Which Online Firewall Scanner do you like best? and Why? ~Multiple choices allowed. ~No Closed date. ~Please post your selection and a brief description why. ~How often do you test your firewall, if at all? Links for Scanners: Sheilds Up PC Flank Sygate SOS Security Metrics Symantec Thanks dog -
Hi All, My choices are: GRC Sheilds Up PC Flank Sygate SOS Sheilds Up - the speed of GRC's tests, also like the user defined probes PC Flank - the exploits test Sygate SOS - good all round port scanner, with a few different scans I test my firewall every time I log on my on demand ADSL connection ... I like my NPF (it hasn't let me down yet) but it has failed to properly load up more than once ... and I still haven't purchased a router, but it's on the list. dog -
Well i guess it would be Grc.com, because like you said, it seems pretty quick and other ports can be checked as well. Also Grc was my first time, and you never forget your first.
GRC is number 1 because it is fast, accurate and precise. Sygate SOS is also not bad, very accurate, but could be a bit faster. Symantec's security check is satisfactory.
well.. I like GRC; BBR and Blackcode sites the best... give blackcode a try... very impressive... Blackcode: http://www.blackcode.com/scan/index.php HackerWhacker: http://hackerwhacker.com/newindex.dyn AuditMyPC.com: http://www.auditmypc.com/freescan/prefcan.asp Broadband Reports.com http://www.dslreports.com/scan/ Computer Cops Security Professionals: http://www.computercops.biz/index.php HackerWatch.org: http://www.hackerwatch.org/probe/ Security Space.com: http://www.securityspace.com/sspace/index.html PC Flank Complete Check: http://www.pcflank.com/ PCPitStop Checks/TuneUp: http://pcpitstop.com/ Qualys' Free Browser Checkup: http://browsercheck.qualys.com/ Sygate Online Services: http://scan.sygate.com/ Steve Gibons's "ShieldsUP" [GRC-Gibson Research Centre]: https://grc.com/x/ne.dll?bh0bkyd2 OR http://grc.com taken from my Lists of Tests/etc. https://www.wilderssecurity.com/showthread.php?t=6341
BLackcode scans ports from 1 up.... takes a while, but worth it.. CLOSED is the goal here.... [some sites say CLOSED, others STEALTH] TAS
Hi Tas, Thanks for the list of scanners ... I had seen your list of list before, and forgot all about it ... trying the Blackcode scan now ... you're right about slow ... 21mins total 13mins phase 1 and 8mins phase 2 ... thankfully phase 2 is much quicker ... really nice scanner though I bookmarked those scanners this time ... so they don't vanish from my memory, again ... LOL Thanks again. dog -
No probs dog... That first pic I posted does the Ports 1-1000... Now, the second part Phase 2 is generally what takes the longest.. as it scans the following ports of known trojan entry. [although I noticed you said it was quicker] My scan just took around 15 mins total including Phase 2. If you still have the second window open and says still scanning, go back to the first window, you may see the Message that it's scanned and no ports Open, but not the results just yet. [I had none open of course]. These are the Ports it scannedin Phase 2
Shields up is the one I go to most, but I' think it's useful to try several -I also rely on Sygate. By the way, there was a poll on this subject back in November: https://www.wilderssecurity.com/showthread.php?t=15280
Hi All, @Tas - ran it again same type of results time wise ... but a little quicker this time ... maybe there was a delay on route (one of the hops)? (1) approx 9 1/2 min. (2) 6 mins ... all blocked of course. X2 @ optigrab - sorry, I never saw your thread ... anyway with new members all the time ... it's a valid thread (both) ... important security wise ... so the more info the better on the subject (two threads) ... I tend not to reply to post older than two months ... seems kinda like a closed issue to me. I would prefer to post in an active thread ... No harm ment ... thanks for the link, lots of useful info there! ... Maybe a mod could combine the two threads ... ? Sorry again, optigrab, no harm intented. Thanks for pointing it out, and providing a link to that info. (especially useful for those that don't delve to far back in the forums.) More info for all. Thanks dog -
I like SecuritySpace, not just a FW scanner. 3. Vulnerability Category Summary The vulnerability category summary shows how the various issues that were reported are distributed across the different test categories. Category High Med Low Other CGI abuses Windows Denial of Service Gain root remotely General 1 Misc. 1 FTP Gain a shell remotely Remote file access SMTP problems Backdoors CISCO RPC Default Unix Accounts Firewalls Windows : User management Useless services Peer-To-Peer File Sharing SNMP Settings Finger abuses Netware Port scanners NIS Totals: 0 0 1 1
No sweat Dog! "More info for all" is definitely the proper philosophy The poll results (graph) for the November thread aren't visible anymore since the switch to the new vBulletin BB, so a new thread is appropriate. Cheers Optigrab
The security scan is pretty good, and they seem to position themselves as a "security site". I haven't seen all of their content, but I can assure you it's safe to lurk about the site to judge for yourself.
Just got back to this, sorry. But I see Optigrab has answered. [Thanks ] Well, I guess it's up to what the individual deems it to be. I have seen couple of quotes before a long time back saying it was, etc. but as opti already quoted, the scan is pretty good. Just because it "may" be a hacker site, does not automatically make you at risk just 'visiting' it. Remember, those same hackers have to visit their own site, they also have the same protection as you do. AV/AT/FW, etc. etc. so it makes no sense to have a site automatically trying to do damage to your system. To be honest I have never browsed thru it, discovered the scan a long time ago and been there many many times. FW logs prove it's being scanned, and rejected, just like any other site. GRC.com was the *very first* taste of security for me when I started using PC's a good while back, and to me I still love it very much, but you have to go and venture out to more than one to test. Try that Quayls browser test I listed also. I can guarantee you, I have been to MANY 'security scan sites' way more than I've ever listed above, but those to me were the better among them. Security can be likened to the old proverb: Never put all your eggs in one basket. Layered defence, etc. Actually I belong to a Hacker/Trojan Authors Forum, yep, I joined solely to cruise and see just how they operate, way beyond my expertise, and those little buggers are in the 10-25 age bracket mainly. [NO link]. It's an eye opener. They really do 'test' their trojans, etc. amongst themselves. Just like *beta testers* I myself have dl'd some of them. Naturally I NEVER .exe the trojan itself, just scanned the dl. [All detected of the very few I did ]. Someone I know, dedicates a lot of time doing the same and submits them to certain vendors for adding to defs. They even have 'versions' of each step of the development, telling how to immunise themselves against the new version, + giving step by step descriptions on how to "personalise" a trojan to suit their specific needs. Fascinating, in a dark kind of way. I am sure that those same hackers join some security forums to learn what WE are up to. Quid pro quo but it happens. .... sorry I digress, back OT. Trying several scan sites will not only test your system, but you may learn something along the way, by trying such diverse sites. It's also good not to just test that your FW is protecting you, but to do some browser tests as after all, it's your browser doing the walking thru the minefields. Cheers, TAS
That sounds like a good idea Tassie_Devils. Go to the hacker sites, and spy on them, see what their up to. Then report any new findings. Kinda like being a spy for the CIA or something. Sounds a bit risky, but could be very helpful to us all.
yep.... correct... 65535 and out of curiosity, would you like to see how many can be used by RATS [trojans] TAS