Hi All,

Is https://vulndetect.com a dead program?

I can find no place on their web site to order.
I have written them several times and they ghost me.
Is this company out of business?

Many thanks,
-T

On 2/20/2024 3:49 AM, T wrote:
> Hi All,
>
> Is https://vulndetect.com a dead program?
>
> I can find no place on their web site to order.
> I have written them several times and they ghost me.
> Is this company out of business?
>
> Many thanks,
> -T

https://secteer.com/

"Contact us

Univate - Njalsgade 76, 4th Floor
DK-2300 Copenhagen Denmark
+45 70 707 759
contact@secteer.com
DK38330462

VulnDetect stored on servers by: Hetzner

*******

"The addresses of SecTeer services are:

https://*.vulndetect.com/ (port 443/tcp)

The above should be whitelisted in the Firewall/Proxy configuration
"

I would guess some engine component is stored on the thing needing
a firewall opening. The part that does the billing, likely
has a working email.

While at one time, there was the notion that some part
of this was free, it's really hard to tell from the Archive.org
breadcrumbs.

There is vulndetect.com and vulndetect.org and at some point
secteer enters the picture.

Paul

On 20/02/2024 08:49, T wrote:
> Hi All,
>
> Is https://vulndetect.com a dead program?
>
> I can find no place on their web site to order.
> I have written them several times and they ghost me.
> Is this company out of business?
>
> Many thanks,

This one?
- https://vulndetect.org/

--
Regards
wasbit

On Tue, 20 Feb 2024 02:49:13 -0600, T <T@invalid.invalid> wrote:

> Hi All,
>
> Is https://vulndetect.com a dead program?
>
> I can find no place on their web site to order.
> I have written them several times and they ghost me.
> Is this company out of business?
>
> Many thanks,
> -T
>

It's not a dead program in my book.
It's my favorite Updater program currently.
It's free for personal use. It does require registration with an email address.
Their Forum and the Download link are at https://vulndetect.org/

--
Using Opera's mail client:
https://web.archive.org/web/20130226002115/http://www.opera.com/mail/
https://web.archive.org/web/20130709005515/http://help.opera.com/Windows/12.10/en/mail.html
https://web.archive.org/web/20130223015023/http://www.opera.com/browser/tutorials/mail/

On 2/20/24 01:14, Paul wrote:
> On 2/20/2024 3:49 AM, T wrote:
>> Hi All,
>>
>> Is https://vulndetect.com a dead program?
>>
>> I can find no place on their web site to order.
>> I have written them several times and they ghost me.
>> Is this company out of business?
>>
>> Many thanks,
>> -T
>
> https://secteer.com/
>
> "Contact us
>
> Univate - Njalsgade 76, 4th Floor
> DK-2300 Copenhagen Denmark
> +45 70 707 759
> contact@secteer.com

They ghosted me. Their fill in form ghosted me too.

> DK38330462
>
> VulnDetect stored on servers by: Hetzner
>
> *******
>
> "The addresses of SecTeer services are:
>
> https://*.vulndetect.com/ (port 443/tcp)
>
> The above should be whitelisted in the Firewall/Proxy configuration
> "
>
> I would guess some engine component is stored on the thing needing
> a firewall opening. The part that does the billing, likely
> has a working email.
>
> While at one time, there was the notion that some part
> of this was free, it's really hard to tell from the Archive.org
> breadcrumbs.
>
> There is vulndetect.com and vulndetect.org and at some point
> secteer enters the picture.
>
> Paul

On 2/20/24 01:53, wasbit wrote:
> On 20/02/2024 08:49, T wrote:
>> Hi All,
>>
>> Is https://vulndetect.com a dead program?
>>
>> I can find no place on their web site to order.
>> I have written them several times and they ghost me.
>> Is this company out of business?
>>
>> Many thanks,
>
> This one?
>  - https://vulndetect.org/
>

That is their support forum. I could
not figure out how to create an account.

