Friday, October 14, 2011


A vulnerability scanner is a computer program designed to assess computers, computer systems, networks or applications for weaknesses. There are a number of types of vulnerability scanners available today, distinguished from one another by a focus on particular targets. While functionality varies between different types of vulnerability scanners, they share a common, core purpose of enumerating the vulnerabilities present in one or more targets.

Types of Vulnerability Scanners

· Port scanner

· Network vulnerability scanner

· Web application security scanner

We have different tools for this kind of scanning methodologies.To scan for open ports we use mostly the tool called NMAP or Superscan etc.

For Network security assessment we use tools like GFI Languard , Retina scanner or NESSUS.Mostly organisations use NESSUS as it give vast variety of scan techniques and gives the exact vuln and kind of patching solution , as goes same for GFI but GFI surpasses Nessus when targeting Windows hosts.Nessus works on and against different platforms.

The tools used for Web app scanning are ACUNETIX , IBM AppScan or WebInspect etc. As we have many tools for Webapp security testing .Acunetix and IBM are mostly used.


[* I will be posting the tutorials for all tools Mentioned above , Which will be updated Shrortly.*]


Post a Comment

Twitter Delicious Facebook Digg Stumbleupon Favorites More