<div>Apparently you didn't read my post. You say you used to and that is the point. I am current Retina/REM customer and I have watched over the years the product go backwards not forwards. If you are still a customer like I am you should be thinking of finding a new solution. With the mass exodus of employees over the last year there is nothing of value left.
<br> </div>
<div>OK research? Yes, because I want to pay 50K to get details on a Yahoo IM vulnerability. No thank you. Services like frsirt, secunia and even symantec deep sight are years ahead and worth the investment.</div>
<div><br> </div>
<div><span class="gmail_quote">On 6/7/07, <b class="gmail_sendername">mOses</b> <<a href="mailto:trklisted@networksamurai.org">trklisted@networksamurai.org</a>> wrote:</span>
<blockquote class="gmail_quote" style="PADDING-LEFT: 1ex; MARGIN: 0px 0px 0px 0.8ex; BORDER-LEFT: #ccc 1px solid">I used did a VA analysis for a large company (38,000 nodes). I think the<br>following are excellent products to look at.
<br><br>Retina/REM (the ability to support 'dod' type environments by being able<br>to meet a 4 hour release cycle is important. Vulnerablity research is<br>pretty good at the company which is always a bonus, weather it meets up
<br>to par with everyone....you can't please everyone right?)<br><br>Nexpose (runs on linux and windows, also can do some metasploit type<br>work and also some spi dynamics type xss stuff.... if you really need to<br>
do that however purchase core/canvas or spi dynamics...though right?)<br><br>QualysGuard (an asp model... has its advantages such as everyone feeds<br>back data to one central point...like fingerprinting info...)<br><br>just my 2cents..
<br><br>mOses<br><a href="http://networksamurai.org">networksamurai.org</a><br><br>The Sun wrote:<br>> I have used Retina, Internet Scanner, GFI LNSS, and Nessus. Recently I<br>> evaluated QualysGuard and would recommend it over all the others.
<br>> I have heard that nCircle has a good VA product too.<br>><br>> The reporting is excellent. Plus the updates are very quick.<br>><br>><br>> ----- Original Message -----<br>> *From:* Jeff Moore <mailto:
<a href="mailto:cisoguy@gmail.com">cisoguy@gmail.com</a>><br>> *To:* <a href="mailto:dailydave@lists.immunitysec.com">dailydave@lists.immunitysec.com</a><br>> <mailto:<a href="mailto:dailydave@lists.immunitysec.com">
dailydave@lists.immunitysec.com</a>><br>> *Cc:* <a href="mailto:full-disclosure@lists.grok.co.uk">full-disclosure@lists.grok.co.uk</a><br>> <mailto:<a href="mailto:full-disclosure@lists.grok.co.uk">full-disclosure@lists.grok.co.uk
</a>> ;<br>> <a href="mailto:Higgins@DarkReading.com">Higgins@DarkReading.com</a> <mailto:<a href="mailto:Higgins@DarkReading.com">Higgins@DarkReading.com</a>><br>> *Sent:* Tuesday, June 05, 2007 9:14 PM
<br>> *Subject:* [Dailydave] VA Vendor Tip?<br>><br>> Does anyone on the list have a good recommendation for a VA<br>> software vendor? I am currently an eEye Retina customer but need<br>> to find a better solution with an actual development team in place
<br>> to support that solution. Is Tenable a good choice?<br>><br>><br>> <a href="http://www.darkreading.com/document.asp?doc_id=125486&WT.svl=news1_4">http://www.darkreading.com/document.asp?doc_id=125486&WT.svl=news1_4
</a><br>> <<a href="http://www.darkreading.com/document.asp?doc_id=125486&WT.svl=news1_4">http://www.darkreading.com/document.asp?doc_id=125486&WT.svl=news1_4</a>><br>><br>> "Preview represents the third "pillar" of eEye's business, says
<br>> Marc Maiffret, CTO and chief hacking officer for eEye, joining its<br>> flagship Retina Network Scanner and Blink endpoint security<br>> software. eEye made a name for itself after discovering, and
<br>> naming, the infamous CodeRed worm in 2001. "<br>><br>> Third pillar? The other two pillars are crumbling so they set up<br>> a third one to prop up what is left. As a Retina customer I am
<br>> very dissatisfied to see that eEye just fired the entire team<br>> responsible for Retina including guys like Ryan Permeh. They also<br>> cut their QA team which will make bad products even worse. Their
<br>> engineering staff is down to three or four guys and they want to<br>> jump in the professional services game?<br>><br>> What research team are you trying to sell? The only<br>> researcher you have left is this guy -
<br>> <a href="http://datarescue.com/idabase/hallofshame.html">http://datarescue.com/idabase/hallofshame.html</a> and of course chief<br>> hacking officer who has never discovered a bug.<br>><br>> "eEye made a name for itself after discovering, and naming, the
<br>> infamous CodeRed worm in 2001. "<br>><br>> It is now 2007. What have you done lately eEye? I don't think<br>> anyone cares that you "discovered" a 6 year old worm. Your<br>
> customers want stability and a future not a scheme (preview) for<br>> your VC to grab some extra cash before they turn out the lights.<br>><br>> So while you are chasing 50K from those who are still impressed by
<br>> CodeRed and stolen copies of IDA your core customers, those who<br>> you have abandoned like you did the engineers responsible for<br>> those products will take their money to other more stable vendors
<br>> that offer some sort of stability.<br>><br>> Maybe is time to throw in the towel. If Retina is the flagship<br>> then that ship has sailed into some rocks and sunk.<br>><br>> -J<br>
><br>> ------------------------------------------------------------------------<br>> _______________________________________________<br>> Dailydave mailing list<br>> <a href="mailto:Dailydave@lists.immunitysec.com">
Dailydave@lists.immunitysec.com</a><br>> <a href="http://lists.immunitysec.com/mailman/listinfo/dailydave">http://lists.immunitysec.com/mailman/listinfo/dailydave</a><br>><br>> ------------------------------------------------------------------------
<br>><br>> _______________________________________________<br>> Dailydave mailing list<br>> <a href="mailto:Dailydave@lists.immunitysec.com">Dailydave@lists.immunitysec.com</a><br>> <a href="http://lists.immunitysec.com/mailman/listinfo/dailydave">
http://lists.immunitysec.com/mailman/listinfo/dailydave</a><br>><br><br>_______________________________________________<br>Dailydave mailing list<br><a href="mailto:Dailydave@lists.immunitysec.com">Dailydave@lists.immunitysec.com
</a><br><a href="http://lists.immunitysec.com/mailman/listinfo/dailydave">http://lists.immunitysec.com/mailman/listinfo/dailydave</a><br></blockquote></div><br>