On 2/20/24 02:00, AllanH wrote:
> On Tue, 20 Feb 2024 02:49:13 -0600, T <T@invalid.invalid> wrote:
>
>> Hi All,
>>
>> Is https://vulndetect.com a dead program?
>>
>> I can find no place on their web site to order.
>> I have written them several times and they ghost me.
>> Is this company out of business?
>>
>> Many thanks,
>> -T
>>
>
> It's not a dead program in my book.
> It's my favorite Updater program currently.
> It's free for personal use. It does require registration with an email
> address.
> Their Forum and the Download link are at https://vulndetect.org/

Downloading it is not a problem. But how do I purchase it?

Paul wrote on 2/20/24 2:14 AM:
> On 2/20/2024 3:49 AM, T wrote:
>> Hi All,
>>
>> Is https://vulndetect.com a dead program?
>>
>> I can find no place on their web site to order.
>> I have written them several times and they ghost me.
>> Is this company out of business?
>>
>> Many thanks,
>> -T
>
> https://secteer.com/
>
> "Contact us
>
> Univate - Njalsgade 76, 4th Floor
> DK-2300 Copenhagen Denmark
> +45 70 707 759
> contact@secteer.com
> DK38330462
>
> VulnDetect stored on servers by: Hetzner
>
> *******
>
> "The addresses of SecTeer services are:
>
> https://*.vulndetect.com/ (port 443/tcp)
>
> The above should be whitelisted in the Firewall/Proxy configuration
> "
>
> I would guess some engine component is stored on the thing needing
> a firewall opening. The part that does the billing, likely
> has a working email.
>
> While at one time, there was the notion that some part
> of this was free, it's really hard to tell from the Archive.org
> breadcrumbs.
>
> There is vulndetect.com and vulndetect.org and at some point
> secteer enters the picture.
>
> Paul
>
Free Trial, Request Quote
- the latter likely for cost to deploy non-free version.

https://secteer.com/trial/
https://secteer.com/request-quote/

https://secteer.com/faq/
https://secteer.com/contact/

https://vulndetect.com/dl/secteerSetup.exe

--
....w¡ñ§±¤ñ

T <T@invalid.invalid> wrote:

> Is https://vulndetect.com a dead program?
>
> I can find no place on their web site to order.
> I have written them several times and they ghost me.
> Is this company out of business?

Secunia PSI got sunsetted. VulnDetect was its substitute. The URL you
gave is to the .com login page. Their web site is at vulndetect.org
where there is a download link to their program (I didn't bother to see
when was the last update of it). Forum posts about their releases show
3.2.0.0 was released on 1/22/2024. Their download link points to a 2 MB
setup file with no version number in its name, so maybe they dump a stub
installer on your host, and it connects back to their server to decide
what to actually install. I downloaded their .exe file, and opened it
using Peazip. The version.txt file also says version 3.2.0.0. There
was nothing inside the .exe that would be large enough to be a
standalone (local) installer. I didn't see anything inside to run as an
executable, but maybe Peazip doesn't show the root level where the
executable code might reside. I've never used the program, so maybe it
really is only about 2 MB in size if it gets everything on which it
tests from there server.

If you're into social networks, they have a LinkedIn page at:

https://no.linkedin.com/company/secteer

There personal-use version is free. It's their business license that
costs money.

T <T@invalid.invalid> wrote:

> AllanH wrote:
>
>> T <T@invalid.invalid> wrote:
>>
>>> Is https://vulndetect.com a dead program?
>>>
>>> I can find no place on their web site to order.
>>> I have written them several times and they ghost me.
>>> Is this company out of business?
>>
>> It's not a dead program in my book.
>> It's my favorite Updater program currently.
>> It's free for personal use. It does require registration with an email
>> address.
>> Their Forum and the Download link are at https://vulndetect.org/
>
> Downloading it is not a problem. But how do I purchase it?

