SlideShare une entreprise Scribd logo

Beyond Security AVDS Automated Vulnerability Detection System

Beyond Security
Beyond Security

AVDS is a complete network Vulnerability Assessment and Management product family. Its reporting delivers exactly the information you and your staff needs to locate and repair the vulnerabilities that could contribute to data loss. With each scan, AVDS will automatically find new equipment and services and add them to the inspection schedule. It then tests the response characteristics of every active node creating the most accurate network security results available in the industry. AVDS is able to scan everything that ‘talks IP’, automatically. Each scan includes the widest range of security tests available today and the test library is expanded to include new vulnerabilities daily, with updates hourly.

Technologie
1  sur  4
Télécharger pour lire hors ligne
Page 1 AVDS Key Features:  Scan servers, routers, firewalls, switches, endpoints, phones – everything that ‘speaks IP’  Near-zero false positives resulting in comprehensive and actionable reporting  Web Application testing is built in to every system  Simple set up and upkeep deliver the lowest cost of operation of any VA  Compliance testing for PCI, SOX, HIPAA, ISO and more is included in every system  No host-based software or agents to install or maintain  Differential reports quickly spot new vulnerabilities and network changes.  Automatic, daily vulnerability database updates – stay ahead of the latest threats A Complete PCI Solution Beyond Security is an Approved Scanning Vendor for the Payment Card Industry (PCI ASV) and PCI certification can be included in every installed AVDS system. "We now have the ability to scan at any time. Regular vulnerability assessments scans are like having sonar on our own network. We always know what is going on around us." Mike Gutknecht Network Engineer Rayovac Corporation Automated Vulnerability Detection System AVDS™ is a complete network Vulnerability Assessment and Management product family. Its reporting delivers exactly the information you and your staff needs to locate and repair the vulnerabilities that could contribute to data loss. With each scan, AVDS will automatically find new equipment and services and add them to the inspection schedule. It then tests the response characteristics of every active node creating the most accurate network security results available in the industry. AVDS is able to scan everything that ‘talks IP’, automatically. Each scan includes the widest range of security tests available today and the test library is expanded to include new vulnerabilities daily, with updates hourly. High Accuracy AVDS tests the behavior of network hosts by recording their responses to carefully crafted queries delivering penetration test-like accuracy. No more huge reports packed with hard to resolve false positives. Most VA/VM systems depend heavily upon checking version numbers to deduce a possible security issue. This results in high error rates and hard to use reports. The AVDS test library, which has been in continuous development since 2002, consists of behavior-based tests - not version checking. Behavior in response to query is the only means of testing all the factors that are required to prove that a vulnerability exists. Simplicity of Installation and Maintenance Designed with ease-of-use in mind, the functions you will most frequently use are at easy reach. Drill-down user interface architecture facilitates getting to complex features you may only occasionally need and report details that are only occasionally used. ‘Automated’ is not just a part of the name. AVDS was designed from the ground up by practicing security experts who have felt the pain of running overly complex scanning systems. AVDS will reduce the time you spend running a scanning tool (or tools!) and increase the time you spend eliminating real network vulnerabilities. Low Cost of Operation The testing accuracy and ease-of-use is matched with an easy to understand, common sense licensing plan to produce the lowest scanning cost per IP in the VA marketplace. AVDS licenses are based on active IPs. This give you the freedom to set up fewer scans that span wider IP ranges without taking a license hit for every IP in the range. With AVDS you will spend less time chasing vulnerabilities that don’t exist, less time maintaining your VA solution and your licenses will go a lot farther, allowing you to scan more of your network for less. Integration Included with every system are the ready to use modules and advanced API that allows AVDS to talk with ticketing systems, SIEMs, WAF and all other systems that may need vulnerability data. There are no additional fees or support costs for establishing and maintain integration with other security systems.
Page 2 Web App Testing: For security scanning of web sites, web servers, shopping carts and all Internet-facing IP addresses, scans can be done by our hosted AVDS servers and the results combined with local internal scan results for a comprehensive vulnerability report. MSPs: Easily integrate AVDS with your existing infrastructure. Installed in a Security Operating Center (SOC), ASP farm, co-location or as an outsourced service, AVDS can become a part of your service offering quickly and with minimal capital outlay. "AVDS graphically, unobtrusively and with great detail demonstrated to me the situation of our network/firewall and web server after scanning our system with a huge range of tests. Reports were sent to me that were concise and clear and then the technical staff of Beyond Security talked me through the results of the scans, interpreting areas with which I was unfamiliar and suggesting simple and precise fixes. From the moment of my first contact with Beyond Security, I have been impressed and enjoyed their friendliness, clear talking, approach to confidentiality and technical knowledge.” Paul Sheriff IT Manager City of Geraldton High Security AVDS meets or exceeds the most rigorous corporate, government and military security standards for network scanning systems. It has been selected by