Dear OpenVAS Community, I just thought of something today and found it quite worthy to mention to the community. So I wanted to know if there is some existing framework or feedback mechanism for evaluating the efficiency of OpenVAS NVTs. The closest analogy I can offer here is in the case of anti-virus software.
Though they function quite differently from vulnerability scanners, anti-virus software generally gather behavioral data of viruses from host computers for further analysis. The data is also useful for measuring quality assurance and improvement of threat mitigation approaches. Yes, I think this is done with the consent of the user or maybe integrated in the "Terms of Agreement". Just asking out of curiosity though. Many thanks. Regards, Ken
_______________________________________________ Openvas-plugins mailing list [email protected] https://lists.wald.intevation.org/cgi-bin/mailman/listinfo/openvas-plugins
