Hi,
I have been tasked with trying to figure out if the systems we use have any vulnerabilities. I need to set up a generic looking website that will look at the browser, OS etc. that the visitor to the site is using and list known vulnerabilities. The only thing I have found so far is Autopwn2 in Metasploit. It seems to be vary limited in that you have the browser go to a specific URL that will then go through a list of known vulnerabilities and when it finds one, try to attack the browser. What I want is:
1) To have a lot larger of a list and try all of them.
2) To NOT attack the browser. I simply want a list of vulnerabilities this browser, OS etc. has and what my options are.
Any advice?