Security Basics mailing list archives

Re: php scanning

From: Barrie Dempster <barrie () reboot-robot net>
Date: Mon, 05 Dec 2005 19:50:16 +0000

On Fri, 2005-12-02 at 23:22 +0000, xer0x.west () gmail com wrote:

The best way of discovering exploits is by manual labor or paying someone to find a hole in whatever it is, but other 
than that there's Nestea and Nessus. I think Nessus costs a good bit, but I'm not sure if Nestea is free or not.


Firstly, Nessus only finds known exploits, won't help identify new ones,
also it is free (although not GPL anymore) - which could have easily
been verified before posting.

For a GPL'd fork of Nessus see OpenVAS http://www.openvas.org


-- 
With Regards..
Barrie Dempster (zeedo) - Fortiter et Strenue

"He who hingeth aboot, geteth hee-haw" Victor - Still Game

blog:  http://reboot-robot.net
sites: http://www.bsrf.org.uk - http://www.security-forums.com
ca:    https://www.cacert.org/index.php?id=3

Attachment: smime.p7s
Description:

Current thread:

php scanning Paul Marsh (Dec 01)
- Re: php scanning Dharmendra (Dec 02)
- <Possible follow-ups>
- Re: php scanning xer0x . west (Dec 05)
  - Re: php scanning Barrie Dempster (Dec 06)
  - Re: php scanning Jonathan Loh (Dec 08)
    - Re: php scanning Dharmendra (Dec 12)
- Re: Re: php scanning straticus21 (Dec 06)