Yes, but can nmap test for the latest Apache exploit? No. That's not what it was designed for and that's why it is an *option* in Nessus, not the scanning engine.
Glenn -----Original Message----- From: jon schatz [mailto:[EMAIL PROTECTED]] Sent: Thursday, February 28, 2002 1:18 PM To: Coffey, Christopher S. Cc: '[EMAIL PROTECTED]'; Security-Basics (E-mail) Subject: RE: The Best Network Scanner? honestly, i've found the best network scanner to be nmap (http://www.insecure.org/nmap), and i'm surprised that no one's mentioned it so for. It's the swiss army knife of network testing tools. nessus actually uses it as its' scanning engine. It runs on *nix and win32 using libpcap. It supports many different scanning modes (including FIN and Null scans), can identify when a port is firewalled off (as opposed to being closed), can remotely identify most os's, can spoof it's source (badly), and can output results in xml. all in all, a cool (and very useful) program. -jon -- [EMAIL PROTECTED] || www.divisionbyzero.com gpg key: www.divisionbyzero.com/pubkey.asc think i have a virus?: www.divisionbyzero.com/pgp.html "You are in a twisty little maze of Sendmail rules, all confusing."