Maybe at winston's cite of their price quote request page:

https://secteer.com/request-quote/

Since they won't divulge prices at their web site, quoting a price
depends on how deep is your pocket; i.e., charge what a customer is
willing to bear. They probably want to license by seats at the same
organization, so you probably can't use it as a toolbar utility wherever
you want. Your customers will have to buy it.

From https://pitchbook.com/profiles/company/515109-07#overview, I only
see investment of seed money back in Nov 2022.

On 2/20/24 18:43, VanguardLH wrote:
> T <T@invalid.invalid> wrote:
>
>> AllanH wrote:
>>
>>> T <T@invalid.invalid> wrote:
>>>
>>>> Is https://vulndetect.com a dead program?
>>>>
>>>> I can find no place on their web site to order.
>>>> I have written them several times and they ghost me.
>>>> Is this company out of business?
>>>
>>> It's not a dead program in my book.
>>> It's my favorite Updater program currently.
>>> It's free for personal use. It does require registration with an email
>>> address.
>>> Their Forum and the Download link are at https://vulndetect.org/
>>
>> Downloading it is not a problem. But how do I purchase it?
>
> Maybe at winston's cite of their price quote request page:
>
> https://secteer.com/request-quote/
>
> Since they won't divulge prices at their web site, quoting a price
> depends on how deep is your pocket; i.e., charge what a customer is
> willing to bear. They probably want to license by seats at the same
> organization, so you probably can't use it as a toolbar utility wherever
> you want. Your customers will have to buy it.
>
> From https://pitchbook.com/profiles/company/515109-07#overview, I only
> see investment of seed money back in Nov 2022.

The third time I did request a quote, a sale man
responded. A one to 20 seat license is 900 U$D a year.
Way out of my customer's range.

I asked the salesman what he could do for seven seats
of the personal edition. I am still waiting.

I see Vicarius wants $5 per seat per month
https://www.vicarius.io/pricing
or $420 /yr for seven seats. Much better.

All I need to know is when a program has a
vulnerability/critical update pending and
nothing else. Automatic patches, etc. is out.

So I am still looking.

My head is spinning that SUMo closed.

You guys know of anything that might fit the bill?

On 2/20/24 18:34, VanguardLH wrote:
> There personal-use version is free. It's their business license that
> costs money.

After my third attempt on their request a quote page, a salesman got
back to me. They want $900 U$D per year for 1 to 20 seats.
Way, way to expensive for my customer.

On 2/20/24 00:49, T wrote:
> Hi All,
>
> Is https://vulndetect.com a dead program?
>
> I can find no place on their web site to order.
> I have written them several times and they ghost me.
> Is this company out of business?
>
> Many thanks,
> -T

I am thinking that UCheck:
https://www.adlice.com/ucheck/
might be the only seasonably priced SUMo alternative
for my customer. It's down aside is that it does
not show what updates are critical, as does the
defunct SUMo and the expensive VulnDetect

T <T@invalid.invalid> wrote:

> On 2/20/24 18:43, VanguardLH wrote:
>> T <T@invalid.invalid> wrote:
>>
>>> AllanH wrote:
>>>
>>>> T <T@invalid.invalid> wrote:
>>>>
>>>>> Is https://vulndetect.com a dead program?
>>>>>
>>>>> I can find no place on their web site to order.
>>>>> I have written them several times and they ghost me.
>>>>> Is this company out of business?
>>>>
>>>> It's not a dead program in my book.
>>>> It's my favorite Updater program currently.
>>>> It's free for personal use. It does require registration with an email
>>>> address.
>>>> Their Forum and the Download link are at https://vulndetect.org/
>>>
>>> Downloading it is not a problem. But how do I purchase it?
>>
>> Maybe at winston's cite of their price quote request page:
>>
>> https://secteer.com/request-quote/
>>
>> Since they won't divulge prices at their web site, quoting a price
>> depends on how deep is your pocket; i.e., charge what a customer is
>> willing to bear. They probably want to license by seats at the same
>> organization, so you probably can't use it as a toolbar utility wherever
>> you want. Your customers will have to buy it.
>>
>> From https://pitchbook.com/profiles/company/515109-07#overview, I only
>> see investment of seed money back in Nov 2022.
>
> The third time I did request a quote, a sale man
> responded. A one to 20 seat license is 900 U$D a year.
> Way out of my customer's range.
>
> I asked the salesman what he could do for seven seats
> of the personal edition. I am still waiting.
>
> I see Vicarius wants $5 per seat per month
> https://www.vicarius.io/pricing
> or $420 /yr for seven seats. Much better.
>
> All I need to know is when a program has a
> vulnerability/critical update pending and
> nothing else. Automatic patches, etc. is out.
>
> So I am still looking.
>
> My head is spinning that SUMo closed.
>
> You guys know of anything that might fit the bill?

