Skip to content
Better HN
Top
New
Best
Ask
Show
Jobs
Search
⌘K
0 points
tinco
4y ago
0 comments
Share
If your threat profile says you need to audit your vulnerability scanners, you audit your vulnerability scanners. There's not really a problem there right?
undefined | Better HN
0 comments
default
newest
oldest
Pokepokalypse
4y ago
NIST also says: if your scanner finds a vulnerability, it's up to you to VALIDATE that it's not a false-positive.
False-positives abound on these scanners.
haolez
4y ago
I've never had to. I wanted feedback from people who have.
j
/
k
navigate · click thread line to collapse
