Network security management software provides a unified solution to protect networks and computer systems against security threats. These software solutions are capable of assessing an entire network infrastructure for vulnerabilities in web applications, operating systems, network devices, computers and servers. In this article we will review some top rated vulnerability assessment software that would be of interest to security consultants and businesses of all sizes.
Retina Unified Vulnerability Management
Retina provides vulnerability assessment, unified network configuration and vulnerability scanning. This product was developed by eEye Digital Security and is designed to assess network devices, operating systems, applications and databases.
Retina can also score each security risk, and advise network security administrators on steps that can be taken to fix problem areas in an effort to bring the organization’s security posture into compliance with broadly accepted industry standards. This security software also provides protection against targeted email and Internet attacks that can compromise data and computer systems.
GFI LANguard Network Security Scanner
This network security management software addresses the so-called three cornerstones of network security, namely: patch management; network auditing and vulnerability assessment.
The security software scans the networks to discover wireless access points, assets (computers, servers etc.), the operating systems and applications that they are running. It then assesses the level of vulnerability of each asset by collecting information on the applied and missing security patches, open ports, active services, registry key entries, etc. LANguard is available in freeware version for up to 5 IP addresses.
IBM Security Solutions
ISS is a threat mitigation solution that is designed to help IT security personnel improve the security posture of their organization and its network, while at the same time helping to reduce costs, improve service delivery, and manage risk in a dynamic network infrastructure. This Internet security scanner was first made available in 1992 as a small open source scanner from Christopher Klaus, but is now part of IBM’s suite of security risk management solutions.
This suite of security products from IBM allows network security professionals the ability to assess current vulnerabilities, take steps to mitigate those risks, monitor the network, and manage the application of the latest security patches. It accomplishes all of these while at the same time lowering the costs of employing the latest security expertise, processes and technologies.
Core Impact Pro
Core impact Pro is a comprehensive computer and network security software solution. It has a comprehensive set of automated network penetration testing capabilities. Core security, the makers of Core Impact, claims that their network security software “is the only penetration testing software that allows you to see your network, endpoint, email-user, web application and wireless security as an attacker would.” Those are big claims but the software’s impressive list of features and capabilities will no doubt impress many. Some of Impact’s features include the ability to:
- Test Web application security
- Configure and test the effectiveness of IPS, IDS, firewalls and other defensive infrastructure
- Confirm system upgrades and patch application
- Identify exploitable OS and services vulnerabilities
- Measure end-user responses to phishing, spam and other malware threats
- Establish and maintain an audit trail to manage vulnerabilities
- Schedule tests to run automatically
- Identify at-risk wireless network access points
- Trace attack paths
Core Security Technology seems to target their products and service at large organizations, governments and security consultants; therefore, it should come as no surprise that their products cost thousands.
Assessment, Mitigation and Network Protection
Security vulnerability assessment and management software, of the caliber of those we discussed here, have extraordinary capabilities to manage security risks even on large networks. While some of these solutions costs thousands and are marketed at large organizations, governments and security consultants, there are cheaper security software options available for small operations as well.
In any case, IT security managers should find the feature-set of these security software packages sufficient to discover security risks, recommend measures to deal with those threats, report security events and audit the security posture of the organization.
Steve McFarlane - I am a professional freelance writer who is passionate about bringing quality and relevant content to my audience of readers. I strive to ...
Join the Conversation