"Download SecTeer Personal VulnDetect - an alternative to the long lost
Secunia PSI"

Wasn't Secunia PSI free? If so, for Vulndetect (Personal) to be an
alternative means it should also be free.

Secunia's PSI got dropped, and users dropped it because it was free.
Secunia is still in the vulnerability analysis market. You might want
to get a quote from Flexera (they acquired Secunia in 2015) on their
Software Vulnerability Manager to see if it is cheaper or more expensive
than Vulndetect.

If you thought $900 (per year? per seat?) was expensive, vulnerability
analysis and protection isn't cheap often running $1000 to $4500 per
year. Take a look at Astra's prices:

https://www.getastra.com/pentest/pricing

With PSI, Sumo, and other freebies, all they were was software update
checkers. They'd see if you were missing updates. Since the OS and
most apps already have their own update checkers, PSI and the others
lost their importance. Vulnerability testing and analysis, on the other
hand, is a hell of lot more testing, and takes a lot more work on your
part to understand, and covers the high-tech support needed for those
products and services. They really aren't do-it-yourself-alone software
updaters.

I don't remember PSI *ever* performing vulnerability testing, just
software updating. Well, hell, there are lots of software update
checkers. Even CCleaner has a very basic Software Update checker (as
long as you don'g disable outbound connections through a firewall as I
did to eliminate Avast's addition of their adware platform to CCleaner).

https://www.lifewire.com/free-software-updater-programs-2625200

You mentioned uCheck. Yep, just another software update checker.
Nothing to do with vulnerability testing and analysis. Between Windows
having its own update checking (which I disable until I prepare, like
assigning the time, saving an image backup, and having initiative to
bother changing the state of the OS), and almost all programs I've
installed having their own update checker (although some just alert
there is a new update rather than downloading and installing it), I have
found no need for a software update checker tool. Those promote you to
make more changes than really needed for your setup.

You don't let your customers do the software updates themselves, right?
That's what they pay you for. If you give them software updaters,
they'll fuck up their setups, and you'll have to undo their screwups.
Or maybe that's your covert agenda to generate more work and revenue.

On 2/20/24 23:07, VanguardLH wrote:
> T <T@invalid.invalid> wrote:
>
>> On 2/20/24 18:43, VanguardLH wrote:
>>> T <T@invalid.invalid> wrote:
>>>
>>>> AllanH wrote:
>>>>
>>>>> T <T@invalid.invalid> wrote:
>>>>>
>>>>>> Is https://vulndetect.com a dead program?
>>>>>>
>>>>>> I can find no place on their web site to order.
>>>>>> I have written them several times and they ghost me.
>>>>>> Is this company out of business?
>>>>>
>>>>> It's not a dead program in my book.
>>>>> It's my favorite Updater program currently.
>>>>> It's free for personal use. It does require registration with an email
>>>>> address.
>>>>> Their Forum and the Download link are at https://vulndetect.org/
>>>>
>>>> Downloading it is not a problem. But how do I purchase it?
>>>
>>> Maybe at winston's cite of their price quote request page:
>>>
>>> https://secteer.com/request-quote/
>>>
>>> Since they won't divulge prices at their web site, quoting a price
>>> depends on how deep is your pocket; i.e., charge what a customer is
>>> willing to bear. They probably want to license by seats at the same
>>> organization, so you probably can't use it as a toolbar utility wherever
>>> you want. Your customers will have to buy it.
>>>
>>> From https://pitchbook.com/profiles/company/515109-07#overview, I only
>>> see investment of seed money back in Nov 2022.
>>
>> The third time I did request a quote, a sale man
>> responded. A one to 20 seat license is 900 U$D a year.
>> Way out of my customer's range.
>>
>> I asked the salesman what he could do for seven seats
>> of the personal edition. I am still waiting.
>>
>> I see Vicarius wants $5 per seat per month
>> https://www.vicarius.io/pricing
>> or $420 /yr for seven seats. Much better.
>>
>> All I need to know is when a program has a
>> vulnerability/critical update pending and
>> nothing else. Automatic patches, etc. is out.
>>
>> So I am still looking.
>>
>> My head is spinning that SUMo closed.
>>
>> You guys know of anything that might fit the bill?
>
> "Download SecTeer Personal VulnDetect - an alternative to the long lost
> Secunia PSI"
>
> Wasn't Secunia PSI free? If so, for Vulndetect (Personal) to be an
> alternative means it should also be free.

It is only free to non-business use. My customer is a business.

> Secunia's PSI got dropped, and users dropped it because it was free.
> Secunia is still in the vulnerability analysis market. You might want
> to get a quote from Flexera (they acquired Secunia in 2015) on their
> Software Vulnerability Manager to see if it is cheaper or more expensive
> than Vulndetect.
>
> If you thought $900 (per year? per seat?) was expensive, vulnerability
> analysis and protection isn't cheap often running $1000 to $4500 per
> year. Take a look at Astra's prices:
>
> https://www.getastra.com/pentest/pricing
>
> With PSI, Sumo, and other freebies, all they were was software update
> checkers. They'd see if you were missing updates. Since the OS and
> most apps already have their own update checkers, PSI and the others
> lost their importance. Vulnerability testing and analysis, on the other
> hand, is a hell of lot more testing, and takes a lot more work on your
> part to understand, and covers the high-tech support needed for those
> products and services. They really aren't do-it-yourself-alone software
> updaters.
>
> I don't remember PSI *ever* performing vulnerability testing, just
> software updating. Well, hell, there are lots of software update
> checkers. Even CCleaner has a very basic Software Update checker (as
> long as you don'g disable outbound connections through a firewall as I
> did to eliminate Avast's addition of their adware platform to CCleaner).
>
> https://www.lifewire.com/free-software-updater-programs-2625200
>
> You mentioned uCheck. Yep, just another software update checker.
> Nothing to do with vulnerability testing and analysis. Between Windows
> having its own update checking (which I disable until I prepare, like
> assigning the time, saving an image backup, and having initiative to
> bother changing the state of the OS), and almost all programs I've
> installed having their own update checker (although some just alert
> there is a new update rather than downloading and installing it), I have
> found no need for a software update checker tool. Those promote you to
> make more changes than really needed for your setup.
>
> You don't let your customers do the software updates themselves, right?
> That's what they pay you for. If you give them software updaters,
> they'll fuck up their setups, and you'll have to undo their screwups.
> Or maybe that's your covert agenda to generate more work and revenue.

PCI-DSS-v4-0-SAQ-C-r1, 6.3.3, pg 32
6.3.3. pg 32: All system components are protected from
known vulnerabilities by installing applicable security
patches/updates as follows:

• Critical or high-security patches/updates (identified
according to the risk ranking process at Requirement
6.3.1) are installed within one month of release.

I "only" have to install "Critical or high-security patches/updates".

An update checker, such as the now defunct SUMo which
also shows "Critical" security updates, is exactly
what I am after.

And the market is blurring "Vulnerability" with "Critical or
high-security patches/updates" and "Exploits". Those big
packages are much different than update checkers, which only tell
you what is out of date. The big packages also check for
"Exploits", which they also call "vulnerabilities".
And make a Google search a nightmare.

