Which of the following tools scans the network systems for well-known and often exploited vulnerabilities?
A. Nessus
B. SAINT
C. SATAN
D. HPing
Explanation:
2 Comments on “Which of the following tools scans the network systems for well-known and often exploited vulnerabilities?”
Tetra-Grammaton-Clericsays:
Answer should be B. SAINT.
Rationale: The Security Administrator Tool for Analyzing Networks (SATAN, c. 1995) recognized several common networking-related security problems, and reported the problems without actually exploiting them. SATAN’s development ceased and was replaced by nmap, Nessus and SAINT.
The Security Administrator’s Integrated Network Tool (SAINT), on the other hand, is used for scanning computer networks for security vulnerabilities, and exploiting found vulnerabilities. SAINT provides support to the Security Content Automation Protocol (SCAP) specification and is also an approved scanning vendor with the Payment Card Industry (PCI). Very, very old and not in development versus new and currently in development. Your call.
Tetra-Grammaton-Clericsays:
P.S. The same can be said for Nessus. It’s currently in development and could be considered a valid correct answer. However, Nessus is proprietary (Tenable, Inc.) and the free version is quite hobbled.
Answer should be B. SAINT.
Rationale: The Security Administrator Tool for Analyzing Networks (SATAN, c. 1995) recognized several common networking-related security problems, and reported the problems without actually exploiting them. SATAN’s development ceased and was replaced by nmap, Nessus and SAINT.
The Security Administrator’s Integrated Network Tool (SAINT), on the other hand, is used for scanning computer networks for security vulnerabilities, and exploiting found vulnerabilities. SAINT provides support to the Security Content Automation Protocol (SCAP) specification and is also an approved scanning vendor with the Payment Card Industry (PCI). Very, very old and not in development versus new and currently in development. Your call.
P.S. The same can be said for Nessus. It’s currently in development and could be considered a valid correct answer. However, Nessus is proprietary (Tenable, Inc.) and the free version is quite hobbled.