Which Online Firewall Scanner do you like best?

Which Online Firewall Scanner do you like best? and Why?

~Multiple choices allowed.
~No Closed date.
~Please post your selection and a brief description why.
~How often do you test your firewall, if at all?

Links for Scanners:

Sheilds Up
PC Flank
Sygate SOS
Security Metrics
Symantec


Thanks

dog -

 

Hi All,

My choices are:

• GRC Sheilds Up
• PC Flank
• Sygate SOS

• Sheilds Up - the speed of GRC's tests, also like the user defined probes
• PC Flank - the exploits test
• Sygate SOS - good all round port scanner, with a few different scans

I test my firewall every time I log on my on demand ADSL connection ... I like my NPF (it hasn't let me down yet) but it has failed to properly load up more than once ... and I still haven't purchased a router, but it's on the list.

dog -

 

Well i guess it would be Grc.com, because like you said, it seems pretty quick and other ports can be checked as well. Also Grc was my first time, and you never forget your first.

 

GRC is number 1 because it is fast, accurate and precise.
Sygate SOS is also not bad, very accurate, but could be a bit faster.
Symantec's security check is satisfactory.

 

well.. I like GRC; BBR and Blackcode sites the best...

give blackcode a try... very impressive...


Blackcode: http://www.blackcode.com/scan/index.php
HackerWhacker: http://hackerwhacker.com/newindex.dyn
AuditMyPC.com: http://www.auditmypc.com/freescan/prefcan.asp
Broadband Reports.com http://www.dslreports.com/scan/
Computer Cops Security Professionals: http://www.computercops.biz/index.php
HackerWatch.org: http://www.hackerwatch.org/probe/
Security Space.com: http://www.securityspace.com/sspace/index.html
PC Flank Complete Check: http://www.pcflank.com/
PCPitStop Checks/TuneUp: http://pcpitstop.com/
Qualys' Free Browser Checkup: http://browsercheck.qualys.com/
Sygate Online Services: http://scan.sygate.com/
Steve Gibons's "ShieldsUP" [GRC-Gibson Research Centre]: https://grc.com/x/ne.dll?bh0bkyd2 OR http://grc.com


taken from my Lists of Tests/etc.

https://www.wilderssecurity.com/showthread.php?t=6341

 

BLackcode scans ports from 1 up....

takes a while, but worth it..

CLOSED is the goal here.... [some sites say CLOSED, others STEALTH]

TAS

 

Hi Tas,

Thanks for the list of scanners ... I had seen your list of list before, and forgot all about it ... trying the Blackcode scan now ... you're right about slow ... 21mins total 13mins phase 1 and 8mins phase 2 ... thankfully phase 2 is much quicker ... really nice scanner though

I bookmarked those scanners this time ... so they don't vanish from my memory, again ... LOL

Thanks again.

dog -

 

No probs dog...

That first pic I posted does the Ports 1-1000...

Now, the second part Phase 2 is generally what takes the longest.. as it scans the following ports of known trojan entry. [although I noticed you said it was quicker]

My scan just took around 15 mins total including Phase 2. If you still have the second window open and says still scanning, go back to the first window, you may see the Message that it's scanned and no ports Open, but not the results just yet. [I had none open of course].

These are the Ports it scannedin Phase 2

 

Shields up is the one I go to most, but I' think it's useful to try several -I also rely on Sygate.

By the way, there was a poll on this subject back in November:

https://www.wilderssecurity.com/showthread.php?t=15280

 

Hi All,

@Tas - ran it again same type of results time wise ... but a little quicker this time ... maybe there was a delay on route (one of the hops)? (1) approx 9 1/2 min. (2) 6 mins ... all blocked of course. X2

@ optigrab - sorry, I never saw your thread ... anyway with new members all the time ... it's a valid thread (both) ... important security wise ... so the more info the better on the subject (two threads) ... I tend not to reply to post older than two months ... seems kinda like a closed issue to me. I would prefer to post in an active thread ... No harm ment ... thanks for the link, lots of useful info there! ...

Maybe a mod could combine the two threads ... ?

