Comments on: Tenable Passive Vulnerability Scanner - IDS / Sniffer / Scanner ? http://www.dragoslungu.com/2007/06/20/tenable-passive-vulnerability-scanner-ids-sniffer-scanner/ Security Tools and Tips Wed, 20 Aug 2008 14:13:30 +0000 http://wordpress.org/?v=2.2.2 By: Jordan http://www.dragoslungu.com/2007/06/20/tenable-passive-vulnerability-scanner-ids-sniffer-scanner/#comment-243 Jordan Wed, 20 Jun 2007 14:12:24 +0000 http://www.dragoslungu.com/2007/06/20/tenable-passive-vulnerability-scanner-ids-sniffer-scanner/#comment-243 I've always been torn as to whether I'm comfortable using the term "scanner" for passive technologies and I can never quite make up my mind. I understand Tenable's perspective that it's not just a sniffer or IDS and it really is relying on logic that much more closely resembles an active scanner, but it also will never, ever, be able to catch hosts that just aren't talking. Of course, active scanners do diddly squat for client-vulns without credentials, so there definitely are advantages to each. I’ve always been torn as to whether I’m comfortable using the term “scanner” for passive technologies and I can never quite make up my mind.

I understand Tenable’s perspective that it’s not just a sniffer or IDS and it really is relying on logic that much more closely resembles an active scanner, but it also will never, ever, be able to catch hosts that just aren’t talking. Of course, active scanners do diddly squat for client-vulns without credentials, so there definitely are advantages to each.

]]>