McAfee Vulnerability Manager
May 01, 2009
£10,150 for 1,000 IP addresses
- Ease of Use:
- Value for Money:
- Overall Rating:
- Strengths: Solid feature set. Installed on a hardened appliance
- Weaknesses: Initial configuration is a little awkward
- Verdict: A venerable tool with lots of features, but requires real effort to set up and customise
McAfee Vulnerability Manager is a full-featured, comprehensive network vulnerability scanner and auditing tool. It can actively discover and scan network assets across the enterprise, using its very versatile scanning engine.
While it does come as a hardened appliance, the software on it needs to be set up before use. The appliance comes with Windows Server 2003, Microsoft SQL Server 2005 and the applications already installed. To get it running, we had to go through a few setup wizards to customise it. Setup was confusing in parts, especially after setting up the various database accounts and then trying to access databases.
We had trouble figuring out which accounts to use, because there were so many. After setup, administration and scanning are done through the main console. This can be accessed via a standalone application or via a web GUI. The console is well organised, has a clean look and is intuitive to navigate. The dashboard also features many tabs that give a quick overview of vulnerability and risk statistics.
This product is a solid vulnerability scanning tool that provides a lot of risk and vulnerability data. It allows for reports to be created from regulatory compliance templates, including FISMA, PCI DSS, ASCI 33, Basel II, Bill 198, CobIT, GLBA, HIPAA, ISO 20071, NIST SP 800-68, SANS-FBI Top 20 and SOX. Scans are easy to create and can be tuned and customised.
Documentation is in the form of several PDF manuals, including an installation guide, console reference guide, administrator guide and user guide. All are easy to follow, with many screenshots and step-by-step configuration instructions.
McAfee offers standard support at no additional cost for the first year. The gold software support provides 24/7 phone assistance, proactive notifications and daily product updates. Other support options are available at an additional cost. There is also a support area on the website, with various technical resources.
At a price of approximately £10,150 for 1,000 IPs, Vulnerability Manager is good value for the money. It has a solid feature set, which after initial setup, is easy to use and highly configurable.
SC Webcasts UK
Information Security Manager
Infosec People - Hammersmith, West London
Junior Penetration Tester, Hertfordshire, to £35k + benefits
Infosec People - England, Hertfordshire
Cyber Security Architect
CYBER EXECS - London (Greater)
SOC Analyst, Aldershot, £47-56k + package
Infosec People - Hampshire, England, Aldershot
Senior Security Engineer
Loveworklife Recruitment - United Kingdom
Sign up to our newsletters
SC Magazine UK Articles
- Tesco Bank allegedly ignored warnings of hack from Visa
- Investigatory Powers and Digital Economy Bills could threaten economy
- Updated: A million German routers knocked offline by failed Mirai botnet attack
- Gooligan ad fraud malware infects 1.3M Android users, installs over 2M unwanted apps
- Microsoft update left Azure Linux virtual machines open to hacking
- SC Awards Europe 2016 winners announcements!
- ISIS radicalises 'lone wolves' through strong social media presence
- Updated: How will Brexit affect the cyber-security industry in UK and Europe?
- 9.2 million medical records for sale on darkweb
- Microsoft Office 365 hit with massive Cerber ransomware attack, report
- ICYMI: Tesco warned; IP Bill threatens economy; German routers offline; Azure trojan; Gooligan fraud
- Data centres are on the move - where will they end up?
- 90% of ITDMs believe IAM is crucial to digital transformation success
- Research: Hacked companies could see customer exodus if breached
- Misconfigured drive exposes locations of explosives used by oil industry