eEye Retina Network Security Scanner Overview:

Reduce your exposure to attack. Mitigate network and business risk.

Retina Network Security Scanner, the industry and government standard for multi-platform vulnerability management, identifies known and zero day vulnerabilities plus provides security risk assessment, enabling security best practices, policy enforcement, and regulatory audits.

Network vulnerabilities are an increasingly common issue in today’s highly complex computing environments. With exploit attacks appearing faster than ever before, it has become significantly more challenging for organizations to protect against attack. A notable case in point is the Sasser worm. Sasser was based on exploit code released two days earlier and only 18 days after the initial vulnerability was announced.

With such a dynamic threat environment to contend with, IT professionals need a proactive security management strategy that goes beyond routine patch deployment. To meet the challenge, and reduce overall network security TCO in the process, organizations are adopting integrated security and threat management solutions from eEye Digital Security.

Retina NSS contains all the integrated security and vulnerability management tools needed to effectively identify and remediate the network vulnerabilities that lead to exposure and malicious attacks.

Wasting time and money panic-patching?
Retina can help you prioritize patches to meet YOUR project schedule and business objectives. Retina identifies and prioritizes well-known and newly discovered vulnerabilities residing on connected network devices - regardless of platform. Incorporating the most comprehensive and up-to-date vulnerability technology and database while eliminating the need for administrative credentials, Retina delivers the most accurate and timely scans available - scanning an entire class C network in approximately 15 minutes.

Struggling to get an accurate view of your network - again?
Retina discovers all connected computers, routers, and other network devices...even those not 'officially' deployed. Retina helps you get a handle on your entire network environment - finding devices connected outside of your formal deployment processes. Regardless of platform, Retina identifies known and rogue systems - desktops, servers, routers, and switches - then digs deeper to identify and prioritize the remediation steps for well-known and newly discovered vulnerabilities, missing operating system & application patches, and other policy-oriented exceptions residing on the network. Using the latest asset discovery standards, Retina delivers the most accurate scan results available.

Multiple security policies across multiple devices?
Retina helps get a handle on all of your current configurations and patches, regardless of device type. Retina assesses all network devices - regardless of platform, operating system, and application - to identify missing patches, mis-configurations, and other vulnerabilities. Incorporating the most comprehensive and up-to-date vulnerability technology, policy and patch checking database, and customizable scan options, Retina delivers the most complete network security scans available for your specific environment and business need.

Looking for IT Security process efficiencies?
Retina provides network vulnerability remediation guidance and helpdesk integration. Retina prioritizes remediation in support of business and operational efficiency, freeing up precious resources for other key projects. Retina identifies and prioritizes exceptions to corporate and regulatory policy, providing visibility and remediation guidance for missing patches, weak configurations, system vulnerabilities, and other security threats. Complete your security audits with documented actions and processes through Retina's integration with popular helpdesk systems.

Unsurpassed Vulnerability Management

Retina Network Security Scanner is a professional-grade security solution with a lengthy track record of success and industry leadership. Retina contains all the integrated security and threat management tools needed to effectively identify and remediate the network vulnerabilities that lead to exposure and malicious attacks. Retina secures networks by:

Accurately discovering all the assets in the network infrastructure including operating system platforms, networked devices, databases and third party or custom applications. Retina also discovers wireless devices and their configurations, ensuring these connections can be audited for the appropriate security settings. Additionally, Retina scans active prots and confirms the services associated with those ports.

Implementing corporate policy drive scans to audit internal security guidelines and ensure that configuration requirements are enforced and comply with defined standards. These custom scans can also assist with meeting any regulatory compliance requirements (SOX, HIPAA, GLB, PCI, etc) customers may face.

Remotely identifying system level vulnerabilities to mimic an attacker's point of view, providing information that an outsider would see about your network. These remote checks do not require administrator rights, providing an accurate assessment, with fewer resources required to scan across departments, locations or geographies.

Incorporating the most comprehensive vulnerabilities database and scanning technology available allowing users to proactively secure their networks against attacks. Retina was developed and is constantly updated by the eEye Research Team, leveraging its expertise and superior vulnerability discovery methodology. Updates are automatically uploaded at the beginning of each Retina session.

Providing a workflow approach to vulnerability management. Retina's user interface allows for multiple views and reporting options with which to analyze assessment data. This gives users the opportunity to view assets criticality correlated with complete vulnerability data. This approach allows users to effectively prioritize remediation efforts.

