OpenVAS Reviews

Security Headers Reviews

OpenVAS mentions (6)

• Link CVE to installed applications?

  Otherwise your on the right path checkout the open source Greenbones OpenVAS (this was Nessus before they closed source and became corporate) or Project Discovery Nuclei. Source: about 1 year ago

• What should I be doing as the sole sysadmin for a company to keep up with security?

  Personally, I was lucky enough to get a license to Nessus for my own scanning, however you can use OpenVAS for some free to scan. Scanners aren't 100% correct no matter where you go but it'll give you some things to look at. OpenVAS. Source: about 2 years ago

• Wanting to protect my own homelab

  Https://openvas.org/ OpenVAS is free and fairly capable. It might struggle cpu on a pi... Might need quite a bit of ram, but I'm hoping you've got some beefier kit in your stack. Source: over 2 years ago

• Free nessus equivalent?

  Maybe OpenVAS would fill the bill. It’s been on my list of things to check out. Source: over 2 years ago

• Internal Vulnerability Scanning

  OpenVAS - https://openvas.org Try it first, its free, just download a prebuilt VM and you're off and running. I found it valuable for my clients. Source: almost 3 years ago

Security Headers mentions (57)

• Why is text of sumissions in low-contrast grey on HN?

  There are so many accessibility issues on Hacker News! Ways to avoid the same mistakes? Easy... 1 - Make sure everyone involved from designers to developers to content creators to testers to... Whatever your village has in it... Has knowledge of WCAG. (New standards out a few weeks ago!) WCAG is the de facto law of the land now, and businesses are liable from damages if they don't make efforts to ensure all users... - Source: Hacker News / 9 months ago

• Show HN: Year old launches SaaS platform today. Seeks feedback

  Few minor accessibility issues. https://wave.webaim.org/report#/https://propbox.co/ Bunch of front-end security issues. Some of these are trivial, but also... Why not just knock them out? https://securityheaders.com/?q=https%3A%2F%2Fpropbox.co%2F&followRedirects=on The Privacy page is a nightmare, as others have pointed out. Why do this? Won't work with screen readers, won't let users copy text... it's bad.... - Source: Hacker News / about 1 year ago

• Hacker News evading criticism by selectively adding noreferrer to certain links

  FWIW HN sets the Referrer-Policy header [1] to origin [2] but I have no idea how many browsers honor that. [1] - https://scotthelme.co.uk/a-new-security-header-referrer-policy/ [2] - https://securityheaders.com/?q=https%3A%2F%2Fnews.ycombinator.com%2F&hide=on&followRedirects=on. - Source: Hacker News / about 1 year ago

• Security headers - what they are and how to use them 🔒

  I was recently tasked with improving the security rating on one of our websites. This involved a couple of things but the thing I want to focus on in this post is security headers. We scanned the site here and were initially given a rating of 'E'. Not good. So one of the recommendations was to add security headers which are headers contained in the HTTP response and can provide various different security benefits,... - Source: dev.to / about 1 year ago

• Google No Longer Automatically Indexes Websites – WTF?

  Google has to know about the site before it can index it. Set up the sitemap, then link the sitemap in from Google's Search Console Tools, and install Google Analytics. This will help Google pick up that your site exists. Make sure your robots.txt file is configured to allow crawlers. Make sure your pages aren't inadvertently NOINDEX'd. SEO isn't as relevant as it used to be, but all this stuff should be part of... - Source: Hacker News / about 1 year ago