Please note our phone & fax numbers have changed

HACKER SAFE from ScanAlert

ScanAlert, best known for its HACKER SAFE trustmark, is the world's leading provider of website security services. HACKER SAFE technology protects over 250,000 websites, of which over 80,000 display the well known trustmark.

In addition to being used by the majority of the Internet Retailer Top 500 list, it is the only trustmark displayed within the search results of major comparison shopping sites.

As a leading provider of PCI compliance services, ScanAlert also delivers multilingual PCI validation to merchants and payment processors in over 70 countries.

Tens of thousands of organisations - from small online businesses to FORTUNE 500 multinationals - rely on ScanAlert to protect, audit and certify the security of their networks and ecommerce infrastructure.

ScanAlert provides CONTINUOUS WEB SITE PROTECTION by the Daily Scanning of all Internet services.

Between each daily audit, you will receive an immediate email alert if any new vulnerabilities are added to our system that target your exact device configuration. This unique 24-hour continuous alert system protects you around the clock by comparing any newly announced vulnerabilities against your most recent device profile thereby minimising your possible risk exposure between daily scans.

MULTIPHASE VULNERABILITY AUDIT TECHNOLOGY

Daily security audits are performed in three phases: Port Scanning, Network Services Penetration Testing and Web Applications Vulnerability Testing. This Multi phased approach to vulnerability auditing allows us to perform more accurate audits with less load on your servers. It also allows us to run any single test phase on a target to detect changes, test specific ports or vulnerabilities, or run web application only tests on multiple web sites residing on a single server. Scans typically take between 60-90 minutes and transfer approximately 10 megabytes of data. The tests are designed to represent a light-load to the device being tested. Scans are non-disruptive and will not slow or lockup the device or service being tested.

THE DAILY AUDIT PROCEDURE

Phase 1 - Port Discovery Scan

Phase one is a thorough port scan of the target. Accurately determining which ports on an IP address are open is the crucial first step to a comprehensive security audit. This is often not a simple process, but our advanced dynamic port scanning can handle all targets from desktop PCs to the most aggressive firewalls, IDS and IPS systems.

Phase 2 - Network Services Scan

After determining which ports are alive we begin a network services test on each port. During this phase we thoroughly interrogate the service to determine exactly what software is running and how it is configured. Once this information is acquired it is matched to our knowledge base of vulnerabilities in order to launch additional service specific and generic tests.

Phase 3 - Web Application Scan

Web application testing is the third phase of ScanAlert's daily security audit. According to industry analyst firm Gartner Group, an estimated 70% of all security breaches today are due to vulnerabilities within the web application layer. Traditional security mechanisms such as firewalls and IDSes provide little or no protection against attacks on your web applications.

All HTTP services and virtual domains are tested for the existence of potentially dangerous modules, configurations settings, CGIs and other scripts. The web site then is "crawled" to find forms. Forms are exercised in specific ways to disclose all application-level vulnerabilities such as, code revelation, cross-site scripting and SQL injection. Both generic and software specific tests are performed in order to uncover mis-configurations and coding error vulnerabilities

REDUCED FALSE POSITIVES

Our False Positive Management System greatly reduces the frequency of false positives that plague most vulnerability scanning systems. Under some conditions our system will report the "indication" of a possible threat where none actually exists. This typically occurs when the proper patch cannot be detected without invasive action. We always err on the side of caution and will notify you, requesting confirmation of its presence or absence. Potential threats that you have marked as false positive will not influence your certification status.

DEVICE CONFIGURATION EDITING

All device details, such as the IP address, device type, etc. can be updated at any time. You can add additional devices or domains, create users, initiate on-demand scans, and schedule set scan times.

REPORTING

Extensive executive and compliance reporting capabilities include easily customisable report templates. You have the flexibility to create downloadable executive-level summary reports with trend analysis, or detailed technical reports and Reports on Compliance to satisfy various federal and industry requirements

VULNERABILITY MANAGEMENT PORTAL

The portal provides a comprehensive and easy-to-use suite of network security management tools. Our secure web-based vulnerability management system provides extensive vulnerability data
along with complete patch information enabling rapid prioritisation and remediation. Configuration of both device (port level) and domain (protocol level) scanning is available. On-demand security audits can be initiated at any time. Multiple user accounts can be created with appropriate roles and privilege levels providing information access and alert levels tailored to your organisation. From protecting a single web site to auditing a complex network, we provide the appropriate tools for each task.

+ Interactive Vulnerability Management

ScanAlert doesn't just provide you with a 10 page list of the vulnerabilities we find, we give you an interactive vulnerability management tool. View vulnerabilities by device or device
group. Sort and view detailed remediation steps. Create custom alert levels for each user or role. Compare recent audits with data going back up to three years. Configure and generate
PDF security management and compliance reports.

+ Devices And Device Groups

The ability to effectively manage vulnerability data by assigning any network device, group of devices, or IP address to specific groups or individuals is essential to manage your organisation's security. Using ScanAlert's device classification capabilities, individual devices, or entire IP blocks, can be easily grouped by type, business function, geographic location, or other criteria and then assigned to a user or group of user accounts. This flexible, powerful system can then be used to drive audit schedules, alerting, remediation activities and reporting throughout your organisation.

+ Configurable Scheduled And Manual Scans

Scanning time may be scheduled by individual device, device group, or separate schedules for web application and port-level scans. Manual scans can be run at any time, while special
"denial of service" and "full exploit" scans can only be run in the manual mode. Manual scans of current vulnerabilities only are available to help speed remediation efforts.

+ Multiple-User Roles

Hierarchical multi-user environment with role-based access, alerting and reporting distributed management capabilities enable delegation of vulnerability assessment and remediation tasks
to multiple users with assigned privileges, while maintaining centralised control for the Security Manager. This functionality simplifies delegation of network security maintained, facilitates compliance reporting, and provides management with up-to-date overview reports.

SCANALERT NETWORK ARCHITECTURE

ScanAlert's multi-tier network architecture is designed to be fast, highly scalable, fully redundant and secure.

Download the HACKERSAFE Datasheets in pdf format.

Return to Internet & Computer Network Security

	Enter your search terms Submit search form
	Web www.ccl.co.uk