|
What is Sunbelt Network Security Inspector?
Windows IT Pro Magazine readers chose SNSI as their Favorite Vulnerability Scanner in 2005 and 2006! Earlier reviews gave SNSI got 4 out of 5 stars, and they said: "Excellent vulnerability descriptions and remediation instructions; low cost... user-friendly."
Your organization needs to comply with more and more security regulations. Example: The new Credit Card Security Standard.
You can't close the door on hackers if you don't know which one is open. That's why we've designed Sunbelt Network Security Inspector (SNSI): A low-cost, quick-install, fast-result vulnerability scanner that uses a top quality, commercial-grade database with well over 4,000 ranked multi-platform vulnerabilities. The new V1.6 can now scan by Windows machine, IP-range, Port and Service and supports Windows, MacOSX, Unix, Linux and several other types of devices. Join the hundreds of administrators that grabbed their chance to get a high-end scanner licensed by admin, not by IP.
Prioritized vulnerability reports with export options
Provides detailed and easy-to-follow instructions on how to fix holes fast, so you can focus on the
most critical security issues. The new V1.6 delivers more informative scan results but also
additional reporting capabilities. SNSI Network Security Software now supplies high-level scan results that provide short
descriptions of each scan for quick reference. The reports have been re-categorized for easier use
and you now have the ability to easily export reports to multiple formats such as pdf, xls, doc,
html, xml and DB.
Configurable scans
Create your own scans or use predefined scans such as "high risk" or the "SANS top 20".
Version 1.6 expands the scan to the following platforms:
- Windows Server 2003
- Windows 95 / 98 / Me / 2000 / XP Pro
- Windows NT 3.51 / 4.0
- Windows Embedded XP
- Red Hat® Linux®
- Red Hat Enterprise Linux 2.1 and later
- Red Hat Fedora
- Mandrake Linux™
- MacOSX
- SUSE Linux™
- Sun™ Solaris™ 2.5.1 and later
- HP-UX 10, 11 and later
- HP Printers
- Cisco® Routers
- Cisco IOS
- Cisco CATOS
- Cisco VPN
- Cisco PIX Firewall.
Easy, all-new interface
The easy, all-new interface has a short learning curve: just point, right-click and QuickScan.
SNSI is licensed per Administrator!
SNSI is licensed per Administrator and lets you scan unlimited machines and/or IP addresses! This functionality is equivalent to products 10 times more expensive. SNSI won't make a hole in your budget, so you can afford to be proactive without compromises. Read more below about the enormously attractive Traveling License price. If you already run a scanner, you want SNSI as a secondary scanner, just to make sure you catch everything.
Scan your Network... Get prioritized reports... Patch Holes Quickly... Report great results to management.
SNSI uses a very comprehensive vulnerability database. SNSI automatically detects 4,000+
vulnerabilities, Reporting capabilities (Crystal Reports) range from high-level, consolidated
management reports to detailed reports used by network admins. SNSI has an easy to use GUI, the
learning curve is 5 minutes max.
SNSI Network Security Software uses the latest Mitre Common Vulnerabilities and Exposures (CVE) list of computer
vulnerabilities and contains the latest SANS/FBI top 20 vulnerability list. It also uses the latest
CERT, CIAC and FedCIRC (Department of Home Security) advisories.
Features:
- Extremely complete, up-to-date Vulnerabilities Database
- Industry standard CVE identification scheme
- Complete Network Discovery (including hidden machines)
- Flexible and Scalable
- Analyze Entire Domain
- Analyze Single Machine
- Multiple Machine Selection
- Retest Vulnerabilities
- Reporting (Executive Summary, Network Summary, Vulnerability Summaries, Simple Lists, Detailed Lists, Machine Vulnerability Lists)
- Frequent Vulnerability Database Updates
- Configuration File and Report Templates
- Detailed Information Display (Name, Description, Solution, Risk Level, Related Web Links, Advisories, Knowledgebase Articles, CVE ID)
- Scan and analyze an entire network domain and/or a single machine/IP address
- Select multiple machines/IP Addresses within a domain, if a subset analysis is desired
- Select or ignore specific vulnerabilities via configuration files
- Search for specifically related vulnerabilities, group them and scan for them
- Receive an analysis of vulnerabilities, with detailed information relating to the name, description, and risk level of each vulnerability
- Eliminate the vulnerability using recommended solutions with links to related websites and knowledge-base articles
- Retest corrected vulnerabilities immediately and be confident that vulnerabilities have been eliminated
- Track vulnerability trends via analyses comparing current and previous assessments
- Customize network status reports for management and technical personnel with comprehensive reporting of selected machines or entire domains
- Stay current with newly discovered threats and get regular functionality enhancements by downloading new database updates
Why purchase SNSI Network Security Software?
