netVigilance Internal Scan - Cloud
Strengths: Cloud-based full scanning with no overhead.
Weaknesses: None that we found.
Verdict: We liked this tool a lot. As a foray into cloud-based vulnerability assessment, this is well worth considering, especially for its value.
SummaryInternal Scan from netVigilance provides vulnerability scanning without the need of hardware or even a dedicated machine. This product is a hybrid, cloud-based offering that only requires a small agent to be installed on the machine that will be used for scanning. So, what can it do? Well, this tool features the ability to scan throughout the enterprise for vulnerabilities, and then gives information on how to remediate vulnerabilities that are found.
Installation is quite straightforward requiring a few simple steps. The initial part is downloading and installing the correct agent from netVigilance. Once the agent is downloaded and installed, all further configuration takes places via a web browser. An administrator can simply launch the web browser and log into their account on the netVigilance website to begin configuring running scans. We find this site to be quite well-organized and intuitive to navigate. We were scanning our environment within minutes of installing the agent.
This product also can use prebuilt scanning policies that are ready to go right out of the box. Some of these policies include SANS Top 20, Health Insurance Portability and Accountability Act (HIPAA), Gramm-Leach-Bliley Act (GLBA), and Sarbanes-Oxley Act (SOX), and vulnerabilities are taken from several databases. This provides comprehensive vulnerability results across multiple platforms. Scans also can be run based on several templates - from a safe scan, which does not perform any brute force-type attacks, all the way up to a full-scale, brute force, denial-of-service-type scan ensuring the security of any type of system. The overall best part of the system is that not only is it easy to manage, but it does not require any extra hardware, so there is no overhead or additional operating costs.
Documentation includes a short user guide in PDF format. This features all the necessary information to get started using the product and becoming familiar with how to run scans and generating reports. This also explains in excellent detail how to navigate the web-based interface and how to download and install the agent. We find this PDF to be easy to understand and well-organized with many screen shots, configuration examples and easy, step-by-step instructions.
NetVigilance offers no-cost support as part of the purchase price for 12 months. This includes email and phone technical help, as well as installation assistance. Also included are ongoing weekly updates and product upgrades for the 12 months. Customers also can choose to obtain fee-based support options, which entails on-site and 24/7 technical assistance. Customers also have access to an online area, which offers a user forum and many resources, including downloads, security advisories and an FAQ section.
At a price just shy of $12,000 for 1,024 IP addresses, we find this product to be an excellent value for the money. The netVigilance cloud-based scanning service offers all of the functions of a full vulnerability scanner and reporting engine without having to obtain extra hardware - or worry that existing hardware is not going to have sufficient resources to perform tasks correctly.