Nessus

The Nessus Security Scanner is a security auditing tool. It makes possible to test security modules in an attempt to find vulnerable spots that should be fixed.

It is made up of two parts: a server, and a client. The server/daemon, nessusd, is in charge of the attacks, whereas the client, nessus, provides the user with an attractive X11/GTK+ interface.

Nessus

License GNU GPL Developer Tenable Network Security Website www.nessus.org/nessus Requirements libnasl Support: Nessus Documentation, FAQ, Mailing Lists Selected Reviews: LinuxFocus, SecurityFocus

Features include:

• Agentless Patch, Configuration, Content Auditing
• Allows you to rapidly deploy the scanners
• Eliminates the need for agent patching
• Creates a flexible environment that is not dependent on target-specific agents
• High speed vulnerability identification
• Can continuously scan your network devices to drastically save time identifying vulnerabilities
• Can be configured to test a range of IP addresses or for DNS or MAC addresses if IPs are dynamic
• Network Assessment and Discovery
• Performs sophisticated remote scans and audits of UNIX, Windows, and network infrastructures
• Discovers network devices and identifies the operating systems, applications, databases, and services running on those assets

Last Updated Saturday, May 03 2008 @ 12:35 PM EDT