Passive Vulnerability Scanner

1/1/2007
 

Product Information

Price:c£6,000

Product Rating

Features
Ease of Use
Performance
Documentation
Support
Value for Money
Overall Rating
For:Capabilities offer a powerful addition to active scanners. Strong reporting helps to gain full picture of all vulnerabilities in the enterprise
Against:Requires Tenable Security Center to be effective
Verdict:This passive scanner would be an important addition to any organisation’s active scan regime. It's also critical for compliance monitoring. Recommended

Related Group Test

The Tenable Passive Vulnerability Scanner (PVS) is a very interesting product. It is truly passive in that it does not perform active scans of any kind. It is, put simply, a very smart sniffer.

The solution depends for its usefulness on the way it collects and reports vulnerability data. Since the PVS is always listening, it constantly collects information from the normal data flows on the network. This is superior to active scanners in two important ways.

First, the PVS "sees" information passing between devices that might be hidden behind firewalls and unavailable to active scanners. Second, since PVS is running all the time, it collects and reports vulnerability information between active scans. This can be very useful when creating reports.

The PVS, in order to be truly useful, requires the Tenable Security Center to function. This acts as a correlation device and, more importantly, provides the displays and reporting features that give the product its real strength. These allow the PVS to combine its findings with those of active and host-based scanners to give a full picture of the enterprise's vulnerabilities.

Beyond traditional views of vulnerabilities, however, there is concern about insider abuse. This is a powerful capability in Tenable's passive scanner.

Documentation for PVS is clear and useful. Additionally, there are many supporting documents on the vendor's website and the Tenable blog offers considerable insight into how to deploy its products most effectively.

Reporting is comprehensive and there are many templates, both from the developer and the user community. In general, we found this to be a novel and useful solution. Coupled with other security tools it adds an important dimension to vulnerability testing, reporting and compliance monitoring.

The PVS is not cheap. However, the addition of the Nessus active scanner is a no-cost option, which, given the significant benefits of this suite, makes it a reasonable price.

We rate PVS Recommended for its powerful approach to compliance and general network vulnerability monitoring.

 
 
 
Popular Topics
Breaches & Exposures Browser Flaws Compliance Consumer Threats Email Security Emerging Threats Finance Government Groundbreakers Healthcare High Tech Insider Threats IT Security Training Lawbreakers & Cybercrime Legal & Professional Services Manufacturing Microsoft Mobile Endpoint Security Patch Management Phishing Privacy Regulation Product News Spam Techniques Trojans Vulnerabilities & Flaws
Home | News | Products | Whitepapers | Jobs | Subscribe | Contact Us | About Us | Advertising | Sitemap | Editorial | Subscribe to our RSS feeds RSS

This material may not be published, broadcast, rewritten or redistributed in any form without prior authorization.

Your use of this website constitutes acceptance of Haymarket Media's Privacy Policy and Terms & Conditions