Secunia Corporate Software Inspector (CSI) 5.0

More documents

Recommendations

Info

Authenticated Vulnerability Scanning Technology The Secunia CSI provides non-intrusive authenticated vulnerability and patch scanning. It takes a different approach compared to other scanners by conducting authenticated scans of systems. This makes it possible for the Secunia CSI to identify all installed programs and plug-ins based on the actual files present on the system. The Secunia CSI then correlates program meta data with Secunia’s comprehensive product database to build an inventory of the installed programs and plug-ins. This inventory is then correlated with vulnerability meta data based on Secunia Vulnerability Intelligence. The accuracy of this approach is unprecedented and provides actionable results with risk ratings and other metrics based on Secunia Advisories. Scan results The scan results of the Secunia CSI provide details about the full installation path, version details, direct links to patches, ratings, and access to Secunia Advisories with further vulnerability details and metrics as well as other useful information for alternative mitigation strategies. Based on the details collected by the Secunia CSI, as well as the experts working behind the scenes at Secunia, it is possible to use the Secunia CSI to automatically repackage a large amount of patches for direct deployment and management using Microsoft WSUS and Microsoft SCCM. The scanning also detects and reports end-of-life programs and plug-ins. This is software which for some reason is not supported by the vendor. Software which has reached end-of-life should not be used due to a lack of vulnerability information about these products, and because the vendors will not be providing security updates. The Secunia CSI also lists all the programs and plug-ins which are patched and up-to-date. This can be used to verify that patches have been properly applied and that old insecure versions have been removed. It can also be used as a valuable and highly accurate supplement to other asset and license management tools. Many customers also use it to track the installation of non-approved programs and plug-ins. Flexible deployment The Secunia CSI offers various deployment options designed to suit your environment: Agent-less scanning of your systems can be performed out-of-the box. When running agent-less, the Secunia CSI utilises standard Windows networking services to scan the systems on your network. The agents can also be automatically deployed through the Microsoft WSUS/SCCM integration. Agent-based deployment is more flexible. It can be used in segmented networks and to scan systems that are not always online (e.g. laptops). The agents can also be automatically deployed through the Microsoft WSUS/SCCM integration. Appliance mode offers “agent-less” scanning from centralised hosts; in branch offices for example. CLI mode makes it possible to schedule and manage scans using other tools (e.g. log-on scripts). secunia.com 1 2 3 4 5 6 The Secunia CSI scans computers in your network from a central location AProgram 1.0 AProgram 1.0 AProgram BProgram 1.0 BProgram 1.0 1.0 BProgram CProgram 1.0 3.0 DProgram 2.0 CProgram DProgram 3.0 2.0 EProgram 1.0 DProgram EProgram 2.0 1.0 AProgram 1.0 EProgram BProgram 1.0 1.0 Secunia Secunia Advisory Advisory Secunia Advisory EXE OCX DLL It scans all executables, including EXE, OCX, and DLL files using the Secunia File Signatures EXE OCX DLL All scan results are fed into the central management console for easier analysis The Secunia CSI tells you which version to update CProgram AProgram 1.0 3.0 BProgram DProgram 1.0 2.0 Automatic repackaging CProgram EProgram 1.0 3.0 DProgram 2.0 EProgram 1.0 AProgram 1.2 Patch DProgram 2.1 Patch A B DProgram 2.1 Patch deployment Secunia Advisory Secunia Advisory AProgram 1.2 Patch A DProgram AProgram 2.1 Patch B 1.2 Patch A EXE OCX DLL EXE OCX DLL AProgram 1.2 AProgram 1.2 AProgram BProgram 1.0BProgram 1.0 1.2 CProgram 3.0 BProgram CProgram 3.0 1.0 DProgram 2.1 CProgram DProgram 2.1 3.0 EProgram 1.0 DProgram EProgram 1.0 2.1 AProgram 1.2 EProgram BProgram 1.0 1.0 Patch B EXE OCX DLL CProgram AProgram 3.0 1.2 DProgram BProgram 1.0 2.1 EProgram CProgram 1.0 3.0 a) Deployment Using Microsoft WSUS Approval Approval Approval WSUS WSUS Approval WSUS b) Deployment Using Microsoft SCCM Upload SCCM Upload SCCM Upload SCCM DProgram 2.1 EProgram 1.0 Approval WSUS Upload SCCM Upload SCCM WSUS AProgram 1.0 BProgram 1.0 CProgram 3.0 DProgram 2.0 EProgram 1.0 AProgram 1.0 BProgram 1.0 CProgram 3.0 DProgram 2.0 EProgram 1.0
