26 July 2010

Always the Last to Know: Metasploit

One of the toughest things in IT security is figuring out the difference between a vulnerability and a threat.  Systems have thousands - maybe millions - of vulnerabilities, but not all of them are actual threats, and trying to block every single vulnerability will make you crazy, take up all your time, and potentially render your system unusable. 

But how do you know the difference?

Metasploit - it provides open source penetration testing of systems for end users to help you figure out what vulnerabilities you have that hackers are likely to actually exploit - in other words, distinguish the vulnerabilities from the threats.

No comments: