Skybox Security has launched an automated solution to detect network vulnerabilities.
According to the company, Skybox Risk Control 6.5 detects network vulnerabilities in an automated and non-disruptive manner without an active scan, and drives remediation activities.
Available from September, Skybox Risk Control 6.5 includes a vulnerability detector that consolidates data from multiple sources, including Microsoft Active Directory and System Center Configuration Manager and Windows Server Update Services. The company said that the vulnerability detector uses its patent-pending rule-based Profiler technology to derive an accurate list of vulnerabilities, without actively probing network hosts.
An attack simulation also performs a virtual penetration test to find all vulnerabilities that can be exploited, taking into account all possible attack vectors, available vulnerabilities, network topology, security controls and the value of assets. This generates remediation suggestions automatically.
Gidi Cohen, CEO at Skybox Security, said: “Enterprises rely heavily on active vulnerability scanning as the primary way to determine and minimise the risk presented by vulnerabilities in the IT infrastructure.
“Unfortunately most enterprises respond to scanning headaches by adopting a ‘round robin' scanning approach that assesses only a small portion of their infrastructure on an infrequent basis. This may lead to fewer disruptions, but leaves a large window of risk exposure that is wide open to data breaches and attacks.”