|
|
1. |
Citadel Security Software
NEW!
-
Software vendor for vulnerability remediation.
|
|
|
2. |
Apache HTTP Server Vulnerability Lists
NEW!
-
Lists of security problems fixed in released versions of the Apache HTTP Server.
|
|
|
3. |
AusCERT
-
Australian Computer Emergency Response Team. Advisories and tools.
|
|
|
4. |
Bugtraq
-
Independent source for security vulnerabilities, alerts, and threats.
|
|
|
5. |
Center for Internet Security
-
Non-profit enterprise whose mission is to help organizations reduce the risk of business and e-commerce disruptions resulting from inadequate technical security controls.
|
|
|
6. |
CERIAS
NEW!
-
Center for Education and Research in Information Assurance and Security. University center for multidisciplinary research and education in areas of information security.
|
|
|
7. |
CERT Coordination Center
-
Studies Internet security vulnerabilities, provides incident response services to sites that have been the victims of attack, publishes a variety of security alerts, researches security and survivability in wide-area-networked computing, and develops information to improve site security.
|
|
|
8. |
Computer Incident Advisory Capability
-
CIAC publishes security bulletins and virus and hoax information. They provide computer security assistance to US Department of Energy (DOE) sites.
|
|
|
9. |
eVuln
NEW!
-
Original source of responsible open source vulnerability research.
|
|
|
10. |
ISS X-Force
-
Security alerts, advisories, and alert summaries from ISS.
|
|
|
11. |
Makesecure.com
-
Network security news, alerts and updates
|
|
|
12. |
Microsoft Security Assessment
NEW!
-
A software vendor that provides their own online security assessment. Good for home users.
|
|
|
13. |
Open Source Vulnerability Database
-
Searchable database of vulnerabilities. Offers data for download in XML format as well as via website. Details of how to submit new vulnerabilities, database schema and FAQ.
|
|
|
14. |
Oracle Security Center
NEW!
-
Tips, tools, and technologies to keep Oracle products safe, secure, and patched.
|
|
|
15. |
Patch Management Forum
-
Mailing list facilitates networking and information exchange related to patch management: announcements, testing, verification, operations processes, and vulnerabilities.
|
|
|
16. |
PatchAdvisor
NEW!
-
Fee based patch alert service.
|
|
|
17. |
PatchEasy
NEW!
-
Software vendor for patch management.
|
|
|
18. |
Patchlink Corporation
NEW!
-
Software vendor for cross platform patch management.
|
|
|
19. |
PatchManagement.org
-
Mailing list dedicated to the discussion of patch management.
|
|
|
20. |
SANS Internet Storm Center
NEW!
-
Cooperative cyber threat monitor and alert system. Features daily handler diaries that summarize and analyze new threats and events.
|
|
|
21. |
Secunia
NEW!
-
Provides security advisories and information about patches, and provides software for vulnerability management.
|
|
|
22. |
Secure Elements
NEW!
-
Software vendor for compliance and vulnerability management. Provides advisories via XML and RSS, and fully supports OVAL and XCDDF XML standards for compliance and vulnerability functions.
|
|
|
23. |
SecurityMetrics Bulletin Service
-
Security Bulletins that are compiled from multiple leading sources and condensed to reduce your efforts in reviewing them regularly.
|
|
|
24. |
St Benard
NEW!
-
Software vendor for patch management of operating systems and applications.
|
|
|
25. |
Symantec DeepSight Threat Management System
NEW!
-
Fee based security alert service that provides early warning of active attacks.
|
|
|
26. |
US-CERT
NEW!
-
Established in 2003 to protect the nation's Internet infrastructure, US-CERT coordinates defense against and responses to cyber attacks across the nation.
|
|
|
27. |
VulnWatch
-
Computer security vulnerability disclosure mailing list
|
