it yet. AATools looks pretty cool. Thanks all.

Hey gang. I am now using Languard, and I have also downloaded AA Tools - very cool. I really appreciate the suggestions. This will definitely help. Languard is great because it gives you links to bugtraq for descriptions of the vulnerabilities. I found one shareware scanner that we use for testing called Blue Port, I think. It is a very fast port scanner I found on downloads.com. Thanks again for all the help.

ive used blue port scanner before, and yea it is quite good but there are better

hi
try www.pcflank.com
a good online testing page for firewalls