-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Gentlepeoples,
I would like to propose that there be a separate category of plugins
that is simply "version detection" or "audit plugins." The purpose
is to be able to run nessus in a very lightweight manner (safe
checks, optimized scan, ping hosts, etc.) and run quick audit against
a single network block. The report would mostly provide OS
detection, port, service/application fingerprinting, etc.
I find myself in the midst of grinding through the plugins and
determining what plugins fit this model. Some times it's not
obvious. Also, while I am interested in the vulnerabilities for
given versions, I would first prefer to see a nice sensible list of
ports/applications/version#s that I can scan through quickly.
Does anyone else have a need/desire for this? Does it make sense
for Nessus?
Cheers,
- --Randy
-----BEGIN PGP SIGNATURE-----
Version: PGPfreeware 7.0.3 for non-commercial use <http://www.pgp.com>
iQA/AwUBPIVEGiGJH83OL4I4EQJ5hQCgol1kooXxL11Clivz9jxMwcTKfdUAmwb/
bQ5FFKTPyA0Zbc10sPdC48oa
=rR6+
-----END PGP SIGNATURE-----
PGPexch.rtf.asc
Description: Binary data