	Retina Software	Security Management Appliance 1505
Requires User Supplied Hardware
Requires User to Install Software and Obtain 3rd Party Licenses
Scales Over 3000 Assets
Active Directory Integration
Capital Expense Budget Available
Maintenance-Free Solution

 

Features and Benefits:

Features:

Network Security Scanner - Retina enables prioritized policy management, patch management, and vulnerability management.

Network Discovery and Policy Assessment - Retina discovers all devices, operating systems, applications, patch levels, plus policy configurations.

Fast and Accurate Scans - Accurately scan a Class C network of devices, operating systems and applications in ~15 minutes.

Network Vulnerability Assessment - Identify network security vulnerabilities, missing application updates, plus zero day threats.

Vulnerability Management - Enables prioritized policy management, patch management, and vulnerability assessment.

Policy Compliance - Identify and simplify your corporate and regulatory requirements (SOX, HIPAA, GLBA, PCI and others).

Additional Futures and Benefits:

Accurate Asset Discovery and Inventory - Retina discovers all the assets on a given network, including operating systems, applications, services, databases and wireless devices. Retina's advanced OS discovery utilizes ICMP, registry, NetBIOS, and the Nmap signature database, as well as eEye's proprietary OS fingerprinting for more accurate & definitive OS identification. Additionally, Retina has profiles for nearly 2,000 of the most commonly utilized ports, and allows for scanning of all 65,536 ports on a network device.

Custom Security Audits - Users can create custom audits for the enforcement of corporate security policies, including anti-virus deployments, application version control, file shearing, permissible ports and P2P, as well as enabling regulatory compliance requirements.

Remediation Assessment - Retina allows prioritized remediation through its intuitive user interface, categorizing vulnerabilities according to risk level. Integration with third party help desk and ticketing systems is a simple process. Additionally, Retina's Fix-it function can be used to remotely correct security issues such as registry settings, file permissions, etc.

Localized System Audits - Retina reconciles the input/output data on each port to determine which protocols and services are actually running, including SSL. In this way, Retina makes adjustments for custom or unconventional machine setup.

Smart Protocol Scanning - Retina reconciles the input/output data on each port to determine which protocols and services are actually running, including SSL. In this way, Retina makes adjustments for custom or unconventional machine setup.

Advanced Scheduling Capabilities - Retina's scheduler function allows you to set the scanner to run on a regular basis to periodically check for vulnerabilities. Because Retina is non-intrusive, you can pre-schedule your scans without the risk of unplanned network downtime.

Key Features:

Reliable, Non-Intrusive Scanning Technology
Most scanners rely on exploit code to test network vulnerabilities, which frequently crashes servers, devices, or even networks in the process. Retina tests without using exploit code and harming your devices and network.

Comprehensive and Current Database
The most advanced, comprehensive database available. Critical vulnerabilities are updated within 48 hours of public disclosure. This is three times faster than the leading competition.

Superior Research Team
No security vendor can match the expertise of the eEye Research Team. Over the last 10 years, eEye has discovered more critical vulnerabilities than any other research group.

Extensive Third-Party Integration Support
Retina’s open architecture allows for integration with third-party applications such as event managers, security information managers, network management systems, call centers and many framework based solutions.

Best Practice Approach to Vulnerability Assessment
Retina guides users through the logical steps of discovering assets, auditing known vulnerabilities and configuration issues, recommending remediation actions and reporting on the entire vulnerability management process using industry accepted best practices.

Unrestricted Asset Discovery
Retina allows for the discovery of a network’s entire infrastructure without restrictions or separate licensing. At a glance, administrators can determine the number and type of hosts on the network and build policies and groups for vulnerability assessment based on the results.

Flexible Remediation Reporting
Within the workflow or Retina, users can create targeted reports to identify specific vulnerabilities for remediation by risk, vulnerability, host or even export the data to common file formats for inclusion in other reports and management systems.

Wizard Based Customizable Audits
Custom audits help ensure corporate policies with regard to anti-virus installations, file sharing programs, instant messaging, and third party applications are being correctly identified and mitigated.

Granular Job Scheduling and Job Duration Support
Administrators can schedule and run multiple scan jobs against multiple targets and groups (business groups, subnets, for example) for scanning at one time, and control when a job must terminate (scan windows) in order not to impact business requirements like change control windows.

