ตัวอย่างทูลที่นิยมใช้ในการตรวจสอบช่องโหว่ (Vulnerability Scanners) อาทิ เช่น
1. Nessus (http://www.nessus.org)
Nessus is a proprietary comprehensive vulnerability scanner which is developed by Tenable Network Security.
2. OpenVAS (http://www.openvas.org)
OpenVAS is a framework of several services and tools offering a comprehensive and powerful vulnerability scanning and vulnerability management solution.
3. Nexpose (http://www.rapid7.com/products/nexpose/)
Rapid7 Nexpose is a vulnerability scanner which aims to support the entire vulnerability management lifecycle, including discovery, detection, verification, risk .
4. GFI LanGuard (http://www.gfi.com/products-and-solutions/network-security-solutions/gfi...)
GFI LanGuard network vulnerability scanner and patch management software performs over 50000 vulnerability assessments to discover threats early.
5. Nmap (http://nmap.org/)
Nmap (“Network Mapper”) is an open source tool for network exploration and security auditing. It was designed to rapidly scan large networks, although it works.
6. Retina (http://www.beyondtrust.com/Products/RetinaNetworkSecurityScanner/)
Retina Network Security
7. SQLMap (http://sqlmap.org/)
sqlmap: automatic SQL injection and database takeover tool
8. SAINT (http://www.saintcorporation.com/solutions/vulnerabilityScan.html)
SAINT Corporation offers vulnerability management products and services including vulnerability assessment and penetration testing.
9. x5s (http://xss.codeplex.com)
test encodings and character transformations to find XSS hotspots
10. Microsoft Baseline Security Analyzer (MBSA) (http://www.microsoft.com/en-us/download/details.aspx?id=7558)
Microsoft Baseline Security Analyzer (MBSA) is a software tool released by Microsoft to determine security state by assessing missing security updates and
11. Core Impact (http://www.coresecurity.com/core-impact-pro)
Core Impact Pro offers commercial-grade vulnerability exploits you can trust. Find recent exploits, how they work & all about Core Security exploits.
12. QualysGuard (https://www.qualys.com/enterprises/qualysguard/vulnerability-management/)
Qualys Vulnerability Management (VM) automates the lifecycle of network auditing and vulnerability management across the enterprise,
13. Secunia PSI (http://secunia.com/vulnerability_scanning/)
Secunia PSI is a software monitoring utility that will periodically scan your computer's applications and cross-check the installed version with a..
14. Nipper (https://www.titania.com/nipperstudio)
The First Tool Web vulnerability scanner, In Android environment (developing iOS version), this vulnerability scanner was focused for .
15. hackertarget (http://hackertarget.com)
Online Vulnerability Scanners and Port Scans
(c) SysAdmin Knowledg
March 18, 2015