Microsoft WSUS Integration The Secunia CSI integrates seamlessly with Microsoft Windows Server Update Services (WSUS) for easy deployment of 3rd party updates. This makes installing updates simple and straightforward due to the automatic repackaging feature and the Microsoft WSUS distribution management functionality in the Secunia CSI. The Secunia CSI provides simple methods for repackaging and publishing patches for distribution via Microsoft WSUS. It can literally be conducted with a few simple steps: Select insecure programs to patch The Secunia CSI automatically repackages and publishes patches to Microsoft WSUS Approve and manage distribution Track deployment status Microsoft SCCM Integration The Secunia CSI integrates seamlessly with Microsoft System Center Configuration Manager (SCCM) 2007 to help you stay compliant and up-to-date with the latest security updates from 3rd party vendors and Microsoft. The Secunia CSI adds a critical security aspect to the Software Update Management and Asset Intelligence capabilities of Microsoft SCCM. While Microsoft SCCM offers many great features in order to configure and manage servers and desktops, Microsoft SCCM lacks the specialised capabilities within software inventory mapping and security intelligence related to software. The Secunia CSI provides highly detailed software inventory including both programs and plug-ins. This inventory is then mapped to security intelligence related to the individual programs and plug-ins as well as details about vendor supplied security updates. The Secunia CSI can automatically repackage these security updates/patches and push them to Microsoft SCCM, allowing you to control, manage, and monitor deployment using Microsoft SCCM. The Secunia CSI can further conduct scans of desktop and server systems to ensure that the updates are applied correctly and that all systems are fully compliant. "Secunia’s Scanning & Patch Management Solutions are designed to help organisations of all sizes improve their protection" Frost & Sullivan 2011 Market Penetration Leadership Award secunia.com Apple Mac Scanning With the Secunia CSI it is now possible to scan Apple Mac OS X and have the scan results displayed in the Secunia CSI’s user interface. The new Secunia CSI Agent for Mac is available for download from the “Download Local Agent” page within the Secunia CSI. The new agent can be installed on the Mac host in both “command line” and “service” mode, in a similar way to how the Windows equivalent works. Secunia PSI Integration The Secunia PSI is a free security tool designed to detect vulnerable and outdated programs and plug-ins, which expose your PC to attacks. Once installed, the Secunia PSI can help you patch vulnerable programs and stay secure. The “Auto Update” feature enables the Secunia PSI to automatically detect insecure programs on the PC, download the required patches, and install them accordingly without user interaction. In addition, the Secunia PSI integrates with the Secunia CSI, making it possible to report its local scan results to the centralised Secunia CSI dashboard. These features help the administrators in organisations better understand the security status of PC users that occasionally connect to their corporate networks. This integration is especially useful for administrators in educational institutions, where they do not have control or access to students connecting to the university’s/campus’ network from their PCs. By encouraging these users to install the Secunia PSI on their PCs, the administrators can get a better overview of both internal and external vulnerability threats, and take the necessary measures to protect their networks. IT Administrator
Page 1: Secunia Corporate Software Inspecto
Page 5: Example: Patch Deployment using Mic

Secunia Corporate Software Inspector (CSI) 5.0

You also want an ePaper? Increase the reach of your titles

Delete template?

Save as template?