Vulnerability Scanners
A vulnerability scanner assesses computers, computer systems, networks or applications for weaknesses.
Vulnerability scanners can help to automate security auditing by scanning the network for security risks and producing a prioritized list to address vulnerabilities.
What types of vulnerabilities do scanners look for?
- Use of default passwords (common passwords)
- Missing patches
- Open ports
- Misconfiguration in operating systems and software
- Active IP addresses, including any unexpected devices connected
What are some commonly used vulnerability scanners on the market?
- Nessus
- Retina
- Core Impact
- GFI LanGuard
Categories of scanners
- Network scanners
- Application scanners
- Web application scanners
Network scanners
Probe hosts for open ports, enumerate information about users and groups and look for vulnerabilities on the network.
Application Scanners
Access application source code to test an application from the inside.
Web application scanners
Identify vulnerabilities in web applications
Intrusive scans
Try to exploit vulnerabilities and may even crash the target.
Non-intrusive scan
Will try not to cause any harm to the target.
credentialed scan
usernames and passwords provide authorised access to a system, allowing the system to harvest more information.
Non-credentialed scan
less invasive and give an outsider’s point of view.
-
Risk Management Continue5
-
Informationn Security And Risk Management41
-
Security Management9
-
Security Roles and Responsibilities7
-
Data Classification and Protection8
-
Personnel Security3
-
Cryptography33
-
Governance and compliance21
-
Governance2
-
Ethics12
-
Security Management Framework35
-
Application of Cryptography7
-
Management of Cryptography13
-
Encryption Alternatives2
-
Network Security Testing11
-
Security Automation2
-
Chapter 10 - Wired Telecom Technologies13
-
Chapter 10 - Network Technologies11
-
Chaper 10 - Network Topologies5
-
Chapter 10 - Ethernet Devices7
-
Chapter 10 - Wireless Network Technologies5
-
Chapter 10 - Network Protocols24
-
Chapter 10 - Network-Based Threats, Attacks and Vulnerabilities15
-
Network Security Testing Tools8
-
Penetration Testing9
-
Information Sources5
-
Threat Intelligence services11
-
Network and Server Vulnerability11
-
Common Vulnerability Scoring System9
-
Secure Device Management22
-
Enpoint Vulnerability Quiz11
-
Module 5 - Risk Management21
-
Module 5 - Risk Assessment10
-
Module 5 - Security Control11
-
Chapter 2 - Access Control11
-
Chapter 2 - Access Control Technologies and Methods8
-
Chapter 2 - Access Control Attacks15
-
Chapter 2 - Access Control Processes6
-
Chapter 2 - Access Control Concepts13
-
Chapter 2 - Testing Access Controls4
-
Module 6 - Digital Forensics26
-
Module 6 - The Cyber Kill Chain & Diamond Model21
-
Module 6 - Incident Response17
-
Module 6 - Disaster Recovery1
-
Chapter 3 - Operating Systems12
-
Chapter 3 - Software Models and Technologies7
-
Chapter 3 - Threats in Software Environments23
-
Chapter 3 - Threats in Software Continued6
-
Chapter 3 - Security in the Software Development Life Cycle7
-
Chapter 3 - Application Environment and Security Controls5
-
Chapter 4 - Business Continuity and Disaster Recovery Planning4
-
Chapter 9 - Security Concepts16
-
Chapter 9 - Information Systems Evaluation Models7
-
Chapter 9 - Certification and Accreditation5