- SNSI gives you great scalability and flexibility. Assess a single machine or your entire domain and scan for just one hole or all of the vulnerabilities contained within the database. This allows you to match the tool to your individual network without additional complexity or cost.
- SNSI has a great, intuitive GUI: practically no learning curve and fast results. Just
right-click and choose "QuickScan".
- The SNSI database is kept up-to-date by a team of advanced security specialists. The SNSI
Operations Lab eliminates false positives to a very high degree: each vulnerability fix is
tested thoroughly.
- SNSI gives you frequent vulnerability database updates. That allows you to view the latest
information available to contend with the aggressive and ever-changing hacker methods.
- A new, easy-to-use reports function allows you get the info when you need it. This feature
provides the ability for all levels in your organization to view, assess, and address known risks
and implement policy accordingly across your infrastructure. The reports function contains canned
reports, but also allows you to create individual reports. You can select, view, and print
previously saved report files, canned reports, or any Crystal Report available.
- SNSI comes in a so called 'travelling license' for consultants, for only $1,868.75. Did you
know you can get yourself a Traveling License for a year, which includes maintenance: tech support, updates, upgrades and vulnerability database updates? Compare that to other high-end scanners out there and you will see that this is a KILLER deal. As a matter of fact, having a world-class database available in a form like this is a no-brainer. Get all your security guys a SNSI Traveling License in their toolkit for this price.
What does SNSI do more than "free" products?
Some people asked us: "If I can scan missing patches for free, why pay for SNSI?"
Good question. Here's the answer. SNSI Network Security Software does much more than just check for patches that aren't
there. It looks at all the Windows OS flavors and scans both for patches and configuration issues.
Apart from that it looks at all MS applications, but also dozens of popular third party applications running on Windows. Better yet, it checks multiple machines with one scan (unlike WinUpdate on individual machines one at a time), and last but not least, SNSI finds holes before there are patches and explains workarounds until patches exist.
Just check this example list of vulnerabilities and you'll get the idea how thorough this
database is. It's quite literally 'military-strength' security scanning. You really get a
world-class security scanner when you buy SNSI.
- WS_FTP ASCII Directory Transfer Vulnerability
- WinZip MIME Vulnerability
- WFTPD Buffer Overflow Vulnerability
- Coulomb Dialer Detected
- Jeem Backdoor Detected
- Netsky-D Detected
- ZoneAlarm SMTP Processing Vulnerability
- Adobe Acrobat Reader XFDF Vulnerability
- SMB Client Security Signature Not Enabled
- SMB Server Security Signature Not Enabled
- Windows Media Services TCP Request Vulnerability (MS04-008)
- Outlook mailto URL Vulnerability (MS04-009)
- MSN Messenger File Request Vulnerability (MS04-010)
- Kernel Object Attributes Not Protected - W2K
- Symantec LiveUpdate Querying Host Vulnerability
- BlackICE SMB Heap Overflow Vulnerability
SNSI uses the latest Mitre Common Vulnerabilities and Exposures (CVE) list of computer incidents.
It also contains the latest SANS/FBI top 20 vulnerability list. SNSI also uses the latest CERT,
CIAC Microsoft and FedCIRC (Department of Homeland Security) advisories. If you had not noticed yet, SNSI is by far the most powerful scanner on the market today from a price/performance perspective. Test out SNSI on one machine right away, and you can get a key for 30-days unlimited testing! (instructions how to get your key are on the page after you fill out the download form.)
Sunbelt Network Security Inspector Hardware and OS Requirements
SNSI 2.0 requires .NET 2.0 to be installed.
Host Hardware Requirements
- 1 GB (2+ recommended, depending on number of targets scanned at one time)
- 20 GB free disk space
- 1024 x 768 Monitor res display
- Network access
- Console must be installed on Windows XP Professional SP2+ or Windows Server 2003 SP1+
- PDF Viewer to open reports
Administrative Requirements
- Administrative rights are required to install the product and scan the host or target machine
- The logon account being used to scan the target machine must be a member of that machine's
Administrators Group or a domain Administrators Group.
- Target machines must have an account in the Administrators Group
- Must have File and Printer Sharing for MS Networks enabled.
The requirements to scan RedHat machines are as follows:
- TCP/IP Network Protocol enabled and configured to respond to Ping command.
- The member of the host Administrators Group must authenticate against the target machine with an account that can execute the Red Hat command (rpm – qa, uname, tar), and read the ‘/etc' directory from the scanning machine.
