February 01, 2006
$2,195 for Class C
- Ease of Use:
- Value for Money:
- Overall Rating:
- Strengths: Simple to use, very comprehensive tests, good performance, well supported.
- Weaknesses: Could use some more functions, such as patch management and scripting. This is a very strong, bare bones product, but it is bare bones.
- Verdict: Great scanner with a very good interface and established credentials.
Saint is a venerable product with its roots in the earliest days of automated vulnerability assessment. It has been dressed up in a new suit of clothes since becoming a commercial product, but retains its strong Unix roots.
Saint is, first and foremost, a vulnerability scanner. In that regard, it is very similar to Nessus, but its user interface is about as clean as one would expect and it is web-based, making any web browser the platform for the GUI.
Saint is available in a variety of configurations, including software for installation on a Unix or Linux computer, SaintBox, an appliance, and WebSaint, a remote scanning service that allows the organization to initiate scanning over the web and then log back in to view results.
Finally, an optional remote console, SaintManager, enables users to manage medium-to-large networks, including scan, policy and results management and reporting using an SQL database.
Support is acceptable and there is a strong web presence adding to the support in an on-demand fashion. Saint is generally easy to use, although not all Linuxes behave well. RedHat 7.2 went very smoothly, even in a VMWare environment, but Mandrake 10.2 did not allow a clean installation and Saint had to be uninstalled.
Features, considered in the contest of this type of scanner were very good. However, some additions, such as an API and scripting language that allows users to write vulnerability tests would be useful. We understand that is in the pipeline.
Generally, Saint is an extremely strong workhorse vulnerability assessment tool, quite scalable and true to its mature vulnerability assessment roots, while presenting an easy-to-use and configure user environment.
Performance was strong and the scanner made quick work of our test network, identifying all of the devices, real and virtual, and delivering a very credible scan report. Generally, we view Saint as a very strong, although plain vanilla, vulnerability assessment tool worthy of recommendation.
SC Webcasts UK
Information Security Manager
Infosec People - Hammersmith, West London
Junior Penetration Tester, Hertfordshire, to £35k + benefits
Infosec People - England, Hertfordshire
Cyber Security Architect
CYBER EXECS - London (Greater)
SOC Analyst, Aldershot, £47-56k + package
Infosec People - Hampshire, England, Aldershot
Senior Security Engineer
Loveworklife Recruitment - United Kingdom
Sign up to our newsletters
SC Magazine UK Articles
- Tesco Bank allegedly ignored warnings of hack from Visa
- Investigatory Powers and Digital Economy Bills could threaten economy
- Updated: A million German routers knocked offline by failed Mirai botnet attack
- Gooligan ad fraud malware infects 1.3M Android users, installs over 2M unwanted apps
- Microsoft update left Azure Linux virtual machines open to hacking
- SC Awards Europe 2016 winners announcements!
- ISIS radicalises 'lone wolves' through strong social media presence
- Updated: How will Brexit affect the cyber-security industry in UK and Europe?
- 9.2 million medical records for sale on darkweb
- Microsoft Office 365 hit with massive Cerber ransomware attack, report
- ICYMI: Tesco warned; IP Bill threatens economy; German routers offline; Azure trojan; Gooligan fraud
- Data centres are on the move - where will they end up?
- 90% of ITDMs believe IAM is crucial to digital transformation success
- Research: Hacked companies could see customer exodus if breached
- Misconfigured drive exposes locations of explosives used by oil industry