Vulnerability Assessment

• Vulnerability Assessment - Utilising vulnerability scanners all discovered hosts can then be tested for vulnerabilities. The result would then be analysed to determine if there any vulnerabilities that could be exploited to gain access to a target host on a network. A number of tests carried out by these scanners are just banner grabbing/ obtaining version information, once these details are known, the version is compared with any common vulnerabilities and exploits (CVE) that have been released and reported to the user. Other tools actually use manual pen testing methods and display the output received i.e. showmount -e ip_address would display the NFS shares available to the scanner whcih would then need to be verified by the tester.
  • Manual
    • Patch Levels
    • Confirmed Vulnerabilities
      • Severe
      • High
      • Medium
      • Low
  • Automated
    • Reports
    • Vulnerabilities
      • Severe
      • High
      • Medium
      • Low
  • Tools
    • GFI
    • Nessus (Linux)
      • Nessus (Windows)
    • NGS Typhon
    • NGS Squirrel for Oracle
    • NGS Squirrel for SQL
    • SARA
    • MatriXay
    • BiDiBlah
    • SSA
    • Oval Interpreter
    • Xscan
    • Security Manager +
    • Inguma
  • Resources
    • Security Focus
    • Microsoft Security Bulletin
    • Common Vulnerabilities and Exploits (CVE)
    • National Vulnerability Database (NVD)
    • The Open Source Vulnerability Database (OSVDB)
      • Standalone Database
        • Update URL
    • United States Computer Emergency Response Team (US-CERT)
    • Computer Emergency Response Team
    • Mozilla Security Information
    • SANS
    • Securiteam
    • PacketStorm Security
    • Security Tracker
    • Secunia
    • Vulnerabilities.org
    • ntbugtraq
    • Wireless Vulnerabilities and Exploits (WVE)
  • Blogs
    • Carnal0wnage
    • Fsecure Blog
    • g0ne blog
    • GNUCitizen
    • ha.ckers Blog
    • Jeremiah Grossman Blog
    • Metasploit
    • nCircle Blogs
    • pentest mokney.net
    • Rational Security
    • Rise Security
    • Security Fix Blog
    • Software Vulnerability Exploitation Blog
    • Taosecurity Blog