[Tool Update] SSA version 1.6 beta 1 released

From: SD List (list@security-database.com)
Date: Tue Apr 08 2008 - 08:22:32 EDT


Dear all,

We are proud to announce the release of the beta 1 of the 1.6 version
branch. You should expect some bugs as this is the first beta stage of
branch 1.6.

At the time of posting this news, we are already working on Beta 2 to fix
and enhance many features.

Changes and improvements since the v1.5.2

New features
- Fully support all the Open security standards and initiatives as well as
CVE, CWE, CPE, CCE, CWE, CAPEC, CVSS, CRF. Please refer to Making Security
Measurable Website (http://measurablesecurity.mitre.org/)
- GUI redesigned and reworked
- Introduced Plugins integration and management
- Many new HOT plugins to be released soon (CCE, Nikto, Nipper....)
- New SSA core engine designed:
  * Introduced a loader to check configurations
  * Configurations are stored into XML files.
  * Enhanced scanning capabilities
  * The support of plugins integration
  * Advanced exceptions and errors handling

Plugins releases :

- OVAL Security Checks Plugin v1.0:
  * Fast and simple to use
  * Verifies the definitions files against their MD5 signatures (only from
   security-database.com)
  * Based on the latest OVAL Interpreter 5.3 Build 68
  * Scan using categories (Inventory, Patch and Vulnerability) with the
   respect of the new OVAL repository requirements
  * Plugin handles only "True" results.

- New SSA Updater plugin:

  * Support of Proxying (now support only simple proxies)
  * Definitions can be downloaded from 2 sources repositories (security-
   database.com or oval.mitre.org)
  * Download only essential definitions files to be used

!!!! Last Minute Hot News Next Beta 2 !!!!

- New plugin based upon the CCE (Common Configurations Checks) standard.
- Fix some know bugs (OVAL security checks progress bar could freeze)
- Added the proxy NTLM authentication mode
- Activate the New Report Plugin in compliance with the CRF (Common
Results Format) standard.
- Draft of the SSA 1.6 documentation

Download SSA 1.6 beta 1 (www.security-database.com/ssa.php)

Regard & Happy Auditing

FREE TIBET FREE TIBET FREE TIBET FREE TIBET FREE TIBET FREE TIBET
The SSA team
www.security-database.com
FREE TIBET FREE TIBET FREE TIBET FREE TIBET FREE TIBET FREE TIBET

------------------------------------------------------------------------
This list is sponsored by: Cenzic

Need to secure your web apps NOW?
Cenzic finds more, "real" vulnerabilities fast.
Click to try it, buy it or download a solution FREE today!

http://www.cenzic.com/downloads
------------------------------------------------------------------------

-- 
This message has been scanned for viruses and
dangerous content by MailScanner, and is
believed to be clean.


This archive was generated by hypermail 2.1.7 : Sat Apr 12 2008 - 10:58:30 EDT