Le 19/10/2014 09:27, Rafał Radecki a écrit :
Hi All :)What resources or tools do you use for server hardening/checking servers' security? I currently am checking Nessus, it looks good :) I found some info also about Bastille but it seems to be dead. Which other tools do you recommend?I am thinking about applying some common sense security rules through puppet and then use Nessus to check servers. Can you recommend a different approach?Thanks for all help :) BR, Rafal.
Hi,Like you, Nessus is my core's app. for checking security of services on a box but I think Nmap and Its script ability can help you in the task. You can check out Metasploit too, a security framework used to exploit/check vulnerabilities for real.
Kind regards,