Penetration Testing mailing list archives

Re: Alternatives to Nessus


From: Sat Jagat Singh <flyingdervish () yahoo com>
Date: Tue, 24 Mar 2009 14:51:44 -0700 (PDT)


I haven't seen anyone mention SARA for this yet.  It's open source, updated on a reasonable schedule, seems to find 
MOST of the same vulnerabilities that Nessus does and has a nice report format.  I find it a little more complicated to 
configure and use, but not bad.  Not to say it's better than OpenVAS, I can't really compare them, but it's an 
alternative.

Find it at: http://www-arc.com/sara/


--- On Fri, 3/20/09, jond <x () jond com> wrote:

From: jond <x () jond com>
Subject: Alternatives to Nessus
To: pen-test () securityfocus com
Date: Friday, March 20, 2009, 7:01 AM
Has anyone found any good alternatives to Nessus?
I've played around with OpenVAS with their backtrack
build, but either
it's not pulling all the plugins, or it's just not
as accurate as
Nessus.

Anyone have different experiences with OpenVAS, or know of
anything
else I might look at?



Thanks in advance,
Jon


.

------------------------------------------------------------------------
This list is sponsored by: InfoSec Institute

Learn all of the latest penetration testing techniques in
InfoSec Institute's Ethical Hacking class. 
Totally hands-on course with evening Capture The Flag (CTF)
exercises, Certified Ethical Hacker and Certified
Penetration Tester exams, taught by an expert with years of
real pen testing experience.

http://www.infosecinstitute.com/courses/ethical_hacking_training.html
------------------------------------------------------------------------


      

------------------------------------------------------------------------
This list is sponsored by: InfoSec Institute

Tired of using other people's tools? Why not learn how to write your own exploits? InfoSec Institute's Advanced Ethical 
Hacking class teaches you how to write stack and heap buffer overflow exploits for Windows and Linux. Gain your 
Certified Expert Penetration Tester (CEPT) cert as well.

http://www.infosecinstitute.com/courses/advanced_ethical_hacking_training.html
------------------------------------------------------------------------


Current thread: