Nessus, it's only a grand a year and you can scan everything. -----Original Message----- From: [email protected] [mailto:[email protected]] On Behalf Of Michael Leone Sent: Monday, September 18, 2017 9:48 AM To: [email protected] Subject: [NTSysADM] Scanning for web server vulnerabilities
We had a pen test done recently, and so I've been fixing some of our external web servers, per their recommendations (i.e., turning off this protocol, enabling that one, etc). I'm curious what sites you might use to scan for vulnerabilities. I've been using: https://www.htbridge.com/ssl/ https://www.ssllabs.com/ssltest/ And both the web servers I've been fixing now pass with A or A+ (yay! for A - LOL). Any other sites I should be trying? What do you use? Thanks
