Re: [Full-disclosure] Vulnerability/Penetration Testing Tools

Alright,
    I am well aware of the glory of self education but am still 
interested in learning what tools exist to date that do this type of 
automated work.

-Adriel

-----Original Message-----
From: Michael Holstein <michael.holstein@csuohio.edu>
To: full-disclosure@lists.grok.org.uk
Sent: Thu, 19 Jan 2006 13:57:10 -0500
Subject: Re: [Full-disclosure] Vulnerability/Penetration Testing Tools

 > Again... cheaper than core impact... but not free...

 Get your employer to reimburse the purchase of a bunch of O'Riley 
books from Amazon and learn Perl/Python yourself. It's amazing how fast 
the brain absorbs information when you're sufficiently motivated.

 Nessus is easily scriptable, and with what's on CPAN, it's trivial to 
get nessus data into MySQL and report against it. Integration with 
Metaspolit is also trivial (as Metasploit modules are all in Perl).

Remember the old addage ... "teach a man to fish...".

~Mike.
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/


________________________________________________________________________
Check Out the new free AIM(R) Mail -- 2 GB of storage and 
industry-leading spam and email virus protection.

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/