At 01:23 PM 4/4/2005, Jones, David H wrote:
I hope this isn't too off topic.
Someone recently mentioned Inprotect, and it was perfect timing, because I've recently been tasked with getting something like Inprotect running in our environment.
Unfortunately, just like the original message that tipped me off to Inprotect, I'm having a horrible time getting it running. (Specifically the updateplugins.pl part.)
I'm about ready to give up, and I'd like to see what other options are out there.
The web front end would be nice for launching scans and such, but we're really looking for a database backend that we can use to query and generate nice reports.
So, my question to the list is, what other options are out there that are like Inprotect?
Opensource/freeware preferred, but willing to look at commercial products.
Hi Dave,
Since you said "commercial products", and gave your name/email, you should expect a bunch of sales folks to call you from a variety of companies that use Nessus in their products. Tenable has not licensed the direct feed for Nessus vulnerability checks to other software vendors. Please ask anyone who calls you how they do their R&D or if they are simply re-distributing Tenable's registered feed of 7-day delayed checks.
That being said, I'd hope you would consider looking at Tenable's Lightning Console which offers:
- management of multiple Nessus scanners and intelligent load-balancing of scan jobs - credential management for leveraging Nessus's local checks across windows and unix - per-user scheduled scanning and users can only scan their allowed network ranges - asset-based views and reports (i.e. only show me the holes for the routers in Japan) - asset-based remediation workflow (i.e. tell the router folks to fix their "SNMP Public" vulns with these IOS commands while telling the Windows Server group which registry settings to change for their community string.) - detailed and executive reporting including trending and workflow - role based access control (i.e., your DNS admin only sees vulns for the DNS server). - simple software RPM-based installation and upgrades - support for a list of 'don't scan' IP addresses - support for passive vulnerability analysis with NeVO (i.e the Lightning Console gets updated with new hosts & vulns on your network even when you are not scanning.) - realtime vulnerability to intrusion detection event correlation with leading solutions like Snort, ISS, NFR, .etc - topology mapping
There is much more. Please feel free to visit:
http://www.tenablesecurity.com/products/lightning.shtml
Ron Gula, CTO Tenable Network Security
_______________________________________________ Nessus mailing list [email protected] http://mail.nessus.org/mailman/listinfo/nessus
