Navigation * Home / Solutions / Criston - Vulnerability Management

Criston - Vulnerability Management

As IT managers are increasingly confronted with widespread, more complex attacks on network infrastructures, they have come to realize that a change in their security methods is required.

"Emergency recovery" methods that respond to case-by-case attacks with human intervention have slowly been replaced by systems analysis methods. These methods involve making an inventory of security flaws for software and operating systems, identifying vulnerable systems, and applying configuration changes or available corrective actions.

Protect your company around the clock against internal and external threats with dynamic risk mapping and automatic identification and security flaw analysis.

With the number of security flaws growing at an exponential rate and information systems that have larger, more numerous interconnections, automatic analysis solutions are essential for efficient vulnerability management operations.

• Automatically map vulnerabilities identified by scanners.
• Synthetically visualise the impact of flaws using the CARD method.
• View your risks using synthetic IRF (Indicator Risk Factor)type indicators.
• User control panels to monitor trends in indicators and global or detailed statistics.

Criston VM uses scanners which can be installed anywhere along your information system. Wherever they are located (WAN , VPN, intranet, remote sites, etc.) they are administered by the Vulnerability Manager console and benefit from centralised monitoring and automatic updates.

Network Mapping

Criston VM automatically identifies all the clients in your network, including those in a filtered environment, and provides immediate pinpointing of any new computers in the network.

Easy and Fast Deployment

Scanner deployment is simple and quick: just connect the scanner(s) to your network and the system is ready to run. The server is also simple to install and set up and has very few prerequisites.

Centralised Administration

Scanners can be installed anywhere within your information system. Wherever they are located (WAN , VPN, intranet, remote sites, etc.) they are administered by the Vulnerability Manager console and benefit from centralised monitoring and automatic updates.

Powerful, Open-ended Reporting Based on the IRF/CARD Model

• Identify at a glance newly detected vulnerabilities
• Identify all computers affected by such vulnerabilities
• Consult technical details pertaining to a vulnerability
• Identify all vulnerabilities for a specific computer.
• Analyse results in off-line mode.

Automatic Update

The Vulnerability Knowledge Base is regularly updated by our security experts. This base can be updated via the Internet, via a proxy or locally.

Guaranteed Security

All communication between the Criston VM console and the scanner(s) is encrypted.
No data leaves the company.

Covered Vulnerabilities

Criston VM detects several different types of vulnerabilities:

• Corrective systems not installed
• Vulnerabilities for client stations
• Backdoors, Trojan Horses, etc.
• Denial of Services
• Configuration errors
• Weak or default password
• Low encryption
• Open ports
• etc

Vulnerabilities can be detected on a wide range of equipment:

• Operating Systems (Win9x, NT4.0, 2000, 2003, XP, Solaris, Linux, FreeBSD, NetBSD, OpenBSD, HP-UX, AIX, IOS, etc.)
• Firewalls
• Routers, Switches, Hubs
• Web Servers
• Application Servers
• Mail Servers
• Databases
• etc...

Please contact a member of our consultancy team today;

Tel: +44 (0) 1622 812333
Email: sales@bii-compliance.com