Sorry again, optigrab, no harm intented. Thanks for pointing it out, and providing a link to that info. (especially useful for those that don't delve to far back in the forums.) More info for all.

Thanks

dog -

 

I like grc. But isn't blackcode.com a hacker/trojan site

 

GRC, Sygate and Symantec.

Just to test the ol router.

 

I like SecuritySpace, not just a FW scanner.


3. Vulnerability Category Summary
The vulnerability category summary shows how the various issues that were reported are distributed across the different test categories.

Category High Med Low Other
CGI abuses
Windows
Denial of Service
Gain root remotely
General 1
Misc. 1
FTP
Gain a shell remotely
Remote file access
SMTP problems
Backdoors
CISCO
RPC
Default Unix Accounts
Firewalls
Windows : User management
Useless services
Peer-To-Peer File Sharing
SNMP
Settings
Finger abuses
Netware
Port scanners
NIS
Totals: 0 0 1 1

 

Sorry,

Should be like this

 

No sweat Dog! "More info for all" is definitely the proper philosophy The poll results (graph) for the November thread aren't visible anymore since the switch to the new vBulletin BB, so a new thread is appropriate.

Cheers
Optigrab

 

The security scan is pretty good, and they seem to position themselves as a "security site". I haven't seen all of their content, but I can assure you it's safe to lurk about the site to judge for yourself.

 

Just got back to this, sorry. But I see Optigrab has answered. [Thanks ]

Well, I guess it's up to what the individual deems it to be. I have seen couple of quotes before a long time back saying it was, etc. but as opti already quoted, the scan is pretty good.

Just because it "may" be a hacker site, does not automatically make you at risk just 'visiting' it. Remember, those same hackers have to visit their own site, they also have the same protection as you do. AV/AT/FW, etc. etc. so it makes no sense to have a site automatically trying to do damage to your system.

To be honest I have never browsed thru it, discovered the scan a long time ago and been there many many times. FW logs prove it's being scanned, and rejected, just like any other site.

GRC.com was the *very first* taste of security for me when I started using PC's a good while back, and to me I still love it very much, but you have to go and venture out to more than one to test.

Try that Quayls browser test I listed also.

I can guarantee you, I have been to MANY 'security scan sites' way more than I've ever listed above, but those to me were the better among them.

Security can be likened to the old proverb: Never put all your eggs in one basket. Layered defence, etc.

Actually I belong to a Hacker/Trojan Authors Forum, yep, I joined solely to cruise and see just how they operate, way beyond my expertise, and those little buggers are in the 10-25 age bracket mainly. [NO link]. It's an eye opener.

They really do 'test' their trojans, etc. amongst themselves. Just like *beta testers* I myself have dl'd some of them. Naturally I NEVER .exe the trojan itself, just scanned the dl. [All detected of the very few I did ].

Someone I know, dedicates a lot of time doing the same and submits them to certain vendors for adding to defs.

They even have 'versions' of each step of the development, telling how to immunise themselves against the new version, + giving step by step descriptions on how to "personalise" a trojan to suit their specific needs.

Fascinating, in a dark kind of way. I am sure that those same hackers join some security forums to learn what WE are up to. Quid pro quo but it happens.

.... sorry I digress, back OT.

Trying several scan sites will not only test your system, but you may learn something along the way, by trying such diverse sites. It's also good not to just test that your FW is protecting you, but to do some browser tests as after all, it's your browser doing the walking thru the minefields.

Cheers, TAS

 

That sounds like a good idea Tassie_Devils. Go to the hacker sites, and spy on them, see what their up to. Then report any new findings. Kinda like being a spy for the CIA or something. Sounds a bit risky, but could be very helpful to us all.

 

How many ports does a computer have altogether? From port 0 to port 60000 plus?

 

I'm almost positive it's 65,535 ports.

 

yep.... correct... 65535

and out of curiosity, would you like to see how many can be used by RATS [trojans]

TAS

 

i like the shields up Scan. its fast and good

 

GRC.com. all service ports. I think that is what it says.

 

Out of the firewalls I've tried I like Sygate SOS the best. Haven't had any problems with it yet.