SecTeer VulnDetect Support Forum VulnDetect
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Download VulnDetect Installer
    • Register
    • Login

    Warn when installing applications with known vulnerabilities

    Feature and Functionality Requests
    installation local-agent
    2
    3
    1.1k
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • OLLI_SO
      OLLI_S Community Moderator
      last edited by

      It would be cool if the local agent of VulnDetect recognizes when I am installing a new application (or an update for an existing application).
      Then the agent should check with the servers if the installed application as known vulnerabilities.
      If there are vulnerabilities, the local agent should show a warning.

      1 Reply Last reply Reply Quote 2
      • T Tom referenced this topic on
      • OLLI_SO
        OLLI_S Community Moderator
        last edited by

        The intention is that after an installation users get a warning when there are known vulnerabilities.
        No matter how this is implemented.

        Think about the following scenario:
        A user installs the current version of an application (like web browser), but the application has vulnerabilities.
        The daily VulnDetect will start in some hours.
        Now the user browses in the web and gets infected or hacked (the vulnerability is abused).
        And after that he can see in the list of installed applications (in VulnDetect) that this software has vulnerabilities.

        So the user will be very upset, because VulnDetect does already know about the vulnerability but did not warn him in time!
        This could really be a problem for VulnDetect.

        1 Reply Last reply Reply Quote 0
        • T
          Tom VulnDetect Team Member
          last edited by

          This is a good idea.

          The main issue with this is that it requires a driver to monitors disk writes, the Secunia PSI had this, but it is not our impression that the features that this allows us to build are the most important ones, so we will probably pursue a different avenue to attempt to achieve similar functionality.

          /Tom
          Download the latest SecTeer VulnDetect agent here:
          https://vulndetect.com/dl/secteerSetup.exe

          1 Reply Last reply Reply Quote 0
          • First post
            Last post
          Download SecTeer Personal VulnDetect - an alternative to the long lost Secunia PSI

          Please see our Privacy and Data Processing Policy
          Sponsored and operated by SecTeer | VulnDetect is a replacement for the EoL Secunia PSI
          Forum software by NodeBB