Strengths: Vulnerability scanning, penetration and Wi-Fi auditing in an easy-to-use appliance.
Weaknesses: Very little built-in compliance ability.
Verdict: Could use some additional help in the compliance area to improve the total cost of ownership value, but strong overall.
SummaryThe Penetrator from SecPoint is an interesting tool. The first thing to note about this device is its form factor. Unlike traditional hardware appliances, this product is available as both a rack mount server, but also as a smaller Dell OptiPlex unit. This helps make the Penetrator a slightly portable, less bulky option for mobile penetration testing. However, do not be deceived by its small appearance. This product packs a punch. It is capable of doing an onslaught of vulnerability and penetration testing along with built-in Wi-Fi auditing.
We were first introduced to this product last year, and believe that this year's model is much better than the previous one. Setup and configuration is still quite easy, requiring only a few simple steps to get the appliance up and running. After the initial configuration is complete, all further administration and management is done via a well-designed, web-based management interface. We notice that the interface has a more fluid feel than it had last year, and screens seem to load much faster. Aside from the performance, not much has changed in the interface. We find it to be intuitive and easy to navigate. Setting up scans was a breeze.
The Penetrator offers a strong combination of vulnerability scanning and penetration testing. Using this appliance, administrators can scan the network, see where there are vulnerabilities, and easily find ways to fix them before they are exploited by an attacker. The device can use denial-of-service-type attacks, as well as other exploits, to ensure enterprise devices are secured against incursions.
One of its most interesting features, however, is its ability to audit Wi-Fi security. Using an optional antenna, the Penetrator can be set to try to brute force attack against both WEP and WPA/WPA2 encryption, and work to discover the passphrase to attach to the network. After scanning and auditing is complete, administrators can easily run reports and have them generated in a variety of formats, including XML, PDF and HTML.
Documentation includes an easy-to-follow quick-start guide, which illustrates in good detail deployment options, initial setup procedures and an overview on how to navigate the web-based interface. Also provided is a full administrator guide that includes more in-depth detail on how to configure and use the features. Both had a lot of screen shots, easy-to-follow, step-by-step instructions and configuration examples in a well-organized format.
SecPoint offers complete 24/7 support to customers at no extra cost. Technical assistance includes live, web-based chat, phone, email and Skype. Customers also can access a small help area on the website, which includes resources, such as product documentation, a knowledge base and a detailed FAQ section.
The price of the Penetrator can vary greatly depending on the size of the environment and the type of hardware needed. With a base price just shy of $11,000, we find this product to be a good value for the money. It provides some solid functionality, both on the side of vulnerability scanning and also penetration testing, along with the added value of Wi-Fi auditing.