VMware

Vulnerabilty Assessment Appliance

Average Customer Rating
0
(0 reviews)

Vulnerability Assessment Scanner from Rapid 7 on a virtual appliance.

Submitted by: SecuritySifu

Tools

Main Vulnerability Management Scree

Appliance Type

Community

Description

Security Vulnerabilities Present On Your Internet Connection?

Is your security vendor simply rewriting the reports delivered out of the open-source tool Nessus? If so, you're view of your security posture is clouded. Try this virtual appliance and gain see for yourself, or feel free to contact me directly for a free vulnerability assessment / free security assessment. Don't be fooled into a false sense of security.

“Integrating a quality vulnerability management application into a Vmware based appliance makes a lot of sense. With the focus on being green, reducing server sprawl, and continued power concerns in many datacenters, utilizing existing bare metal to house the application allows for redundancy, scalability, and maximization of existing resources. The Nexpose application gives me great executive data while dramatically mitigating the false positives we find with other commercial and open-source scanners,” said Jeromie Jackson, TIG's Senior Security Architect & developer of the appliance. The Nexpose application from Rapid7 is one of the core applications TIG utilizes for their professional services work. There are plans for further appliance development- many tools support VMware but have not yet reached maturity to where they have been productized as virtual appliances. Vendors are welcomed to contact Mr. Jackson for other such developments.

Features & Benefits

* Accurate scan results - NeXpose uses built-in expert system technology to probe systems and produce definitive proof of the vulnerabilities discovered. This reduces false positive reporting to less than 1%, providing faster and more accurate reporting across the entire enterprise network.

* Asset groups with access control - NeXpose enables you to create arbitrary collections of systems and devices for reporting. This allows you to divide security responsibilities across the enterprise and assign information access to specific users, involving more users in network security.

* Automated ticketing and remediation workflow - NeXpose comes with a built-in ticketing system to help you efficiently manage the remediation process. The extensive remediation report gives detailed information about how to fix vulnerabilities, helping system administrators quickly fix critical exposures.

* Risk analysis - NeXpose delivers an accurate and thorough analysis about how vulnerabilities in one system can affect another, giving you up-to-date insight into how vulnerabilities impact the entire enterprise.

* Compliance & Policy Checking - NeXpose produces a policy compliance report that enables you to determine which systems in your enterprise network are violating governmental regulations (SOX, HIPAA, GLBA), industry-recommended security policies (PCI), and corporate standards and best practices.

* Auto-update - NeXpose regularly updates its extensive vulnerability database automatically by accessing the Rapid7 servers for the latest information on new vulnerabilities, preventing you from inadvertently leaving your network exposed.

* Customizable reports - NeXpose provides extensive information on vulnerabilities in reports that can be customized with the right information at the right level for any person responsible for security within your organization.

Pricing

Free

Tags & Keywords

Vulnerability Assessment, IT Security Assessment

Solution Categories

Identity, Access, Vulnerability Management, Secure Content and Threat Management