<p>With the right vulnerability scanning tools, organizations can identify potential weaknesses in their environments.</p>
<p>The technology has changed significantly since debuting more than 30 years ago with two basic types of vulnerability scanners. One scanned the internal network for hosts, identified open network ports and “fingerprinted” each host by analyzing its network behavior to pinpoint its OS and version. The other type of <a href=”https://www.techtarget.com/searchsecurity/definition/vulnerability-scanning”>vulnerability scanning</a> tool ran on individual hosts, often with local administrator credentials, for a more comprehensive picture of the software each host ran and the known vulnerabilities in that software.</p>
<p>Just as vulnerability scanners have expanded and evolved, so has the industry’s understanding of what constitutes a vulnerability and what tools are needed. Here are some examples of enterprise vulnerability scanning tools currently available.</p>
<section class=”section main-article-chapter” data-menu-title=”Burp Suite”>
<h2 class=”section-title”><i class=”icon” data-icon=”1″></i>Burp Suite</h2>
<p>Burp Suite, available from PortSwigger, focuses on website and web application vulnerability scanning. It supports both <a href=”https://www.techtarget.com/searchsecurity/tip/Key-types-of-application-security-testing”>static and dynamic testing techniques</a> to identify potential vulnerabilities. Rather than just targeting hosts, Burp Suite is designed to also run frequently or continuously, scanning an organization’s websites and web applications.</p>
<p>Burp Suite Community Edition is a free download. Burp Suite Professional is priced at $499/user/year. DAST, formerly Enterprise Edition, starts at $6,000/year. Burp Suite Professional users can receive free credits for using Burp AI features, which use AI technologies to improve the efficiency and accuracy of Burp Suite Professional.</p>
</section>
<section class=”section main-article-chapter” data-menu-title=”Intruder”>
<h2 class=”section-title”><i class=”icon” data-icon=”1″></i>Intruder</h2>
<p>Intruder is a cloud-based vulnerability scanner but does more than solely scan cloud-based resources. It also scans networks, servers, endpoints, cloud infrastructures and websites, regardless of location. Like many other scanners, Intruder can find unpatched software, security configuration errors and other weaknesses.</p>
<p>Intruder offers Essential, Cloud, Pro and Enterprise levels. Cloud, Pro and Enterprise include an AI technology called GregAI that assists analysts in reviewing scan results and prioritizing vulnerability mitigations.</p>
<p>Prices are based on the frequency of scheduled scans, the number of cloud accounts and internal targets scanned, and the sophistication of scan techniques. Essential costs $119/month, Cloud $239/month and Pro $399/month. Contact Intruder for Enterprise pricing.</p>
</section>
<section class=”section main-article-chapter” data-menu-title=”Nessus”>
<h2 class=”section-title”><i class=”icon” data-icon=”1″></i>Nessus</h2>
<p>Nessus was created in 1998 by Renaud Deraison, who later founded Tenable, the cybersecurity company that still maintains Nessus. The company offers the basic Nessus Essentials version for free, and the Nessus Essentials Plus supports scanning up to 20 IP addresses and includes basic reporting capabilities. Tenable also offers Nessus Professional and Nessus Expert, which can find known-vulnerable software versions and weak or incorrect security configuration settings on many platforms, including cloud architectures and IoT devices. With nearly 300,000 plugins available, Nessus is highly adaptable.</p>
<p>Nessus Essentials Plus costs $199 per year. Nessus Professional and Expert are available as licenses starting at $4,790 and $6,790 per year, respectively, plus $400 for advanced support subscriptions.</p>
</section>
<section class=”section main-article-chapter” data-menu-title=”OpenVAS”>
<h2 class=”section-title”><i class=”icon” data-icon=”1″></i>OpenVAS</h2>
<p>Open Vulnerability Assessment Scanner is an open source vulnerability scanner maintained by vulnerability management company Greenbone and a community of researchers and developers. OpenVAS launched in 2006 based on open source Nessus code, so the tool offers some of the same scanning and customization capabilities as Nessus products.</p>
<p>OpenVAS is available as a free download. Greenbone also sells OpenVAS Basic as a hardware appliance and a virtual instance with added capabilities beyond the free version, as well as OpenVAS Enterprise feed, which offers extended coverage. Contact Greenbone for
[…]
Content was cut in order to protect the source.Please visit the source for the rest of the article.
Read the original article: