Secure Bytes Secure Win Auditor v2.0
Strengths: A nice operational security assessment tool.
Weaknesses: Limited risk picture.
Verdict: Provides a comprehensive operational overview of the enterprise security posture with an easy-to-use interface that offers nice reporting.
Secure Win Auditor (SWA) is a security assessment tool that empowers network administrators and security auditors to inspect vulnerabilities in Windows-based systems.
Running from a centralized location, this tool identifies vulnerabilities and categorizes them according to their respective risk levels. It also provides step-by-step solutions to eliminate them, thus simplifying the enormous task of securing Windows operating systems. SWA remotely connects through wireless and wired mediums to machines on the network. After successful authentication, the respective machine is scanned for threats and vulnerabilities. The collected data is then analyzed according to the embedded regulatory requirement policies, PCI DSS and SOX. The user also has the option of customizing a regulatory requirements policy according to the organizational information security needs. In addition, the product offers several penetration testing and forensics tools.
SWA incorporates a very nice, dynamic reporting module, which generates comprehensive reports that display detected vulnerabilities by name and category, its associated risk level, a detailed descriptions of the issues, and the complete specification of the vulnerability. The solution includes its own internal vulnerability scanner. The search capabilities were great, allowing admins to quickly drill down to detailed vulnerability data to display desired audit results. There were remediation recommendations on the form of step-by-step solutions to mitigate the effect of the vulnerability.
There are multiple levels of support available for a fee. Basic support includes phone and email and 24/7 online support.
The solution is sold as client-side software and deploys on a Windows server running .Net and uses a SQL backend.
This solution supports most standard network and security products and includes a great network-scan/discovery tool. It includes a real-time port scanner that can routinely update you to new devices that exist in your environment that you have yet to include under management.