SkyRecon StormShield Security Suite
Strengths: Comprehensive offering – port, device, application, firewall and AV; price and performance attractive.
Weaknesses: No AD integration, but did have IP discovery.
Verdict: Very nice offering, providing a lot of security at the endpoint for the price. This is the complete package.
SummaryStormShield Security Suite v5.1 offers integrated system control, system protection and data security in a single, lightweight client. It requires very low overhead on endpoints and networks during deployment. Support for device control, encryption, application control firewall, host-based intrusion prevention system (HIPS), anti-malware (AV), network access control and wireless security and control provides for a comprehensive endpoint offering.
The server installation went well. The product did require a database backend, but it did ship with an integrated MSDE that we used as part of our test load. There are capabilities to deploy slave servers with a shared SQL backend that would somewhat complicate the deployment.
Once we loaded the server we began managing the agent side. Agent management did take some time. We were surprised to see that there was no Active Directory (AD) integration, but were then pleased to find that the IP discovery tool worked well enough to compensate for this.
The application security and HIPS capabilities were some of the best we reviewed - including options for preventing keyloggers, protection against memory overflows, CPU overuse, privilege escalation and blocking of copy/paste functionality. The port and device management included anything on the endpoint device.
The management dashboard provides real-time security posture reporting over all the managed endpoints. The dashboard was not as intuitive as we would have liked, but it worked well and we quickly got used to the navigation. Reporting is very good and includes server, agent, device and security-related default reports. Centralized logging is very detailed and alerting is available. We were unable to test the alerting as part of our review.
Standard support is included for 18 percent of the license fee. Additional support options are available. Documentation was complete and very detailed.
This is a great solution for an organization that wants to cover all aspects of endpoint security. You can find better point solutions, but this one has the complete integrated package.