What is SAINT?
SAINT is the Security Administrator's Integrated Network Tool.
It is used to non-intrusively detect security vulnerabilities on any
remote target, including servers, workstations, networking
devices, and other types of nodes. It will also gather
information such as operating system types and open ports.
The SAINT graphical user interface provides access to
SAINT's data management, scan configuration, scan
scheduling, and data analysis capabilities through a web browser.
Different aspects of the scan results are presented in
hyperlinked HTML pages, and reports on complete scan results can be generated and saved.
How does it work?
SAINT begins a scan by detecting all live targets within
the given target list or range. Next, SAINT will launch
a set of core probes to run against each target. Which
core probes to run depends upon the scanning level selected.
The data from the probes is used by SAINT's inference
engine to schedule further probes and to infer vulnerabilities and other information based on rule sets.
Data is logged to a file in a plain text format which can
be interpreted by SAINT's data analysis and reporting
modules to present the results in an easily readable fashion.