SecTeer VulnDetect & PatchPro Support Forum VulnDetect
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Download VulnDetect Installer
    • Login
    1. Home
    2. CTaylor
    3. Best
    C
    Offline
    • Profile
    • Following 0
    • Followers 0
    • Topics 6
    • Posts 17
    • Groups 0

    Posts

    Recent Best Controversial
    • Things I would look for in a new vulnerability detection program

      Most of my wish list comes from PSI v2

      • Categorize programs that have security vulnerabilities separately from those that are just bug fixes and feature updates. Best would be a simple filter. I could look at just security vulnerabilities normally, but would flip a switch to see bug fixes/ feature updates
      • scan entire system by default, not just installed programs ( in order to pick up things like portable apps, apps not yet installed, etc)
      • ability to scan only selected parts of the file system, should I choose to
      • ability to exclude anything signed by Microsoft (or any certificate of my choosing) based on the idea that Microsoft will make any fixed programs available through Windows Update anyway, so I don't really need to be bothered by a vulnerability detection program
      • group multiple instances of a vulnerable program in the listing and allow me to expand that section when I want
      • flag programs that have built-in auto-update capabilities. I could then choose to white-list them if I wanted to configure them properly to receive updates by themselves.
      • ability to see exactly where any program is located in the file system
      • ability to "white-list" or ignore any program I want
      • ability to send details of any program not currently being monitored to the vulnerability detection company for possible inclusion in an update
      • ability to query the vulnerability system to see if any program is included in their detection
      • option of having updates installed automatically.
      • when an update cannot be installed automatically, guidance in where to go / how to install the required update
      • report on programs with security vulnerabilities for which a patch is not yet available (zero-days). This should be categorized separately from other things (patches available or bugfix/feature updates.
      • automatic scanning once a week with ability to manually call for a scan
      • tray icon that has different states such as "scan not performed in xx days", "programs with zero-day vulnerability detected", "programs with feature updates / bug fixes available"
      posted in General Discussion
      C
      CTaylor