verinice 1.12 is out. The new version of the open source tool for the management of information security (ISMS) is an efficient companion for companies, government agencies, consultants and auditors. A perspective for working with vulnerability scanners is just one of many new features. verinice is published by SerNet.
verinice 1.12 introduces the Greenbone GSM perspective. This allows an easy start into managing vulnerabilities by intertwining verinice with the vulnerability scanner Greenbone GSM (OpenVAS). Two new tutorials explain step-by-step, how the results of vulnerability scans are imported and processed. When working with an IS-management system according to ISO 27001 the scanned systems and weaknesses can be used in a risk analysis.
verinice.PRO offers additional advantages: The workflow helps in assigning responsibilities and fixing vulnerabilities while in operation mode. An intelligent adjustment ensures that even after repeated scans duplicates are avoided and only fixed vulnerabilities are removed from the risk database.
Another big change: the whole development process moved to Github. The verinice source code remains open source – and GitHub helps to make the development more transparent.
There are also numerous improvements and bug fixes. More detailed information about features and improvements are listed in the release notes for verinice 1.12. verinice 1.12 is available at verinice.org.