|
|
DISA Gold Disk Scan imports DISA checks from DISA scanner and fails the corresponding STIG control in Agiliance RiskVision. This will automatically test some of the controls from 8500.1 and 8500.2, automating the 8500 certification process. IT entities, STIG controls, and results will be imported by DISA Gold Disk Scan. |
|
|
|
eEye Retina Network Security Scanner not only imports system vulnerability information from Retina but also creates computer entities in Agiliance RiskVision. Retina vulnerabilities have STIG information which will be mapped to corresponding controls in Agiliance and controls will be failed. Based on eEye Retina output, Agiliance RiskVision can automatically pass or fail the corresponding STIG controls based on the imported results. Agiliance RiskVision also maps imported vulnerabilities against the NVDB database, based on CVE ID, and assigns a CVSS score to the vulnerability. |
 |
|
|
The McAfee Vulnerability Manager imports IT entities from vulnerability scan results along with vulnerabilities for those assets. Scanning is one of the quickest methods to gather IT asset inventory such as applications, servers, and desktops. IT assets are attached to vulnerability results. |
|
|
|
nCircle imports vulnerabilities from nCircle output along with other vulnerability details including, but not limited to, severity, description, and CVE ID. These vulnerabilities are attached to IT entities such as routers, switches, and servers. The CVSS score is displayed along with the vulnerability. Businesses can prioritize vulnerability mitigation tasks based on asset criticality and a vulnerability severity matrix. IT assets are created from the output results in RiskVision. |
|
|
|
QualysGuard Vulnerability Management integrates to a Qualys by importing vulnerability data, and automatically assigning it to underlying IT assets. Vulnerabilities with a CVE-ID will be assigned a CVSS score from the NVD database. Customers prioritize and assign remediation tasks for the vulnerabilities on a given asset based on asset criticality and vulnerability severity to achieve risk and compliance monitoring and management in real-time. |
|
|
|
Rapid7 NeXpose is the only integrated threat management solution that enables organizations to implement and maintain best practices and optimize their network security, Web application security and database security strategies. NeXpose uses CVE identifiers, the CVSS v2 score index, and customized risk scoring for remediation reports prioritized by risk. Rapid7 received the highest rating of "Strong Positive" in Gartner's "MarketScope: Vulnerability Assessment, 2010". IT asset and vulnerability data are imported into the Agiliance RiskVision Threat and Vulnerability Manager. |
|
|
|
Redseal Systems is a leading developer of security assurance software for medium to large sized organizations. RedSeal software enables organizations to continuously, comprehensively and automatically assess and strengthen their cyber-defenses before they are attacked. In addition to in-depth understanding of overall security posture, RedSeal delivers continuous compliance with regulations such as PCI, FISMA, and SOX, and actionable steps for risk remediation. |
|
|
|
Skybox adjusts the vulnerability reported by multiple scanners based on network topology and Agiliance RiskVision leverages the vulnerability severity information received from Skybox. These vulnerabilities with entity criticality allow easy prioritization of vulnerabilities for mitigation. All Skybox-specific information, including but not limited to IT assets, is imported into Agiliance RiskVision. |
|
|
|
Tenable Nessus imports vulnerabilities from Tenable vulnerability results, allowing security compliance managers to mitigate and prioritize vulnerabilities based on vulnerability severity and asset criticality. Vulnerabilities with a CVE ID will be assigned a CVSS score from the NVD database. |
|
