STAT Scanner Professional Edition


Features
Version: 6.0

  Overview >

� Scan and analyze an entire network domain and/or a single machine.
� Select multiple machines within a domain, if a subset analysis is desired.
� Select or ignore specific vulnerabilities via configuration files.
� Receive an analysis of vulnerabilities, with detailed information relating to the name, description, and risk level of each vulnerability.
� Eliminate the vulnerability using recommended solutions with links to related Web sites and knowledge-base articles.
� Correct a vulnerability across the network with a single mouse click with the AutoFix function.
� Retest corrected vulnerabilities immediately and be confident that vulnerabilities have been eliminated.
� Track vulnerability trends via analyses comparing current and previous assessments.
� Customize network status reports for management and technical personnel with comprehensive reporting of selected machines or entire domains.
� Stay current with newly discovered vulnerabilities and get regular functionality enhancements by subscribing to the monthly update service.

Easy-to-Use Interface >

Empowers the administrative organization to implement corrective action based on descriptive information for both the problem and the solution. The �AutoFix� button provides a single button press solution for many vulnerabilities. �Batch AutoFix� applies the corrective action to multiple computers.

Provides complete assessment information including:
� Name
� Risk Level (High, Medium, Low, Warning)
� Description
� Solution (includes location of patch)
� Related Web Links
� Relevant Advisories and Knowledge-Base Articles
� Link to Mitre web page containing Common Vulnerabilities
and Exposures (CVE) information

  Safe Scanning >

Vulnerabilities are identified through engineered signatures, not simulated attacks. Computers will not be harmed and network bandwidth available to users will not be degraded due to a scan.

   Accurate and Complete >

� Based on solid security research, solutions testing, and software product maintenance.
� Scans for more Windows vulnerabilities than other comparable tools.
� Results in the least amount of �false positive� reports (reports that indicate a vulnerability where none exists).
� Scans for third-party applications as well as operating system vulnerabilities.
� Scans for vulnerabilities in Windows NT, Windows 2000/XP, Red Hat / Mandrake Linux and Sun Solaris UNIX.
� A deep analysis is performed, not a surface validation.

  Customizable >

Provides a configuration editor to allow user tailoring of which vulnerabilities are scanned.

  Updated Frequently >

New vulnerabilities are identified frequently and incorporated into an update available to customers.

  Reports >

Extensive reporting capability that provides a full set of reports displaying information ranging from quick summary graphics to full and detailed disclosure of all vulnerabilities found.

Reports include:
� Executive Summary
� Network Summary
� Vulnerability Summary
� Detailed Vulnerability List
� and more ...

  Industry Standard Compliant >

STAT Scanner uses the latest Mitre Common Vulnerabilities and Exposures (CVE) list of computer vulnerabilities and contains the latest SANS/FBI top 20 vulnerability list. It also uses the latest CERT, CIAC and FedCIRC (Department of Home Security) advisories.