Adaptive High-Speed Scanning
Recognized as the fastest security scanner available, Retina can scan an entire Class C network in approximately 15 minutes. Retina scans every machine on your network, all types of operating systems, network devices and third-party or custom applications with extreme accuracy and speed.

Key Advantages:

• Less than 1% false positive rate
• Audit release 3x faster than the leading competitor
• Complete asset inventory and auditing including installed software
• The most comprehensive vulnerability database with PCI and CVSS scoring
• Independently tested and reviewed by NSS Labs for use with PCI Compliance requirements
• Automated updates for latest vulnerability checks and information
• Backed by an unrivaled vulnerability research team
• Open architecture for third-party integration and compatibility
• Innovative, non-intrusive, and safe scanning technology
• User-definable custom audits using wizards; no programming required
• Identifies known and published zero day vulnerabilities
• Accurate OS detection using multiple engines for verification
• Easily identify common registry, permission, and security problems
• Wireless asset detection, SSID identification, and dictionary WEP cracking
• Distributed and Scalable Management using the REM Security Management
• Console Exclusion list for devices and ports to never be scanned
• Runs on Windows 2000, XP, 2003, Vista, and 2008

Why Use Retina Web Security Scanner

1. Department or enterprise-wide vulnerability assessment
   Retina scales to meet the requirements of any size organization and supports scanning in distributed environments using software or appliances.
   
   
2. Compliance with industry or federal regulations
   Retina helps companies comply with Payment Card Industry (PCI), Federal Desktop Core Configuration (FDCC), Health Insurance Portability and Accountability Act (HIPAA), Sarbanes Oxley (SOX), Gramm-Leach-Bliley Act, Federal Information Security Management (FISM) Act, European Union Data Directive, and others by providing customizable security policies and extensible reports.
   
   
3. Identify security risks and eliminate business interruptions
   Less sophisticated scanners can crash a server or device as a result of their scanning methods that include running partial or full exploit code. Retina does not run any type of exploit code to conduct a scan and can accurately identify vulnerabilities without compromising a host.
   
   
4. Asset and risk identification
   Retina can accurately detect and classify all assets within an environment and determine rogue, wireless, and virtual devices connected to the infrastructure. Vulnerability assessment determines which devices pose the greatest risk to the environment from malware to hackers to unauthorized computing devices.

Enterprise Vulnerability Management

Designed for a range of small business, medium business (SMB), to large enterprises, Retina Network Security Scanner is available as both a network security software solution plus a vulnerability management appliance solution.

• Centralized Vulnerability Management - Integrated vulnerability assessment, policy enforcement, policy auditing; improving enterprise network security.
• Centralized Incident Management - Prioritized vulnerability management plus client security threats and attacks; reducing security risk plus network security response.
• Enterprise Security Reporting - With integrated vulnerability, attack and policy information provided by Retina and Blink, REM provides organizations with metrics and graphical representations of their enterprise security posture.
• Executive Dashboard - Customizable reports and charts; integrated asset management, client security, risk assessment, plus vulnerability assessment.

Specifications:

Prefer to manage your network assets and vulnerability assessments using software? Choose our Retina Network Security Scanner software solution. Retina Network Security Scanner software can scan multiple operating systems and applications and has the following minimum system requirements:

Product Specifications:

• Windows 2000 Professional
• Windows 2000 Server
• Windows XP (32-bit)
• Windows Server 2003 (32-bit)
• Windows Vista SP2 (32-bit or 64-bit)
• Windows Server 2008 SP2 (32-bit or 64-bit)
• Intel Pentium IV 1.4Ghz (or compatible)
• 512 MB of RAM
• At least 80MB of free disc space
• Microsoft .Net Framework 2.0 (included with installer)
• Network Interface Card (NIC) with TCP/IP enabled

Retina Screenshots:

	Retina Discovery Retina discovers all the assets in a network infrastructure including operating system platforms, networked devices, databases and third party or custom applications.
	Retina Audit Users can leverage Retina's unsurpassed vulnerability database to accurately identify known vulnerabilities.
	Retina Remediation Retina allows for the prioritization of remediation efforts through its intuitive user interface, by categorizing vulnerabilities according to risk level.
	Retina Reporting Retina offers complete technical and executive reports, as well as customizable reports that can be tailored for specific content

Documentation:

Download the eEye Retina Network Security Scanner Datasheet (PDF).

Download the eEye Retina Network Security Scanner Solution Overview (PDF).