But SUMo and the non-business version of VulnCheck tell
you if there is also a security (blurring the word
"Vulnerability") update pending. And that is what I
am after.

Ucheck only tells you if there is an update, which does
also cover security and feature updates. For the
extraordinary price, I will have to just live with it.

I do not like wasting my customer's money on updates that are
not required by PCI. But it is going to be way cheaper
that VulnCheck, so I should stop being a perfectionist.

On 2/21/24 12:13, T wrote:
> On 2/20/24 23:07, VanguardLH wrote:
>> T <T@invalid.invalid> wrote:
>>
>>> On 2/20/24 18:43, VanguardLH wrote:
>>>> T <T@invalid.invalid> wrote:
>>>>
>>>>> AllanH wrote:
>>>>>
>>>>>> T <T@invalid.invalid> wrote:
>>>>>>
>>>>>>> Is https://vulndetect.com a dead program?
>>>>>>>
>>>>>>> I can find no place on their web site to order.
>>>>>>> I have written them several times and they ghost me.
>>>>>>> Is this company out of business?
>>>>>>
>>>>>> It's not a dead program in my book.
>>>>>> It's my favorite Updater program currently.
>>>>>> It's free for personal use. It does require registration with an
>>>>>> email
>>>>>> address.
>>>>>> Their Forum and the Download link are at https://vulndetect.org/
>>>>>
>>>>> Downloading it is not a problem.  But how do I purchase it?
>>>>
>>>> Maybe at winston's cite of their price quote request page:
>>>>
>>>> https://secteer.com/request-quote/
>>>>
>>>> Since they won't divulge prices at their web site, quoting a price
>>>> depends on how deep is your pocket; i.e., charge what a customer is
>>>> willing to bear.  They probably want to license by seats at the same
>>>> organization, so you probably can't use it as a toolbar utility
>>>> wherever
>>>> you want.  Your customers will have to buy it.
>>>>
>>>>   From https://pitchbook.com/profiles/company/515109-07#overview, I
>>>> only
>>>> see investment of seed money back in Nov 2022.
>>>
>>> The third time I did request a quote, a sale man
>>> responded.  A one to 20 seat license is 900 U$D a year.
>>> Way out of my customer's range.
>>>
>>> I asked the salesman what he could do for seven seats
>>> of the personal edition.  I am still waiting.
>>>
>>> I see Vicarius wants $5 per seat per month
>>> https://www.vicarius.io/pricing
>>> or $420 /yr for seven seats.  Much better.
>>>
>>> All I need to know is when a program has a
>>> vulnerability/critical update pending and
>>> nothing else.  Automatic patches, etc. is out.
>>>
>>> So I am still looking.
>>>
>>> My head is spinning that SUMo closed.
>>>
>>> You guys know of anything that might fit the bill?
>>
>> "Download SecTeer Personal VulnDetect - an alternative to the long lost
>> Secunia PSI"
>>
>> Wasn't Secunia PSI free?  If so, for Vulndetect (Personal) to be an
>> alternative means it should also be free.
>
> It is only free to non-business use.  My customer is a business.
>
>> Secunia's PSI got dropped, and users dropped it because it was free.
>> Secunia is still in the vulnerability analysis market.  You might want
>> to get a quote from Flexera (they acquired Secunia in 2015) on their
>> Software Vulnerability Manager to see if it is cheaper or more expensive
>> than Vulndetect.
>>
>> If you thought $900 (per year? per seat?) was expensive, vulnerability
>> analysis and protection isn't cheap often running $1000 to $4500 per
>> year.  Take a look at Astra's prices:
>>
