.

Remote fixing tool

<<

manju_salian

User avatar

Jr. Member
Jr. Member

Posts: 89

Joined: Mon Apr 09, 2007 1:31 am

Post Tue May 08, 2012 7:02 am

Remote fixing tool

Hi,
Since i am scaning with nessus tool more than 15000 machines on which i am finding more than 200+ different vulnerabilities. Since i filtered False positive i m finding nearlt 190 odd vulnerabilities.
Looking for some automate tools to fix the Nessus reported vulnerabilities remotely.

thanks in Advance
<<

dynamik

Recruiters
Recruiters

Posts: 1119

Joined: Sun Nov 09, 2008 11:00 am

Location: Mile High City

Post Tue May 08, 2012 7:26 am

Re: Remote fixing tool

Can you provide any more details, even at a high level (i.e. OS patches, client-side software, OS configuration, etc.)? The types of operating systems would help too since tools and techniques will likely differ between Windows and *nix. Any recommendations are going to depend a great deal on those details.
The day you stop learning is the day you start becoming obsolete.
<<

idr0p

Newbie
Newbie

Posts: 49

Joined: Fri Jun 17, 2011 8:46 pm

Post Tue May 08, 2012 6:23 pm

Re: Remote fixing tool

You can use SCCM to do patch management. There is also Dell Kace and other tools where a "agent" on the system will issue the updates accordingly.
GCIA GCIH GPEN GWAPT
Up Next: CISA CISSP
<<

manju_salian

User avatar

Jr. Member
Jr. Member

Posts: 89

Joined: Mon Apr 09, 2007 1:31 am

Post Wed May 09, 2012 6:18 am

Re: Remote fixing tool

Hi,
there are vulnerabilities related to settings as well, related to MS patches taken care by Remote deployment tool.
Pls find the attached for the details of vuln reported
Wondering for the setting issues.
<<

unicityd

User avatar

Full Member
Full Member

Posts: 170

Joined: Wed Sep 03, 2008 5:33 pm

Post Wed May 09, 2012 11:01 am

Re: Remote fixing tool

Most of those problems will need to be fixed manually.  The list you posted includes multiple applications on multiple operating systems.  There's no one script or tool that you can use to fix them all. 
BS in IT, CISSP, MS in IS Management (in progress)
<<

cd1zz

User avatar

Recruiters
Recruiters

Posts: 566

Joined: Sun Oct 03, 2010 9:01 pm

Post Wed May 09, 2012 1:32 pm

Re: Remote fixing tool

Sounds like you just need centralized patch management. A lot of those vulns are from missing patches. You might just have a few separate ones, like centralized YUM for example.
<<

Triban

User avatar

Hero Member
Hero Member

Posts: 620

Joined: Fri Feb 19, 2010 4:17 pm

Post Fri May 11, 2012 9:27 am

Re: Remote fixing tool

How big is the environment?  If it is under 3000 IPs then you can look at something like GFI LANguard, this does vulnerability scanning with patch management.  Supports multi-platform and 3rd party applications I believe (from last time I worked with it).  Another option is Dell Kace appliance.  I've worked with this as well.  This supports Mac, Linux and Windows.  along with support for 3rd parties, you can create custom install scripts for apps that may not be in their library.  Similar to using GPO but I found it to be much cleaner, and again, it supports multiple platforms.  I think they are even moving into mobile support for iPads and other types of tablet devices.  It works as a decent inventory tool as well.
Certs: GCWN
(@)Dewser

Return to Network Pen Testing

Who is online

Users browsing this forum: No registered users and 1 guest

cron
.
Powered by phpBB® Forum Software © phpBB Group.
Designed by ST Software