runZero provides a single source of truth for exposure management across your total attack surface. Without requiring agents, authentication, or appliances, runZero delivers the most complete and accurate visibility into every asset and exposure across internal, external, IT, OT, IoT, mobile, and cloud environments — including uncovering unknown and unmanageable devices and broad classes of exposures that evade traditional tools. Founded in 2018 by HD Moore, runZero is trusted by more than 500 companies and 30,000 users worldwide to mitigate risks faster, meet compliance requirements, and improve overall security.
No features have been listed yet.
OpenVAS is ideal for small to medium-sized organizations looking for a cost-effective vulnerability scanning solution. It's also suitable for cybersecurity professionals who have the technical expertise to configure and maintain the scanner, as well as enthusiasts or students who are keen on learning more about vulnerability management using open-source tools.
runZero's answer:
runZero was founded in 2018 by HD Moore, well known in the industry as the creator of Metasploit. Over the last 25 years, HD has led penetration testing teams, helped build three successful security products, and pushed the boundaries of security research.
Throughout HD's storied career, one persistent fact stood out: organizations that care about security are still frequently compromised through assets they don’t know about. Even those who invest in mature security and IT programs still struggle to achieve full visibility into increasingly dynamic environments that endure constant change in assets, networks, and clouds. HD founded runZero to solve this problem and lay the foundation for the next generation of exposure management.
runZero's answer:
The runZero Platform is the only total attack surface and exposure management solution that combines powerful proprietary active scanning, native passive discovery, and API integrations. Unifying these discovery approaches makes our platform unique in its ability to discover and provide accurate, detailed fingerprinting for all IT, OT, and IoT devices across on-prem, cloud, and remote environments.
OpenVAS might be a bit more popular than runZero. We know about 6 links to it since March 2021 and only 5 links to runZero. We are tracking product recommendations and mentions on various public social media platforms and blogs. They can help you identify which product is more popular and what people think of it.
Otherwise your on the right path checkout the open source Greenbones OpenVAS (this was Nessus before they closed source and became corporate) or Project Discovery Nuclei. Source: about 2 years ago
Personally, I was lucky enough to get a license to Nessus for my own scanning, however you can use OpenVAS for some free to scan. Scanners aren't 100% correct no matter where you go but it'll give you some things to look at. OpenVAS. Source: about 3 years ago
Https://openvas.org/ OpenVAS is free and fairly capable. It might struggle cpu on a pi... Might need quite a bit of ram, but I'm hoping you've got some beefier kit in your stack. Source: over 3 years ago
Maybe OpenVAS would fill the bill. It’s been on my list of things to check out. Source: over 3 years ago
OpenVAS - https://openvas.org Try it first, its free, just download a prebuilt VM and you're off and running. I found it valuable for my clients. Source: almost 4 years ago
For network scanning / lite asset management I would recommend rumble.run. Source: about 3 years ago
Have you looked at https://rumble.run. Source: about 3 years ago
I would start by using https://rumble.run and do recon of all the devices and services. That will give you a better understanding of what is there and what it does. You can do it by hand but this will scan whatever network subnets you give it. Source: over 3 years ago
Rumble sounds like it might be a great fit. Source: over 3 years ago
I want to add rumble to the list (https://rumble.run). Source: over 3 years ago
Nessus - Nessus Professional is a security platform designed for businesses who want to protect the security of themselves, their clients, and their customers.
Sevco - Bring order to the chaos of your increasingly complex environment. Sevco’s real-time, multi-source cyber asset management platform helps you close security gaps, improve incident response and maintain continuous compliance.
Burp Suite - Burp Suite is an integrated platform for performing security testing of web applications.
Axonius - Cyber security asset management to see and secure all
Acunetix - Audit your website security and web applications for SQL injection, Cross site scripting and other...
Armis - The leading enterprise-class agentless device security platform to address the new threat landscape of unmanaged and IoT devices.