Vulnerability Assessment TechnologySecurityMetrics Vulnerability Assessment is an affordable and scalable Web service to audit global networks for vulnerabilities. Designed for the Internet, SecurityMetrics provides advanced vulnerability technology to identify network security exposures and offer remedies before attackers can capitalize on these weaknesses. Network audits can be pre-scheduled for regular testing or run on-demand to test network configuration changes. Alerts may be sent automatically whenever the risk of a device increases. Full-service offerings are available where SecurityMetrics staff manually verifies all new security weaknesses automatically and telephones your IT staff for immediate notification of new security issues. No other company offers the flexibility and affordability of SecurityMetrics Vulnerability Assessment. SecurityMetrics vulnerability assessment uses five security modules to thoroughly test your systems. SecurityMetrics vulnerability assessment system is inference based. It automatically determines all services running on each server and automatically runs the appropriate vulnerabilities from the SecurityMetrics Vulnerability Knowledgebase. Inference-based Vulnerability Assessment does not require user configuration and testing is fast and thorough. Every SecurityMetrics Vulnerability Assessment includes all five security testing modules to thoroughly evaluate your systems: - Port Scan of 20,000-65,535 TCP ports - Vulnerability Tests for over 3,600 security weaknesses - Mail Proxy Check to determine if SPAM is being sent from your server - Weak Username/Password Check tries 698 common default username/passwords - Website Spidering analyzes your website for Cross-Site-Scripting & HTML problems SecurityMetrics Inference-based Vulnerability Assessment Engine requires no configuration to perform thorough, efficient testing of your servers. A number of options may be enabled if you wish to improve the accuracy of your tests. These options will increase the length of time required to complete each test: - Scan up to 65,535 ports if your systems use services on high ports - Enable Destructive Denial of Service (DoS) testing - Add email notification for a number of recipients for automatic testing notification See the complete list of vulnerabilities SecurityMetrics is testing for today. SecurityMetrics Vulnerability Assessment tests for the following types of security weaknesses: Backdoors CGI Abuses CISCO Default Usernames/Passwords Default Unix Accounts Denial of Service File Transport Protocol (FTP) Finger Firewalls Gain Remote Shell Gain Root Remotely General Mail Proxies/Open Relays Miscellaneous Network Information System (NIS) Netware Peer-To-Peer File Sharing Port Scans Remote File Access Remote Procedure Calls (RPC) SMTP Problems Simple Network Management Protocol (SNMP) Settings Useless Services Website Attacks Website Spidering Windows Windows: User Management « Back |