Key Features
Unlimited Asset Identification
Internet Scanner helps you keep an accurate inventory of the electronic assets connected to your network. It identifies more than 1,300 types of devices using Transmission Control Protocol (TCP) stack fingerprinting and an integrated NMAP asset database. User-defined extensions can be added to the database to enable custom asset identification.
Dynamic Check Assignment
Internet Scanner's intelligent scanning agent increases scanning speed and accuracy by identifying the operating systems (OS) of target hosts, and then automatically running OS-specific checks to find vulnerabilities.
Common Policy Editor
Internet Scanner's easy-to-use Common Policy Editor gives you complete control of your scanning policies. 20 predefined policies, including the SANS Top 20 and X-Force Catastrophic Risk Index policies, allow you to quickly configure scans for your organisation. The FlexCheck feature allows power users to write custom checks.
Real-time Display
Internet Scanner's real-time display options enable you to review scan results and monitor scans in progress to quickly identify vulnerabilities and vulnerable hosts.
Vulnerability Catalog
The Internet Scanner vulnerability catalog delivers in-depth information on vulnerabilities, including root causes, detailed descriptions and remediation steps. The catalog is produced by ISS' world-renown X-Force security research and development team.
Comprehensive Reporting
Internet Scanner delivers a large selection of reports that enable quick and easy information sharing across all levels of your organisation. The more than 70 pre-defined reports include:
- Executive reports
- Line management reports
- Technician reports
- Trend reports
- Operating system reports
Centralised Vulnerability Management Features
Manage Internet Scanner agents with the SiteProtector management system for centralised vulnerability management.
Enterprise-class Scalability
When managed using SiteProtector, hundreds of Internet Scanner agents deliver enterprise-wide vulnerability management for even the largest organisations.
Remote Scanning
SiteProtector controls and operates scanning agents located in remote geographies and behind firewalls.
Enterprise Reporting
SiteProtector enables true multi-scanner/multi-scan enterprise correlation, aggregation and reporting. Management reports deliver concise information, while detailed operational reports assist technicians with vulnerability remediation. In addition, SiteProtector allows you to group information assets according to your enterprise layout and produce reports using that structure.
Automatic Security Content Updates
Using SiteProtector, updated security content can be applied automatically so that your vulnerability management system is continuously improving.
Command Scheduler
The feature-rich SiteProtector command scheduler enables you to run scans, generate reports and update vulnerability information automatically.
Asset Management
SiteProtector performs automatic, passive discovery of information assets, identifying new assets as they are added to your network. You can also import your company's assets from the active directory structure, import assets from external databases, and group assets easily.
Real-time Display
SiteProtector's real-time, flexible display options allow you to monitor vulnerability information at the macro level down to the micro level, with the ability to create custom analysis views that can be saved and shared with other users. The FastAnalysis feature delivers guided analysis, offering answers to the most common-context sensitive questions with a single click.
User Administration
SiteProtector allows you to manage user accounts and roles easily, including group-based user access control
Minimised business risk. Internet Scanner finds the weak spots in your network to help you secure your critical assets and prevent compromises that may result in the loss of availability, integrity or confidentiality of critical business information.
Preemptive protection from attacks. By assessing the security of your networked systems and prioritising remediation tasks, Internet Scanner enables you to address high-risk vulnerabilities before they can be exploited in an attack. In fact, Internet Security Systems (ISS) was recently recognised by IDC as the worldwide market leader in network vulnerability assessment and management.*
Scalability. Whether used as a standalone solution for smaller organisations or combined with SiteProtector for enterprise-sized installations, Internet Scanner enables you to automate scans and prioritise discovered vulnerabilities to deliver the most effective response for your organisation.
Processor
Recommended: 2.4 GHz Dual XEON Processor
Minimum: 1.2 GHz Intel Pentium III
Memory
Recommended: 1 GB
Minimum: 512 MB
Hard disk
- 315 MB for installation from CD-ROM
- 345 MB for installation from file
Other requirements:
- Free hard disk space: 300 MB
- NTFS partition required
- Sufficient disk space for session log files
Operating System
The following operating systems are officially supported:
- Windows 2000 Professional with SP4
- Windows Server 2003 Standard SP1
- Windows XP Professional with SP1a
Database
Standard installation:
- MSDE is automatically installed if it is not already present.
- Microsoft Data Access Components (MDAC) 2.8 is included with the MSDE install.
- RAM requirements include:
128 MB of RAM (Windows XP)
64 MB of RAM (Windows 2000)
32 MB of RAM for all other operating systems
- Sensor-only installation:
MSDE is not required.
Third-party Software Included:
- MDAC 2.8
- Sun Java 2 Runtime Environment (J2RE), Standard Edition, Version 1.4.x
Not included - needed for console only:
- Microsoft Internet Explorer 5.5 or later to run HTML Help
- Adobe Acrobat Reader 4.x or later to view PDF files