Critical Watch FusionVM Virtual All-in-One Appliance
Strengths: Easy-to-use vulnerability scanning and management with many flexible options.
Weaknesses: None that we found.
Verdict: Solid performance and a full feature set make this our Recommended product for vulnerability management.
SummaryFusionVM from Critical Watch provides a full-featured vulnerably management and configuration auditing platform that can be customized to manage vulnerabilities throughout the enterprise. With this product, an administrator can find and manage vulnerabilities throughout the environment based on customizable policies that can be set up with a few clicks.
This tool can be deployed as hybrid software-as-a-service (SaaS) or as an all-in-one virtual appliance. The appliance itself is installed into VMware ESX Server as an Open Virtualization Format (OVF) template. After the template is deployed as a virtual machine, there is some brief configuration to be done to set IP and network information. Further configuration is done though the easy-to-use web GUI.
This product provides a multitude of vulnerability management tasks beyond just simply scanning and reporting back flaws. Administrators can easily set up an organizational tree and hand out remediation tasks based on specific groups or users. The FusionVM also can interface with a TippingPoint IPS to help finetune both the IPS itself, as well as tune scan results based on already existing IPS filters.
Documentation included an installation guide and a full user manual, both in PDF format. The installation guide, with clear step-by-step instructions and screen shots, illustrates the steps necessary to get the virtual appliance downloaded and running on an ESX Server. The full user manual provides a good amount of detail on configuring the product after deployment, setting up scans and managing users and remediation tasks. We found all the documentation to be easy to understand.
Critical Watch offers annual agreements that include phone and email support, as well as access to vulnerability updates and an early warning service. Users also can find a large research library built into the GUI.
With a price just shy of $20,000 for 500 IP addresses, this product does have a decent-size price tag, but we find it an excellent value for the money based on its solid ease of use and management flexibility.