Looking at options for vulnerability scanners — which ones would be a good fit for a midsize software startup?

Security Strategy & RoadmapThreat & Vulnerability Management
2.1k viewscircle icon23 Comments
Sort by:
Global CIO in Consumer Goods3 years ago

Nessus is good solution for midsize organizations.  Does the job at affordable costs.

Executive Director, Enterprise Infrastructure & Cybersecurity in Finance (non-banking)3 years ago

Qualms, Nessus, Tenable 

Founder and CTO in Software3 years ago

Nessus. Simple, effective and good reporting.

CTO in Transportation3 years ago

Right now we are using Qualys and Wazuh. We are starting to look into Nuclei as well.

Information Security Manager in Software3 years ago

I recommend nessus and openvas 

Content you might like

Ransomware negotiator Retainer? Do you currently hold a retainer with a ransomware negotiator consulting firm? If so any recommendations?

Read More Comments

What would you rather have MBA or CISSP? Why?

MBA / Master's Degree72%

CISSP / Comparable Certification27%

We are on the cusp of conducting a pilot of AI tooling - we intend to use Gemini & CoPilot, providing training, guidance & policy to our user group.  Before we start we should conduct a risk assessment -  my question is: can you recommend a tool or template?

Read More Comments

What course(s) are you most looking forward to at the SANS Pen Test HackFest Summit and Training 2022?

Hacker Tools, Techniques, and Incident Handling26%

Cloud Penetration Testing50%

Enterprise Penetration Testing45%

Advanced Penetration Testing, Exploit Writing, and Ethical Hacking39%

Web App Penetration Testing and Ethical Hacking27%

Automating Information Security with Python20%

Defeating Advanced Adversaries - Purple Team Tactics & Kill Chain Defenses15%

Mobile Device Security and Ethical Hacking13%

Advanced Exploit Development for Penetration Testers14%

Cyber Deception - Attack Detection, Disruption and Active Defense7%

View Results

How are you addressing technical debt risk resulting from AI coding tools? Have you established specific processes to manage vulnerabilities in AI-generated code, and are you collaborating with software engineering or other teams using these tools?

Read More Comments