NEOHAPSIS - Peace of Mind Through Integrity and Insight

Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com

Neohapsis > Archives > Pen-test> 2009-08

Re: Penetration Testing

From: Zack Payton (zpaytongmail.com)
Date: Fri Aug 07 2009 - 14:37:22 CDT

Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Alex,

No offense intended here, but what you are asking is for a
vulnerability assessment tool rather than a pen test.
That is a very key difference to note. I'm sure many here on the list
will be more than willing to clarify the difference.

For what you are searching for, there are many good tools.
Nessus
GFI languard

See http://sectools.org/vuln-scanners.html for a more complete list.

Again, note that running these tools are a far cry from anything
remotely considered to be a pen test.

Regards,
Z

On Fri, Aug 7, 2009 at 5:12 AM, Alex Stender<alex.stendergmail.com> wrote:
> I am sure you have been asked this question a zillion of times and I
> sware that I searched the list history, as far as my records go, and I
> could not find the answer.
>
> I am looking for a tool which is able port scan an Internet connection
> externally and analyse each opened port assessing the potential
> vulnerabilities of the running opened.
>
> It has to be free, open source or a one-shot fully working trial. Is xscan good?
>
> Any ideas?
>
> Thanks
>
> Alex
>
> ------------------------------------------------------------------------
> This list is sponsored by: Information Assurance Certification Review Board
>
> Prove to peers and potential employers without a doubt that you can actually do a proper penetration test. IACRB CPT and CEPT certs require a full practical examination in order to become certified.
>
> http://www.iacertification.org
> ------------------------------------------------------------------------
>
>

------------------------------------------------------------------------
This list is sponsored by: Information Assurance Certification Review Board

Prove to peers and potential employers without a doubt that you can actually do a proper penetration test. IACRB CPT and CEPT certs require a full practical examination in order to become certified.

http://www.iacertification.org
------------------------------------------------------------------------

Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]