2009/10/21 Mike Mestnik <che...@visi.com>: > Are there any applications or projects to provide this *badly needed > service? I'm willing to assist in using or putting together an nmap > type applications that scans for known vulnerabilities and attempts to > make use of them for security awareness and _,*"prof"*,_ of concept > means. > > Rant: > * Too often are PCI compliance testings coming up with false positives > based on server provided version data. No matter how many times it's > spelled out that "These are to be used by authorized/allowed > applications(to discover usable features or avoid version conflicts) > and not by malicious applications.", there is always some one who is > happy for me to change(With the approval of BOFH) the reported version > to 0.0.0. > > > -- > To UNSUBSCRIBE, email to debian-security-requ...@lists.debian.org > with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org > >
You should try Backtrack http://www.remote-exploit.org/backtrack.html Bye -- Matteo Filippetto -- To UNSUBSCRIBE, email to debian-security-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
