GASP Enterprise Suite
August 01, 2003
Attest Systems, Inc.Product:
$17 per PC
- Ease of Use:
- Value for Money:
- Overall Rating:
Very detailed information gathered from client machines, great reporting.
A lot of thought, time and effort is required to set up the application.
A great tool in the right hands, but not for the timorous.
GASP is probably most famous for being the auditing software of choice for the Business Software Alliance. A free download of a version of this software is available on its web site. However, it can only audit up to 100 PCs and is time-limited. The version we reviewed is very much angled at the enterprise managing thousands of systems.
New to version 6.5 is the ability to list MP3 files found on audited systems, as well as improved software suite recognition and license tracking.
The suite has a number of different components, including GASP SQL Tools, GASP eAudit, GASP Report, GASP Net and GASP Audit - all of which work together to provide the necessary information on what is installed where.
To get the main Enterprise application going requires connecting to an existing MS SQL Server 2000 or 7.0. The OS also has to be Service Pack 3 or greater. Hardware requirements vary, so the bigger the enterprise the bigger the server required to keep track of the database, as you might expect.
Going through the installation guide, we soon realized that this tool is not for the novice, as database creation can be tricky. Once the database is set up and the GASP SQL tools installed, then comes the installation of the auditing and report tools.
There are three flavors of auditing to cope with both networked, remote networked and standalone machines. The handiest tool must be eAudit, which can gather information about client workstations remotely using TCP/IP connections. It still needs someone to go to the client workstation to install the client application though. It would have been cleverer to have this pushed out to the workstation automatically, and out of the box. The vendor says this can be done if the administrator knows how to use SMS or write custom log in scripts.
Once installed, the clients can be set to run audits on demand or at pre-set intervals. It took a while to search through the machine but it came up with a lot of detailed information - all of which can be displayed in reports and manipulated through queries in SQL.
The product is very thorough and can give detailed information about what hardware and software is contained in the enterprise.
However, getting started is not for the faint-hearted and requires a lot of effort. The vendor says the new release will also incorporate significantly enhanced features.
SC Webcasts UK
Information Security Manager
Infosec People - Hammersmith, West London
Junior Penetration Tester, Hertfordshire, to £35k + benefits
Infosec People - England, Hertfordshire
Cyber Security Architect
CYBER EXECS - London (Greater)
SOC Analyst, Aldershot, £47-56k + package
Infosec People - Hampshire, England, Aldershot
Senior Security Engineer
Loveworklife Recruitment - United Kingdom
Sign up to our newsletters
SC Magazine UK Articles
- Tesco Bank allegedly ignored warnings of hack from Visa
- Investigatory Powers and Digital Economy Bills could threaten economy
- Updated: A million German routers knocked offline by failed Mirai botnet attack
- Gooligan ad fraud malware infects 1.3M Android users, installs over 2M unwanted apps
- Microsoft update left Azure Linux virtual machines open to hacking
- SC Awards Europe 2016 winners announcements!
- ISIS radicalises 'lone wolves' through strong social media presence
- Updated: How will Brexit affect the cyber-security industry in UK and Europe?
- ICYMI: CEO Sacked; MS Zero-day; Passwords dropped; Ransomware wild, charging hack
- 9.2 million medical records for sale on darkweb
- ICYMI: Tesco warned; IP Bill threatens economy; German routers offline; Azure trojan; Gooligan fraud
- Data centres are on the move - where will they end up?
- 90% of ITDMs believe IAM is crucial to digital transformation success
- Research: Hacked companies could see customer exodus if breached
- Misconfigured drive exposes locations of explosives used by oil industry