- Secure Shell (SSH - 2.0 recommended), Secure Copy (SCP) and SFTP must installed.
- The Secure Shell daemon must be enabled and listening on the default port 22.
- The user has both read and write privileges to the user's home directory on the target machine.
- The target system is running and the network path to the target is not experiencing any problems - tracert target completes successfully.
Sunbelt Network Security Inspector Frequently Asked Questions
+ What’s new in SNSI 2.0?
The most obvious upgrade is the new UI, which is even easier to use and more intuitive for the user. Behind the scenes, we’ve gone to a new dbase structure using SQL Express, which adds speed and performance, but more importantly we have a new sanning engine. The engine gives us a tremendous boost in performance and capabilities, reducing scan times by a factor of 10+ in some cases, and allowing us to scan Vista machines (and preparing the way for Windows 7).
+ Why bother with SNSI when I can get MS scanners for free?
The Microsoft Scanners will scan for patches and some vulnerabilities. But what about an old copy of RealPlayer on a person's machine, which is a security risk? Or a best-practices type of security risk like the length of the password? SNSI scans for a multitude of third party vulnerabilities, multi platform.
+ Does SNSI detect patches, and which platforms does SNSI Support?
SNSI checks for known Windows related patches, including all the latest Service Packs and post-Service Pack patches, and patches for other third-party apps. It also checks for hot fixes associated with Windows Servers, and looks for roll-up patches. SNSI support all major platforms.
+ Does SNSI find viruses, worms, and Trojan Horses?
Yes. SNSI finds known virus files, worms, and Trojan Horses such as Code Red, and many others. There are dozens of denial of service programs (nuke and winnuke) that SNSI also detects. SNSI can determine if you are vulnerable to Microsoft Word macro viruses as well.
+ What certifications does SNSI have, and does SNSI speak "CVE"?
The database used in SNSI, has received Common Criteria (CC) certification effective April 9, 2003. CC is a rigorous international standard for information technology (IT) security evaluation and certification that is formally recognized and required in a growing international community. Since July 2002, this CC certification is a critical requirement for US government purchases as well as a growing number of other countries such as Australia, New Zealand, Canada, France, Germany, United Kingdom, Israel, Italy, Netherlands, and more. And SNSI does speak CVE as well.
+ Does SNSI work over the Internet? And can it also work not connected to anything?
SNSI works with TCP/IP, which works over the Internet. It recognizes machine names and NT domain names, as well as IP addresses. SNSI can analyze a machine over the Internet if the domain is recognized and you have Administrative privileges. SNSI will scan multiple domains using multiple credentials. In general, if you can see a machine through Network Neighborhood, you can assess that machine with SNSI.
SNSI will run on a machine that does not have Internet connectivity (a black box). When you click on 'updates' it will show you a URL that you can go to and download the update from another machine and then get it to your black box machine via a CD, e-mail, etc.
+ I'm a security specialist, so I'm a skeptic by nature. You claim your database is so strong. It takes many man-months to keep it in shape, How do you do it?
We OEM the vulnerability database from Patchlink,(now renamed to Lumension) which acquired the original Harris Corp STAT vulnerability product and database. Harris is a US$ 3 Billion concern specialized in Defense Contracting. Lumension Security, formed by the combination of PatchLink and SecureWave, is a leading global security management company. You can verify that Sunbelt is a Lumension OEM Partner here.
+ Does SNSI survey/check applications?
Yes. SNSI checks for vulnerabilities associated with Microsoft Server Applications, and apps like MS Word, MS Excel, Internet Information Server (IIS), ColdFusion, MS SQL Server, web browsers and many more third party applications.
+ Do I really need a dedicated machine for SNSI?
No, it is not necessary to run SNSI on a dedicated machine, with a correct configuration (AV, firewalls, etc) you are able to run it off any machine.
Sunbelt Network Security Inspector Download Evaluation
Note: A valid email address is required. When this form is submitted we will automatically send you
a confirmation email with instruction on downloading Sunbelt Network Security Inspector. If you do not receive our email within 5 minutes, please try
a different email address. Bolded fields are required.
Sunbelt Network Security Inspector Request Information
Please note that this form is not intended for support issues or online ordering. The information will
be sent to a Sunbelt Software Sales Representative who will contact you regarding your request for
more information about Sunbelt Network Security Inspector.
In order for us to contact you and promptly fulfill your request, please take a few moments to fill out this form.
NOTE: Fields marked in bold are required.
|
Do you have a feature request for Sunbelt Network Security Inspector?