>> https://www.getastra.com/pentest/pricing
>>
>> With PSI, Sumo, and other freebies, all they were was software update
>> checkers.  They'd see if you were missing updates.  Since the OS and
>> most apps already have their own update checkers, PSI and the others
>> lost their importance.  Vulnerability testing and analysis, on the other
>> hand, is a hell of lot more testing, and takes a lot more work on your
>> part to understand, and covers the high-tech support needed for those
>> products and services.  They really aren't do-it-yourself-alone software
>> updaters.
>>
>> I don't remember PSI *ever* performing vulnerability testing, just
>> software updating.  Well, hell, there are lots of software update
>> checkers.  Even CCleaner has a very basic Software Update checker (as
>> long as you don'g disable outbound connections through a firewall as I
>> did to eliminate Avast's addition of their adware platform to CCleaner).
>>
>> https://www.lifewire.com/free-software-updater-programs-2625200
>>
>> You mentioned uCheck.  Yep, just another software update checker.
>> Nothing to do with vulnerability testing and analysis.  Between Windows
>> having its own update checking (which I disable until I prepare, like
>> assigning the time, saving an image backup, and having initiative to
>> bother changing the state of the OS), and almost all programs I've
>> installed having their own update checker (although some just alert
>> there is a new update rather than downloading and installing it), I have
>> found no need for a software update checker tool.  Those promote you to
>> make more changes than really needed for your setup.
>>
>> You don't let your customers do the software updates themselves, right?
>> That's what they pay you for.  If you give them software updaters,
>> they'll fuck up their setups, and you'll have to undo their screwups.
>> Or maybe that's your covert agenda to generate more work and revenue.
>
>
> PCI-DSS-v4-0-SAQ-C-r1, 6.3.3, pg 32
>      6.3.3. pg 32: All system components are protected from
>      known vulnerabilities by installing applicable security
>      patches/updates as follows:
>
>      • Critical or high-security patches/updates (identified
>      according to the risk ranking process at Requirement
>      6.3.1) are installed within one month of release.
>
> I "only" have to install "Critical or high-security patches/updates".
>
> An update checker, such as the now defunct SUMo which
> also shows "Critical" security updates, is exactly
> what I am after.
>
> And the market is blurring "Vulnerability" with "Critical or
> high-security patches/updates" and "Exploits".  Those big
> packages are much different than update checkers, which only tell
> you what is out of date.  The big packages also check for
> "Exploits", which they also call "vulnerabilities".
> And make a Google search a nightmare.
>
> But SUMo and the non-business version of VulnCheck tell
> you if there is also a security (blurring the word
> "Vulnerability") update pending.  And that is what I
> am after.
>
> Ucheck only tells you if there is an update, which does
> also cover security and feature updates.  For the
> extraordinary price, I will have to just live with it.
>
> I do not like wasting my customer's money on updates that are
> not required by PCI.  But it is going to be way cheaper
> that VulnCheck, so I should stop being a perfectionist.

