|
US-CERT
Provides a mechanism that allows citizens, businesses, and other institutions to communicate directly with the United States government regarding cyber security information.
http://www.us-cert.gov/
Bugtraq
Independent source for security vulnerabilities, alerts, and threats.
http://www.securityfocus.com/archive/1
VulnWatch
Computer security vulnerability disclosure mailing list
http://www.vulnwatch.org/
PatchAdvisor
Patch alert service.
http://www.patchadvisor.com
CVEbrowser
CVE browser is a Java Web search engine for the Mitre CVE vulnerability dictionary.
http://cvebrowser.sourceforge.net
PatchEasy
Patch management tool that helps secure systems by remotely managing service packs and hotfixes. Conduct research, take inventory, deploy updates and validate installations to networked machines.
http://www.patcheasy.com/
SecurityMetrics Bulletin Service
Security Bulletins that are compiled from multiple leading sources and condensed to reduce your efforts in reviewing them regularly.
http://www.securitymetrics.com/freesubscri...
PatchManagement.org
Mailing list dedicated to the discussion of patch management.
http://www.patchmanagement.org/
SANS Internet Storm Center
SANS Internet Storm Center - A Cooperative cyber threat monitor and alert system. Featuring daily handler diaries with summarizing and analyzing new threats and events.
http://isc.sans.org/
Internet Alerts
A Subject Tracerâ„¢ Information Blog developed and created by Marcus P. Zillman, M.S., A.M.H.A. for monitoring Internet Alerts.
http://internetalerts.blogspot.com/
Apache httpd 2.0 vulnerabilities
Includes an overview of published security advisories and patches for Apache 2.0.X.
http://httpd.apache.org/security/vulnerabi...
Symantec: DeepSight Threat Management System
Fee based security alert service offering early warning of active attacks.
http://www.symantec.com/Products/enterpris...
Apache httpd 1.3 vulnerabilities
Includes an overview of published Apache 1.3.x security advisories and patches.
http://httpd.apache.org/security/vulnerabi...
ISS X-Force
Security alerts, advisories, and alert summaries from ISS.
http://xforce.iss.net/xforce/alerts
Citadel Security
Vulnerability remediation software which prevents networked machines that have been off the network for some time from gaining access until the software has applied necessary patches. Also offer policy management and automatic logoff tools.
http://www.citadel.com/
Center for Internet Security
Non-profit enterprise whose mission is to help organizations reduce the risk of business and e-commerce disruptions resulting from inadequate technical security controls.
http://www.cisecurity.org
Secunia
Provides security advisories and information about patches.
http://secunia.com/
Makesecure.com
Network security news, alerts and updates
http://www.makesecure.com
Computer Incident Advisory Capability
CIAC publishes security bulletins and virus and hoax information. They provide computer security assistance to US Department of Energy (DOE) sites.
http://www.ciac.org/ciac/index.html
Patchlink Corporation - Patch Management
Offers fully Internet-based, automated, cross-platform, enterprise security patch management software so IT administrators can assess and resolve security vulnerabilities across operating systems and applications.
http://www.patchlink.com
Open Source Vulnerability Database
Searchable database of vulnerabilities. Offers data for download in XML format as well as via website. Details of how to submit new vulnerabilities, database schema and FAQ.
http://www.osvdb.org/
Patch Management Forum
Mailing list facilitates networking and information exchange related to patch management: announcements, testing, verification, operations processes, and vulnerabilities.
http://groups.yahoo.com/group/patchmgmt/
AusCERT
Australian Computer Emergency Response Team. Advisories and tools.
http://www.auscert.org.au
|
2006