Central Banks, Military units and Government entities in many countries to scan some of the most carefully secured networks in the world. No data of any kind is sent out of the network by AVDS. The operating system itself is a hardened, locked down version of Linux and all functions, including storage of results is self-contained. There is no known security requirement that AVDS has not met. Focused, Actionable Reporting AVDS standard reports provide a comprehensive analysis of all vulnerabilities found grouped by risk severity or by most severely compromised asset. Every report contains technical information specific to the risks discovered, including a summary, severity, possible impact, recommended solution and relevant information such as links to software vendor patches. Reports are available on the management interface by browser with handy drill-down from the highest overview down to each individual contributing issue. Reports are provided in HTML, PDF, CSV, CIS and XML. An Executive Summary section includes an overall summary for quick assessment of discovered risks. Differential Reports Discover what changed on your network with each new scan. This popular report type will display new and removed hosts, the newest vulnerabilities, just opened, unexpected ports, newly installed vulnerable services, as well as a summary of any problems resolved since the last scan. Differential reports are a valuable tool to monitor changes to the security baseline and track remediation efforts over time. Custom Reporting Policies and Adjustable Scoring Accurate Vulnerability Management requires flexibility in asset ranking and vulnerability severity scoring. Default reporting values in AVDS follow current best practices but allow administrators to adjust the relative importance of individual assets and/or vulnerabilities. Upgrade or downgrade specific assets or vulnerabilities and ensure that your remediation efforts are always focused on the right targets. Generate reports based on detailed company vulnerability policies.
Page 3 Distributed Networks: Handle hundreds of widely distributed business units from a single, central control point. Assign each security admin the rights to scan his own network, create and view his own reports. All scan results migrate up to the home office reports for a comprehensive overview of the security status of the entire organization and then drill down on how each unit is managing its assets and responding to local challenges. New Vulnerabilities: With over 300 new operating system and application vulnerabilities announced every month, regular network scanning is essential. An automated, ongoing vulnerability assessment and management solution is your best option for the elimination of all high-risk corporate network vulnerabilities. "Previously, I have dealt with many (many) different scanning vendors in my 15+ years in IT- security. AVDS from Beyond Security is the first solution I could power up, configure and start doing useful scans within 15 minutes of my first session - awesome!" Mikael Vingaard Head of Research Sec4IT “The information provided in the reports is very clear and concise. It explains to engineers what the problem is, where to look for more information, and how to fix it.” Cody Phang National Capital Authority (NCA) Australian Government Vulnerability Test Library Beyond Security maintains its own complete library of behavior-based vulnerability tests that span the entire range of known network vulnerabilities. Updates to the library are done daily and every system in the world is updated hourly, automatically. Scans Sample Checks Web Applications Apache, Microsoft IIS® , Oracle WebLogic® , IBM WebSphere® , Adobe ColdFusion® , shopping carts – every common app with a known vulnerability. Databases Oracle® , MySQL, PostgreSQL, Microsoft SQL Server® , Lotus Notes® , DB2® Network Systems Routers, Firewalls, Switches/Hubs, Remote Access Servers, Wireless Access Points, IPsec, PPTP, DHCP, DNS, LDAP, SNMP, VPNs, FTP, SSH, TELNET, Modems, Anti-Virus Systems Operating Systems Microsoft® – all versions, Solaris® ,AIX® , HP-UX® , SCO UnixWare® , BSD (OpenBSD, NetBSD), Linux – all distributions, AS/400® , VMS® , Mac OS X® , Novell NDS Languages SQL, ASP, PHP, Python, CGI, JavaScript, PERL, Ruby, .NET OSI Layer 7 Apps Web server, Database server, Mail server, FTP server, Proxy server AVDS Features at a Glance  Scan unlimited IP ranges and only pay for the active IPs on your network  Quick Scan provides ad-hoc scans within seconds  Differential reporting highlights and automatically tests newly added IPs, ports and services  Powerful search engine to quickly filter and search reported vulnerabilities  Distributed scanning architecture for large networks and multiple AVDS appliances with enterprise-wide scans and consolidated reports  Scan Profiles can check large networks quickly for a small subset of problems  Non-intrusive and consumes minimal bandwidth. Scan rate can be limited by administrator to control bandwidth requirements  Web browser administrative interface  Scales to 2 million active IPs  Automated daily updates of threat database  Vulnerability database supplied by SecuriTeam Portal (www.securiteam.com), a industry respected security clearinghouse with over 2 million visits annually and 8,500 online articles  24/7 unlimited phone support with access to Beyond Security experts Penetration Testing Alternative Many organizations are required to perform periodic penetration testing on their networks and web sites. These tests are intrusive, costly and highly dependent upon the skill of the individual. No two individuals will run the same tests and none will match the exhaustive range of tests covered by AVDS. Further, the rapid rate new vulnerabilities are discovered, exploited and made available, penetration test results are rendered out of date almost as soon as they are complete. AVDS provides results senior to most penetration testing services, on demand and easily repeatable.
Page 4 Free Evaluation Our free 30-day evaluation is available in most countries and includes an AVDS appliance with access to all features. