Once again it is time for the quarterly security review required for my company to maintain PCI compliance. Unfortunately, It seems that the Nessus scanner that we had been using is no longer free. Can anyone recommend a PCI compliant vulnerability scanner that I can use on OpenBSD. It will need to be able to scan both OpenBSD and Windows boxen.
Really, Nessus has worked so well for us in the past that I wouldn't be opposed to just buying it except for the fact that it went from free to $1200. That really blows a huge hole in the budget of the small co I work for. For those USians who have to maintain PCI compliance, what are you guys using? Stuart van Zee [EMAIL PROTECTED]
