VULNERABILITY MANAGEMENT

eEye Digital Security

Retina Network Security Scanner 

Retina identifies known security vulnerabilities and assists in prioritising threats for remediation. Featuring fast, accurate, and non-intrusive scanning and the industry's most comprehensive vulnerability database, users are able to secure their networks against even the most recent of discovered vulnerabilities. Security professionals can also leverage Retina to enforce internal security policies and standards-based registry settings through custom policy audits. The vast majority of Retina’s audits can be conducted without administrator rights, making Retina the easiest scanner to use, and the most cost-effective to deploy.

Features

Best Practices Vulnerability Assessment Workflow
Retina guides users through the logical steps of discovering assets, auditing known vulnerabilities and configuration issues, recommending remediation actions and reporting on the entire vulnerability management process.

Accurate, Fast and Non-Intrusive Scanning Technology
Recognised as the fastest, most accurate vulnerability assessment solution available, Retina can scan an entire Class C network in less than 15 minutes. It scans every machine on your network, identifying all types of operating systems, networked devices and third-party or custom applications in record time, giving security administrators a time advantage over attacks leveraging known vulnerabilities. What’s more, Retina does not use exploit code when auditing the systems, allowing for completely non-intrusive scans across the network. Retina will never impact applications or services through the course of vulnerability auditing.

Comprehensive, Frequently Updated Database
The Retina vulnerability database is maintained daily by the eEye Research Team, leveraging its years of expertise and innovative vulnerability discovery methodology, to ensure the most up-to-date vulnerability auditing. Typically audits for newly announced vulnerabilities are added within 4-6 hours. Furthermore, Retina can be configured to automatically check for new audits at the beginning of every scan session.

World Renowned Research Team
eEye has discovered more high-risk vulnerabilities than all other research groups combined, no other security vendor can match the technical expertise of the eEye Research Team This expertise translates into a distinct advantage for our customers, buying them time to scan for even the newest of known vulnerabilities.

Enterprise-Wide Asset Discovery
Retina discovers all networked devices, including operating systems, applications, databases and wireless access points– including the presence of unauthorized services and applications such as malware. Retina’s advanced operating system detection incorporates a sophisticated combination of Windows Registry, NetBIOS, ICMP and NMAP for the utmost in accuracy and definitive OS identification. Additionally, Retina has profiles for nearly 2,000 of the most commonly utilised ports, and allows for scanning of all 65,536 ports on a network device, easing the detection of covertly placed Trojans, spyware and unconventional services.

Multiplatform Support
Retina provides the most extensive platform support of any network security scanner, including support for Windows, Linux, Solaris, Cisco IOS, UNIX, routing hardware, OpenVMS and any other operating systems that communicate via TCP/IP. Retina’s multiplatform support extends beyond Windows to provide local vulnerability assessments of UNIX, Linux, Cisco, and other non-windows devices, including MacOS. This in-depth analysis across a heterogeneous networks allows security and IT professionals to get a comprehensive view of vulnerabilities that require local file or setting checks. Additionally, security administrators can create custom audits for corporate Linux distributions or check for approved settings on Cisco routers.

Advanced Scheduling Capabilities
Retina's scheduler function allows you to set audits to run on a regular basis to periodically check for vulnerabilities, in accordance with any pre-defined security policies or regulations. Administrators can schedule and run multiple scans concurrently, allowing them to target multiple targets (business groups, subnets, etc.) for scanning at one time. Because Retina is non-intrusive, you can pre-schedule your scans without the risk of unplanned network downtime.

Customisable Reporting
Retina's interface provides multiple views and options to sort discovery and vulnerability data. Retina also offers complete technical and executive reports, as well as customisable reports that can be tailored for specific content. Retina’s targeted remediation reporting allows you to create targeted reports to identify specific vulnerabilities for remediation, a considerable time saver when faced with a virus or worm outbreak which is targeting a known vulnerability. The vulnerability in question can now be immediately identified and its impact quantified.

Remediation Prioritisation
Retina allows for the prioritisation of remediation efforts through its intuitive user interface, by categorising vulnerabilities according to risk level. Retina also allows for integration with third party remediation automation solutions such as help desk and ticketing systems, further leveraging those investments.

Custom Security Audits
Retina users can create custom audits to ensure corporate security policies such as required anti-virus deployments, compliance with application version control, allowable ports, file sharing, P2P, etc., are enforced. Custom audits can also be created to enable regulatory compliance requirements.

Smart Protocol Scanning
Retina reconciles the input/output data on each port to determine which protocols and services are actually running, including SSL. In this way, Retina makes adjustments for custom or unconventional machine setup. Retina will never assume a service running on a given port.

Open Architecture for Third Party Application Integration and Advanced Customisation
Retina's open architecture allows you to develop vulnerability tests and auditing modules tailored to your organisation's specific requirements. You can also define the included audits and make custom changes to the Retina interface. Retina’s documented set of APIs simplify the process of building and integrating custom scans in your preferred programming language. Retina’s open architecture also allows for easy integration with third-party applications such as event managers, system management and framework solutions.

Specifications

Windows NT 4.0 SP6a/2000/XP/2003
Internet Explorer Version 5.0 or higher
256 MB of memory
40 MB of free disk space