|| ||Loren Bandiera <lorenb-AT-mmgsecurity.com>|
|| ||Sussen v0.11|
|| ||Tue, 24 May 2005 07:24:06 -0400|
Since the last release we have moved away from porting security tests to
focusing on running existing ones. To that end we've been working on
NASL and OVAL interpreters for Sussen.
Sussen can currently run some OVAL tests on Windows and RedHat based
The NASL interpreter can parse/lex all the current NASLs. Whatÿs needed
is code to
be written to execute actions, such as opening a TCP socket or making an
MMG Security announces the release of Sussen 0.11.
WHAT IS SUSSEN?
Sussen is a tool for testing the security posture of computers and other
network devices. It is in an early stage of development and should be
considered experimental. Sussen is improving rapidly on many fronts, but
it is not yet stable enough for full-time, everyday use.
There are three (3) parts that make up Sussen. There is the agent
you can install on target systems. The agent can perform a host-based
assessment using Open Vulnerability Assessment Lanaguage (OVAL) 
The server handles the requests and communicates with the necessary
agent(s) to perform host-based assessments. The server also has the
to do a network based assessment of different systems/devices. The
contains a Nessus Attack Scripting Language (NASL) interpreter.
Finally, there is the client which makes requests to the server. The
available for Gnome and Windows based platforms.
Sussen is released under the GNU General Public License (GPL) version
see the file 'COPYING' for more information.
 - http://oval.mitre.org/
Sussen web site - http://www.sussen.org/
Mailing List -
Code Repository - http://svn.mmgsecurity.com/svn/sussen/
Bugzilla - http://bugs.mmgsecurity.com/
Latest news - http://people.mmgsecurity.com/~lorenb/
To run Sussen, you need the following:
* mono (1.1.x)
* gtk-sharp (1.0.x)
* glade-sharp (1.0.x)
* gnome-sharp (1.0.x)
* Microsoft .NET Framework 1.1 w/ Service Pack 1
CHANGES SINCE 0.10
* Added support for OVAL and NASL security tests
* Windows support
* Code cleanup and bugfixes
Loren Bandiera <firstname.lastname@example.org>
MMG Security, Inc.
to post comments)