The process of detecting and characterizing security holes from the computer systems, computer network or may be from applications is called as Vulnerability Assessment.
there are following some real examples of Vulnerability.
1)misconfiguration of components in Network Systems.
2)detection Errors in Operating system.
3)Security holes in application plugins.
4)ambiguity in the product.
3)Runtimes issues of applications.while Vulnerability Assessment process if Vulnerability is found, then we must have to recover this Vulnerability issue, but for that many organizations have its own separate team teams like Computer Emergency Readiness Team or Vulnerability Assessment team is responsible for manage this.
list of vulnerability assessment tools
8)Retina CS Community
9)Microsoft Baseline Security Analyzer
10)Secunia Personal Software Inspector
Best Vulnerability Assessment Tools
OpenVAS is one of the best Vulnerability Assessment tools.its name suggests it is open sources.OpenVAS not only scan Vulnerability issues but also vulnerability management .
-it’s free of cost to use and licensed under GNU General Public License.
-OS[Operating ] Compatibility.it supports many operating systems
-OpenVAS updated his scan engine with these network Vulnerability test on the regular basis.
-OpenVAS scanner is a complete vulnerability assessment tool that is used to spot issues related to computer servers and device connected to a network.
visit http://www.openvas.org/ here or download and use.
Nexpose Community is another great Vulnerability Assessment Tool also it is an open-source and free to use.this tool is developed by Rapid7.this tool helps to check performance Vulnerability and another network scan
it automatically detects the new device in network and scan vulnerabilities.
it can be easily integrated with a framework.
it categorizes the risk in low, medium, and high scale.
it the exposure of vulnerabilities in real time and based on recent data.
Nikto is an another very admired open sources Vulnerability scanner tools for detecting Vulnerability from application network.
-it is used for carried out wide range test process on the server to scan various files or items.
-it checks server version and confirmed whether a server version is outdated.it also helps to check server scientific issue to confirm servers functioning ability.
-using this we can scan a number of multiple ports same server.basically its scan network protocols like HTTP, https, HTTP,etc….
it is used for test web servers in the least possible time.
Tripwire IP360 is an information technology company for famous security configuration mgmt products.
-it is worlds fattest vulnerability assessment solution used by various companies
Tripwire Inc provides the best solution for vulnerability managaemnts.it is an information technology company which is famous in the market for its security configuration management products.Tripwire Inc have “Tripwire IP360″ it is main vulnerability management tool. most if the company’s use ” Tripwire IP360″ for security management and assessment.its enables to risk managements and assessments with multiple processes of the business.
“ripwire IP360” gives you low bandwidth solution for vulnerability &risk managemnt, non-disturbing, and agentless network profiling