CVEbrowser
CVE browser is a Java Web search engine for the Mitre CVE vulnerability dictionary.
DeepSight
Fee based security alert service by Symantec.
Patch Management Forum
Mailing list facilitates networking and information exchange related to patch management: announcements, testing, verification, operations processes, and vulnerabilities.
Internet Alerts
A Subject Tracerâ„¢ Information Blog developed and created by Marcus P. Zillman, M.S., A.M.H.A. for monitoring Internet Alerts.
SANS Internet Storm Center
SANS Internet Storm Center - A Cooperative cyber threat monitor and alert system. Featuring daily handler diaries with summarizing and analyzing new threats and events.
Secunia
Provides security advisories and information about patches.
OpenNet - Security
Database of daily updated security alerts.
Apache Week: Apache httpd 1.3 vulnerabilities
Includes an overview of published Apache 1.3.x security advisories and patches.
Apache Week: Apache httpd 2.0 vulnerabilities
Includes an overview of published security advisories and patches for Apache 2.0.X.
AusCERT
Australian Computer Emergency Response Team. Advisories and tools.
CERIAS - Center for Education and Research in Information Assurance and Security
University center for multidisciplinary research and education in areas of information security. Provides hotlist covering all aspects of security.
CERT Coordination Center
Studies Internet security vulnerabilities, provides incident response services to sites that have been the victims of attack, publishes a variety of security alerts, researches security and survivability in wide-area-networked computing, and develops information to improve site security.
Computer Incident Advisory Capability
CIAC publishes security bulletins and virus and hoax information. They provide computer security assistance to US Department of Energy (DOE) sites.
Center for Internet Security
Non-profit enterprise whose mission is to help organizations reduce the risk of business and e-commerce disruptions resulting from inadequate technical security controls.
Citadel Security
Vulnerability remediation software which prevents networked machines that have been off the network for some time from gaining access until the software has applied necessary patches. Also offer policy management and automatic logoff tools.
Makesecure.com
Network security news, alerts and updates
Open Source Vulnerability Database
Searchable database of vulnerabilities. Offers data for download in XML format as well as via website. Details of how to submit new vulnerabilities, database schema and FAQ.
PatchAdvisor
Patch alert service.
Patchcompliance.com
Offers patch management information and products.
PatchEasy
Patch management tool that helps secure systems by remotely managing service packs and hotfixes. Conduct research, take inventory, deploy updates and validate installations to networked machines.
Patchlink Corporation - Patch Management
Offers fully Internet-based, automated, cross-platform, enterprise security patch management software so IT administrators can assess and resolve security vulnerabilities across operating systems and applications.
PatchManagement.org
Mailing list dedicated to the discussion of patch management.
Secureroot Advisories Database
Listing of security advisories and warnings.
Bugtraq
Independent source for security vulnerabilities, alerts, and threats.
SecurityFocus: Bugtraq
Full disclosure computer security vulnerabilities feed.
SecurityMetrics Bulletin Service
Security Bulletins that are compiled from multiple leading sources and condensed to reduce your efforts in reviewing them regularly.
Sintelli Alert
Online service that notifies webmasters of new security vulnerabilities.
Threat Focus
Threat Focus Diligence provides customized 24/7 vulnerability and patch alerts for more than 1,000 products, giving IT and network managers the security information they need to protect their assets.
TruIntelligence
Actionable, risk oriented intelligence service from TruSecure Corporation.
US-CERT
Provides a mechanism that allows citizens, businesses, and other institutions to communicate directly with the United States government regarding cyber security information.
VulnWatch
Computer security vulnerability disclosure mailing list
ISS X-Force
Security alerts, advisories, and alert summaries from ISS.
|