VulCheck just sent me this:

For just scanning and vulnerability insights you will be
looking at 400 USD per year.

UCheck would be $84 / yr.

The difference would be made up in less than 3-1/2 hours
of my labor install unnecessary updates.

So hhhhhhhmmmmmm.

T <T@invalid.invalid> wrote:
[...]

> An update checker, such as the now defunct SUMo which
> also shows "Critical" security updates, is exactly
> what I am after.

I haven't used them, but someone mentioned Avast, which made me
remember that Avast had some kind of update checker.

So I went to the 'For business' section on avast.com and as I
understand it, you could get/use 'Avast Business Patch Management' at
$16.42 per seat per year (discount for higher numbers of seats).

'Patch Management'
<https://www.avast.com/en-us/business/products/patch-management#pc>

AFAICT, you do not need to run/use/buy the Antivrus product, but you
need to have it installed:

"Avast Business Antivirus is required to be installed as part of your
Patch Management installation. Avast Business Antivirus will be placed
into expired mode. You can start a trial or purchase Avast Business
Antivirus within the Business Hub."

Frank Slootweg wrote on 2/22/24 6:11 AM:
> T <T@invalid.invalid> wrote:
> [...]
>
>> An update checker, such as the now defunct SUMo which
>> also shows "Critical" security updates, is exactly
>> what I am after.
>
> I haven't used them, but someone mentioned Avast, which made me
> remember that Avast had some kind of update checker.
>
> So I went to the 'For business' section on avast.com and as I
> understand it, you could get/use 'Avast Business Patch Management' at
> $16.42 per seat per year (discount for higher numbers of seats).
>
> 'Patch Management'
> <https://www.avast.com/en-us/business/products/patch-management#pc>
>
> AFAICT, you do not need to run/use/buy the Antivrus product, but you
> need to have it installed:
>
> "Avast Business Antivirus is required to be installed as part of your
> Patch Management installation. Avast Business Antivirus will be placed
> into expired mode. You can start a trial or purchase Avast Business
> Antivirus within the Business Hub."
>
The current approach is akin to operating in the dark ages.
Business customer's device being managed by an outside source should be
treated as endpoints allowing patch management and vulnerability software
to provide the features to update the devices.
e.g. Action1 free for the first 100 endpoints.
<https://www.action1.com/free-edition/>

<https://www.action1.com/>

--
....w¡ñ§±¤ñ

Frank Slootweg <this@ddress.is.invalid> wrote:

> T <T@invalid.invalid> wrote:
>
>> An update checker, such as the now defunct SUMo which also shows
>> "Critical" security updates, is exactly what I am after.
>
> I haven't used them, but someone mentioned Avast, which made me
> remember that Avast had some kind of update checker.
>
> So I went to the 'For business' section on avast.com and as I
> understand it, you could get/use 'Avast Business Patch Management' at
> $16.42 per seat per year (discount for higher numbers of seats).
>
> 'Patch Management'
> <https://www.avast.com/en-us/business/products/patch-management#pc>

They also have a driver update checker, too.

https://www.avast.com/en-us/driver-updater#pc
($44/year subscriptionware)

I don't use 3rd-party update checkers, so I have no idea how this one
works other than it focuses on drivers, not apps. They have a separate
app update checker noted at:

https://www.avast.com/c-software-updater-tool

They mention it is an integrated feature in their Avast One product, but
it might be available separately. Couldn't tell if it is integrated
with their Essential (free) or payware version of Avast One. The
download link point to a file called:

avast_one_free_antivirus.exe

So, I suspect to get their software update checker has you get their
free Essential edition of Avast One.

VanguardLH <V@nguard.lh> wrote:
> Frank Slootweg <this@ddress.is.invalid> wrote:
>
> > T <T@invalid.invalid> wrote:
> >
> >> An update checker, such as the now defunct SUMo which also shows
> >> "Critical" security updates, is exactly what I am after.
> >
> > I haven't used them, but someone mentioned Avast, which made me
> > remember that Avast had some kind of update checker.
> >
> > So I went to the 'For business' section on avast.com and as I
> > understand it, you could get/use 'Avast Business Patch Management' at
> > $16.42 per seat per year (discount for higher numbers of seats).
> >
> > 'Patch Management'
> > <https://www.avast.com/en-us/business/products/patch-management#pc>
>
> They also have a driver update checker, too.
>
> https://www.avast.com/en-us/driver-updater#pc
> ($44/year subscriptionware)
>
> I don't use 3rd-party update checkers, so I have no idea how this one
> works other than it focuses on drivers, not apps. They have a separate
> app update checker noted at:
>
> https://www.avast.com/c-software-updater-tool
>
> They mention it is an integrated feature in their Avast One product, but
> it might be available separately. Couldn't tell if it is integrated
> with their Essential (free) or payware version of Avast One. The
> download link point to a file called:
>
> avast_one_free_antivirus.exe
>
> So, I suspect to get their software update checker has you get their
> free Essential edition of Avast One.

Yes, I know about Avast's free Software Updater, etc., but 'T' needs a
solution for commercial businesses, so that's why I looked at the 'For
business' section on avast.com.

FTR, I also don't use 3rd-party update checkers for my private
systems, not for software/programs/'apps'/<whatever> and certainly not
for drivers.