Vulnerability assessment tools

Core Security Technologies Core Impact v12

Core Security Technologies Core Impact v12

Strengths: Flexible, easy-to-use tool with lots of capability at all levels of use. Weaknessses: None that we found.
eEye Digital Security Retina CS

eEye Digital Security Retina CS

Strengths: Full featured and easy-to-use vulnerability management. Weaknesses: None that we found.
Fortinet FortiScan-3000C

Fortinet FortiScan-3000C

Stregths: Granular control over assets through administrative domains. Weaknesses: Can be expensive for some environments.
GFI LanGuard 2011

GFI LanGuard 2011

Strengths: Vulnerability assessment tool with many other features. Weaknesses: None that we found.
Lumension Scan

Lumension Scan

Strengths: Powerful scanning engine with an easy-to-use interface. Weaknesses: Lacks a lot of features.
McAfee Vulnerability Manager

McAfee Vulnerability Manager

Strengths: Compliance scanning and risk-based correlation ability. Weaknesses: Easy to misconfigure if setup procedures are not followed correctly.
netVigilance Internal Scan - Cloud

netVigilance Internal Scan - Cloud

Strengths: Cloud-based full scanning with no overhead. Weaknesses: None that we found.
Rapid7 Nexpose Enterprise Edition

Rapid7 Nexpose Enterprise Edition

Strengths: Vulnerability scanning, along with many other features for full vulnerability management. Weaknesses: Can be costly for some organizations.
Saintscanner and Saintexploit

Saintscanner and Saintexploit

Strengths: Solid set of vulnerability management tools. Weaknesses: None that we found.
SecPoint Penetrator

SecPoint Penetrator

Strengths: Vulnerability scanning, penetration and Wi-Fi auditing in an easy-to-use appliance. Weaknesses: Very little built-in compliance ability.
Secunia Corporate Software Inspector (CSI)

Secunia Corporate Software Inspector (CSI)

Strengths: Application vulnerability scanning with an always updated backend. Weaknesses: Would like to see integrated compliance-based scanning.
Tenable Network Security Nessus ProfessionalFeed

Tenable Network Security Nessus ProfessionalFeed

Strengths: Solid vulnerability scanning tool that is lightweight and easy to use. Weaknesses: Requires Tenable Security Center to provide full vulnerability management capability.
Zoho ManageEngine Security Manager Plus

Zoho ManageEngine Security Manager Plus

Strengths: Full vulnerability maangement and patch management platform in an easy-to-use application. Weaknesses: Weak documentation and can be expensive as an ongoing cost.

The SC Magazine Labs Team tested some of the top vulnerability assessment tools on the market, and found that the new trend is a move toward management as opposed to evaluation.

Sign up to our newsletters

POLL