各位大家好
剛剛在ithome上晃的時候,發現到一篇文章(如下)
http://www.ithome.com.tw/itadm/article.php?c=46827&s=5
裡面有一小段文章
這位IT人員剛架好對外連網通道的第二天,剛好林宏嘉到該公司執行定期的稽核,他在掃描網路時發現,網路防禦系統主機有異常的舉動,對於內部其他的伺服器有不正常的掃描及異常存取的記錄,他進一步清查防禦主機後,竟然發現這些防禦主機本身已經安裝了遠端遙控工具、掃描工具,甚至連弱點評估工具都有了。
我想問的是粗體字的部份,一般來說,掃描網路安全的工具有那些啊??
大家有用過那一種的?
可否說來聽聽~~~
從何說起...
先給個清單吧!
Top 100 Network Security Tools
http://sectools.org/
再來說一般使用情形,
弱點掃瞄 來說,
Nessus 用的人不少,
相對於 Nessus 在 弱點掃描 的知名度及地位,
Snort 則是在 入侵偵測 領域佔有一席之地!
其他更多的商業化安全掃描工具,
都各具不同特色,
不過在此不多做介紹!
上面有寫:
"Nessus was a popular free and open source vulnerability scanner until they closed the source code in 2005 and removed the free "registered feed" version in 2008. A limited “Home Feed” is still available, though it is only licensed for home network use. Some people avoid paying by violating the “Home Feed” license, or by avoiding feeds entirely and using just the plugins included with each release. But for most users, the cost has increased from free to $1200/year. Despite this, Nessus is still the best UNIX vulnerability scanner available and among the best to run on Windows. Nessus is constantly updated, with more than 20,000 plugins. Key features include remote and local (authenticated) security checks, a client/server architecture with a GTK graphical interface, and an embedded scripting language for writing your own plugins or understanding the existing ones."
Snort 基本上是可以免費使用,
但 Snort 有提供付費版本的服務,
謝謝~~XDDDDD
Nessus 在 弱點掃描 推+1
小弟就是用來掃Port及Windows patch。