The Retina Network Security Scanner from eEye Digital Security provides cross-platform vulnerability management. This product can identify not only known vulnerabilities, but zero-day vulnerabilities as well. This provides solid security risk assessment, which allows administrators to keep up with security best practices, policy enforcement and compliance with regulatory audits.
This tool can be purchased as software or as a hardware appliance. For our evaluation, we went with the software version. The installation is comprised of several component installations. The Retina Scanner itself can be installed as a standalone scanner for smaller environments or incorporated with the REM Management Server for centralized management in larger, more complex deployments. Installation of all the components and servers is simple and straightforward, and all installations are guided by easy-to-follow setup wizards. The only problem we ran into during installation was that the setup was quite computer intensive and it did take a while on our server. Once installation is complete, using the product is also quite intuitive and the Retina management interface is easy to navigate with an organized look and feel.
This solution analyzes specific pieces of operating systems, applications and policies, which allows it to target high-risk host components and complement how a cybercriminal could potentially leverage them for malicious activity. This gives administrators a detailed look at all possible security holes throughout the enterprise environment.
Documentation includes installation guides in PDF format for each of the components. These guides provide in-depth detail on installing, configuring and integrating the components together using step-by-step instructions, examples, screen shots and diagrams.
eEye offers free basic support (eight hours a day/five days a week email support with initial response within eight hours). Eight hours a day/five days support and 24/7 technical support is available at an additional cost. Customers also get access to a support portal, which includes downloads and technical documentation, as well as a free support area on the website with a knowledge base and user forum.
At a price starting at $575 for 32 IP addresses, we find this product to be a good value for the money. This tool provides solid, deep scanning features to catch obvious and not so obvious vulnerabilities across the enterprise.