ตัวอย่างทูลใช้ในการตรวจสอบช่องโหว่ (Vulnerability Scanners)

การตรวจสอบช่องโหว่,Vulnerability Scanners

ตัวอย่างทูลที่นิยมใช้ในการตรวจสอบช่องโหว่ (Vulnerability Scanners) อาทิ เช่น
1. Nessus (http://www.nessus.org)
Nessus is a proprietary comprehensive vulnerability scanner which is developed by Tenable Network Security.

2. OpenVAS (http://www.openvas.org)
OpenVAS is a framework of several services and tools offering a comprehensive and powerful vulnerability scanning and vulnerability management solution.

3. Nexpose (http://www.rapid7.com/products/nexpose/)
Rapid7 Nexpose is a vulnerability scanner which aims to support the entire vulnerability management lifecycle, including discovery, detection, verification, risk .

4. GFI LanGuard (http://www.gfi.com/products-and-solutions/network-security-solutions/gfi...)
GFI LanGuard network vulnerability scanner and patch management software performs over 50000 vulnerability assessments to discover threats early.

5. Nmap (http://nmap.org/)
Nmap (“Network Mapper”) is an open source tool for network exploration and security auditing. It was designed to rapidly scan large networks, although it works.

6. Retina (http://www.beyondtrust.com/Products/RetinaNetworkSecurityScanner/)
Retina Network Security

7. SQLMap (http://sqlmap.org/)
sqlmap: automatic SQL injection and database takeover tool

8. SAINT (http://www.saintcorporation.com/solutions/vulnerabilityScan.html)
SAINT Corporation offers vulnerability management products and services including vulnerability assessment and penetration testing.

9. x5s (http://xss.codeplex.com)
test encodings and character transformations to find XSS hotspots

10. Microsoft Baseline Security Analyzer (MBSA) (http://www.microsoft.com/en-us/download/details.aspx?id=7558)
Microsoft Baseline Security Analyzer (MBSA) is a software tool released by Microsoft to determine security state by assessing missing security updates and

11. Core Impact (http://www.coresecurity.com/core-impact-pro)
Core Impact Pro offers commercial-grade vulnerability exploits you can trust. Find recent exploits, how they work & all about Core Security exploits.

12. QualysGuard (https://www.qualys.com/enterprises/qualysguard/vulnerability-management/)
Qualys Vulnerability Management (VM) automates the lifecycle of network auditing and vulnerability management across the enterprise,

13. Secunia PSI (http://secunia.com/vulnerability_scanning/)
Secunia PSI is a software monitoring utility that will periodically scan your computer's applications and cross-check the installed version with a..

14. Nipper (https://www.titania.com/nipperstudio)
The First Tool Web vulnerability scanner, In Android environment (developing iOS version), this vulnerability scanner was focused for .

15. hackertarget (http://hackertarget.com)
Online Vulnerability Scanners and Port Scans

---
รวบรวมโดย
Aj.Arnut Ruttanatirakul
(c) SysAdmin Knowledg
http://www.sysadmin.in.th/
March 18, 2015

Network Monitoring

Network Command

SysAdmin LINE

LINE ID: sys-ad-min-book