Archive for 'Vulnerability assessment' Category
Nmap 5.00 is out
Fyodor et al. have just released version 5.00 of the essential Nmap port scanner. Lots of changes in this major release: Performance improvements for scanning. Improvements to the Zenmap GUI. New tool Ncat, “a a much-improved reimplementation of the venerable Netcat.” The Ndiff scan comparison tool. Improved and new scripts for the NSE scripting engine. More [...]
Read the rest of this entry...Testing SSL with command line tools
In an post over at the excellent TaoSecurity blog, Richard writes about discovering nssl, an SSL-capable version of netcat. A reader reminded him that the openssl command line utility can also act as an ad hoc SSL client like so openssl s_client -connect www.example.com:443 The above lets you connect via SSL to a web server [...]
Read the rest of this entry...Comparing nessus output using diff
Nessus is a popular network vulnerability scanner. It can check for a huge number of common application and operating system vulnerabilities and although no longer open source is still free to download and use for most organizations. Nessus is primarily designed for manual scanning with an operator setting up a scan, letting it run then [...]
Read the rest of this entry...