I have been through a demonstration of this product with citadel, and have spoken with another organization that was using the product.
Basically you scan your servers/host, save the report as an .nsr, import the nessus report into hercules and it goes to town on it. Yes it appears to work well with the .nsr files. It looks like you have the ability to control whether or not a vulnerability should be mitigated by hercules, and it can work on groups of computers at a time. So if there was a "vulnerability" that was required for something to function properly, then you have the choice to leave it "broken". In order to function correctly, hercules requires that the registry be remotely readable. While I wasn't to comfortable with this, given the Return on Investment for our server and desktop people, we will probably purchase this product. Like I said, we have only been through a demonstration, I haven't spent a great deal of time getting up close and personal with Hercules. Hope this helps. Austin -----Original Message----- From: George Stone [mailto:[EMAIL PROTECTED]] Sent: Thursday, September 19, 2002 12:38 PM To: [EMAIL PROTECTED] Subject: Hercules Automated Network Vulnerability Remediation Has anyone worked with Hercules before? http://www.citadel.com/Hercules.asp This product was released in March 2002, works with Nessus, and sounds too good to be true. Does it work well with Nessus? Thanks. -- George - [EMAIL PROTECTED]: general discussions about Nessus. * To unsubscribe, send a mail to [EMAIL PROTECTED] with "unsubscribe nessus" in the body. IMPORTANT NOTICE: This message is intended only for the use of the individual or entity to which it is addressed and may contain information that is privileged, confidential and exempt from disclosure under applicable law. If you have received this message in error, you are hereby notified that we do not consent to any reading, dissemination, distribution or copying of this message. If you have received this communication in error, please notify the sender immediately and destroy the transmitted information. - [EMAIL PROTECTED]: general discussions about Nessus. * To unsubscribe, send a mail to [EMAIL PROTECTED] with "unsubscribe nessus" in the body.
