Essential Tools for Modern Vulnerability Management
Absolutely, staying up-to-date with the ever-changing threat landscape is crucial in the field of Information Security, especially when you’re specialising in vulnerability management. Here’s a breakdown of the tools and sites I rely on to keep my finger on the pulse of the latest vulnerabilities, exploits, and threat intelligence.
News & Blogs
1. The Register:
A great source for breaking news in the tech world, including security vulnerabilities and incidents.
Brian Krebs offers deep dives into the latest security incidents and vulnerabilities.
3. Dark Reading:
This site provides a wide range of articles, webcasts, and research related to cybersecurity.
Threat Intelligence Platforms
1. Recorded Future: Offers real-time threat intelligence feeds that can be integrated into various security tools.
2. ThreatConnect: A comprehensive threat intelligence platform that helps in aggregating and correlating data.
Vulnerability Databases
1. NIST’s National Vulnerability Database (NVD): The U.S. government’s repository of standards-based vulnerability management data.
2. CVE Details: A more user-friendly interface for browsing CVEs, with added search and filter options.
3. Exploit Database: A comprehensive database of exploits and vulnerabilities.
Social Media & Forums
1. X (Formerly Twitter): Following key infosec professionals and hashtags like #InfoSec, #CyberSecurity, and #VulnerabilityManagement.
2. Reddit’s r/netsec: A community-driven platform where the latest vulnerabilities and exploits are often discussed.
Scanners & Assessment Tools
1. Qualys: An industry-leading vulnerability management tool that offers cloud-based scanning. It’s particularly useful for large enterprises with complex networks.
2. Nessus: Another top-tier vulnerability scanner, Nessus is known for its extensive plugin library and active community support.
3. OpenVAS: A free and open-source vulnerability scanner that’s a good alternative for smaller organisations or individual use.
Email Newsletters & Alerts
1. SANS NewsBites: A bi-weekly email newsletter that summarises the top stories in cybersecurity.
2. US-CERT Alerts: Official alerts from the United States Computer Emergency Readiness Team.
Podcasts & Webinars
1. Security Now: A weekly podcast that covers the latest trends and updates in the security landscape.
2. The CyberWire: Daily cybersecurity news and interviews with industry experts.
3. ISC Daily Podcast: Another must listen to daily podcast that discusses the latest developments in InfoSec concerns.
Vendor & Product Updates
1. Vendor Websites: Always keep an eye on updates and patches from vendors of the products you’re using.(Patch Tuesdays anybody?)
2. RSS Feeds: Many vendors offer RSS feeds for their security bulletins, which can be integrated into your threat intelligence platform or RSS reader.
By using a combination of these resources, I ensure that I’m always in the loop about the latest vulnerabilities and threats. This enables me to take proactive measures to secure the networks and systems I’m responsible for, thereby reducing the risk of a security incident.