Software Alternatives & Reviews
Register | Login

OpenVAS VS Shodan

Compare OpenVAS VS Shodan and see what are their differences

ComplyCube
Verify your customers in under 15 seconds anywhere in the world with a cutting-edge SaaS & API platform for Identity Verification and AML/KYC compliance. featured
Contents:
  1. » Base Details
  2. » Videos
  3. » Reviews
  4. » Alternatives

OpenVAS logo OpenVAS

The Open Vulnerability Assessment System (OpenVAS) is a framework of several services and tools...

Shodan logo Shodan

Shodan is the world's first search engine for Internet-connected devices.
  • OpenVAS Landing page
    Landing page //
    2023-03-22
  • Shodan Landing page
    Landing page //
    2023-03-16

OpenVAS

Categories
  • Security
  • Web Application Security
  • Monitoring Tools
  • Cyber Security
Website openvas.org
Pricing URL-
Edit details

Shodan

Categories
  • Web Application Security
  • Security
  • Monitoring Tools
  • Cyber Security
Website shodan.io
Pricing URL Official Shodan Pricing
Edit details

OpenVAS videos

+ Add

How to find Exploits with OpenVAS

More videos:

  • Review - Vulnerability Analysis with OpenVAS | Scanning and Reconnaissance
  • Review - Vulnerability Identification and Remediation Cybrary Lab | Ep. 3 Kali Linux, OpenVAS, + more

Shodan videos

+ Add

Searching the Internet with Shodan (Seen in Mr. Robot)

More videos:

  • Review - Bestech Shodan Unboxing & First Impressions
  • Review - Bestech Shodan FULL Review

Category Popularity

0-100% (relative to OpenVAS and Shodan)

OpenVAS

Shodan

Security
51 51%
Security
49% 49
Web Application Security
49 49%
Web Application Security
51% 51
Monitoring Tools
43 43%
Monitoring Tools
57% 57
Security Monitoring
100 100%
Security Monitoring
0% 0

User comments

Share your experience with using OpenVAS and Shodan. For example, how are they different and which one is better?
Log in or Post with

Reviews

These are some of the external sources and on-site user reviews we've used to compare OpenVAS and Shodan

OpenVAS Reviews

Best Burp Suite Alternatives (Free and Paid) for 2023
The primary reason businesses use OpenVas is to perform comprehensive security testing of their IP addresses. This tool performs a port scan of an IP address to find any open services. Once listening services are found, they are tested for known vulnerabilities and misconfiguration using a large database of 53000 NVT checks. The results are compiled into a report that...
Source: www.softwaretestingmaterial.com
Burp suite alternatives
It is an open vulnerability assessment system is a software framework of services and tools offering vulnerability scanning and vulnerability assessment. The aim of OpenVAS protocol ia to be well documented to assist the developers. all products of OpenVAS are free, most components are licensed under the GNU, general public license. Its Plugins are written in NASL (Nessus...
Source: www.educba.com
10 Best Tenable Nessus Alternatives For 2021 [Updated List]
Verdict: OpenVAS is an open-source web application security scanner that will help you accurately detect vulnerabilities. It is easily configurable and can be tuned accordingly if you want to perform large-scale scans. Its use of updated data feeds makes it extremely efficient in detecting almost all types of vulnerabilities.
Source: www.softwaretestinghelp.com
Best Nessus Alternatives (Free and Paid) for 2021
OpenVAS receives updates daily, which broadens the vulnerability detection coverage. It also helps in risk assessment and suggests countermeasures when the vulnerabilities in an application or network is detected.
Source: www.softwaretestingmaterial.com

Shodan Reviews

We have no reviews of Shodan yet.
Be the first one to post

Social recommendations and mentions

Based on our record, Shodan seems to be a lot more popular than OpenVAS. While we know about 92 links to Shodan, we've tracked only 6 mentions of OpenVAS. We are tracking product recommendations and mentions on various public social media platforms and blogs. They can help you identify which product is more popular and what people think of it.

OpenVAS mentions (6)

  • Link CVE to installed applications?
    Otherwise your on the right path checkout the open source Greenbones OpenVAS (this was Nessus before they closed source and became corporate) or Project Discovery Nuclei. Source: about 1 year ago
  • What should I be doing as the sole sysadmin for a company to keep up with security?
    Personally, I was lucky enough to get a license to Nessus for my own scanning, however you can use OpenVAS for some free to scan. Scanners aren't 100% correct no matter where you go but it'll give you some things to look at. OpenVAS. Source: almost 2 years ago
  • Wanting to protect my own homelab
    Https://openvas.org/ OpenVAS is free and fairly capable. It might struggle cpu on a pi... Might need quite a bit of ram, but I'm hoping you've got some beefier kit in your stack. Source: about 2 years ago
  • Free nessus equivalent?
    Maybe OpenVAS would fill the bill. It’s been on my list of things to check out. Source: over 2 years ago
  • Internal Vulnerability Scanning
    OpenVAS - https://openvas.org Try it first, its free, just download a prebuilt VM and you're off and running. I found it valuable for my clients. Source: over 2 years ago
View more

Shodan mentions (92)

  • Introducing OSINT Template Engine: An open source OSINT Tool.
    Transform OSINT sources such as shodan, bgpview & urlscan into templates which you can use to query & store any and each of the API endpoints they provide. Source: 9 months ago
  • Some outgoing ports (e.g, port 22) are blocked
    I'm a little surprised you're asking this but as you don't know - if you set the rulebase correctly, you won't get hammered by "public". A lot of people (of course not people here) don't do that which is why shodan.io is full of servers with SSH exposed to the world. Source: 9 months ago
  • Does anyone want to vet this job opportunity?
    Eh, request a full demo before signing anything. If they make you buy before you can try, move on. Just be advised that data they collect from your site may be used in a database that puts a target on your back. Similar to how shodan.io works. I would probe them on how they handle customer data and if data is shared, partitioned, or isolated to ensure safety from a platform leak. They want to be a security... Source: 10 months ago
  • Security issue or coincidence?
    My network is being hit by China and Russia many times per hour. Make sure your firewall is up-to-date and not have any services available on the Internet (WAN). Look at shodan.io which shows you _everything_ is searched on the Internet. Source: 10 months ago
  • Onion sites crawling: Weird mass "HTTP/1.1 200 " HTTP status line returning?
    In the cases of nginx or apache, I suspect they may be acting as proxies to some backend that also chooses not to send a reason phrase back. Searching for "Reason Phrase" yields a number of bug reports/frameworks that may omit it, and shodan.io shows apache tomcat and a few other services/software that omit the code as well. Source: 11 months ago
View more

What are some alternatives?

When comparing OpenVAS and Shodan, you can also consider the following products

Nessus - Nessus Professional is a security platform designed for businesses who want to protect the security of themselves, their clients, and their customers.

Acunetix - Audit your website security and web applications for SQL injection, Cross site scripting and other...

Burp Suite - Burp Suite is an integrated platform for performing security testing of web applications.

Censys - Censys helps organizations, individuals, and researchers find and monitor every server on the Internet to reduce exposure and improve security.

Intruder - Intruder is a security monitoring platform for internet-facing systems.

Qualys - Qualys helps your business automate the full spectrum of auditing, compliance and protection of your IT systems and web applications.

Loading...