此種 Plugin 可偵測是否存在惡意檔案或是否有後門可讓未經授權的攻擊者存取及入侵系統。
此種 Plugin 適用於會利用通用閘道介面的弱點。
此種 Plugin 適用於會利用通用閘道介面的弱點,尤其是造成跨網站指令碼問題的弱點。
與 Cisco 裝置的弱點偵測相關的 Plugin。
與特定資料庫應用程式及其弱點相關的 Plugin。
測試各種帳戶之 Unix 主機的 Plugin,預設情況下,這些帳戶會在應用程式安裝時安裝。
此種 Plugin 可直接測試是否有造成拒絕服務的弱點。此種 Plugin 系列會在安全檢查停用時執行。
此種 Plugin 可用來處理無指定系列的防火牆裝置和軟體。
此種 Plugin 可用來處理試圖在主機或裝置上取得殼層的弱點。
此種 Plugin 絕大多數用於收集其他檢查所需的資訊。
已過時 / 已停用
與主機和裝置無關的 Plugin。
用於處理行動裝置弱點的 Plugin。
專門用於處理 Novell Netware 弱點的 Plugin。
此種 Plugin 可偵測對等式共用應用程式的軟體和弱點。
此種 Plugin 可偵測對等式共用應用程式的軟體和弱點。
用於收集連接埠資訊的 Plugin。
此種 Plugin 可利用 SCADA 收集資訊並進行弱點檢查。
此種 Plugin 可偵測在連接埠上接聽的特定通訊協定或應用程式。
此種 Plugin 專門用於處理掃描器設定和掃描資訊的弱點。
此種 Plugin 專門用於修補 Web 伺服器。
此種 Plugin 與 Windows 平台及應用程式相關。
專門檢查 Microsoft 佈告欄的 Windows 本機安全檢查。
專門檢查使用者資訊的 Windows 本機安全檢查。
下類檢查會利用提供給主機或裝置的憑證所收集的資料:
下類 Plugin 檢查可處理特定通訊協定:
Plugins that detect the presence of a malicious file or backdoor access that can potentially lead to unauthorized access to a system.
Plugins for vulnerabilities that leverage the common gateway interface.
Plugins to identify cloud services which may place intellectual property at risk.It is not intended for social media services (social media usage detection would typically be found in the Policy family).
Identifies DNS server related installations
Plugins that detect protected data that is being leaked via unsecured or poorly secured protocols
Plugins that relate to specific database applications and their vulnerabilities.
Plugins related to FTP client detection
Plugins related to the detection of FTP Servers
Plugins to identify finger daemon services
Plugins to identify general software that do not fit in any other categories, normally are host and device neutral
Plugins to identify activity reflecting IMAP Server functionality
Plugins to identify the presence of IRC Clients
Plugins to identify the presence of IRC Servers Functionality
Plugins to identify online chat applications
Plugins to identify hosted services that accept connections from the Internet
Plugins to identify Internet of Things Devices in the Network
Plugins that deal with mobile devices.
Plugins to identify different Operating Systems in the network
Plugins to identify POP Servers in the network
Plugins to identify peer-to-peer file sharing applications or services
Plugins to identify software or services that could go against a company’s acceptable use or security policy.
Plugins to identify Remote Procedure Calls
Plugins related to Supervisory Control and Data Acquisition (SCADA)/Industrial Control System (ICS) plugins
Plugins related to the identification of SMTP Clients
Plugins related to the identification of SMTP Servers
Plugins related to the identification of SNMP Services
Plugins to identify SSH Servers
Plugins to identify Samba services
Plugins specifically for web clients.
Plugins related to authentication and session issues
Plugins allowing code to be executed on the server and/or the application
Information and vulnerabilities found on components used to build web applications
Plugins specifically for XSRF issues
Plugins specifically for all types of XSS issues
Plugins specifically for all types of XSS issues
Plugins to identify that a file can be uploaded to the scanned asset
Plugins for Scan General Information
Plugins to identify information and vulnerabilities on HTTP headers used by the web application
Plugins to identify different types of injection (SQL, noSQL, Code)
Information and vulnerabilities on the HTTPs protocol and certificates used by the web application
Plugins to identify information/Detection collected on the web application
Plugins to identify Information/Detection collected on the web server running the web application
Plugins related to Supervisory Control and Data Acquisition (SCADA)/Industrial Control System (ICS) plugins
使用者和網站之間的資料互動。
此種 Plugin 會使用提供的身份驗證憑証來收集主機或裝置的相關資訊。
網站執行惡意指令碼所進行的特定攻擊。
此種特定攻擊會使服務、裝置或主機變得無法使用或無法連線,進而無法達到其預期用途。
此種安全裝置或軟體可管理網路上不同裝置之間的互動。
用來與 OS 或裝置互動的使用者介面。
此類型的網路沒有中央伺服器;反之,每個節點既可用來作為伺服器端,也可用來作為用戶端。
用於高階處理流程監控管理的控制系統。
(在此情況下,「Plugin」和「檢查」這兩個字眼可以交換使用)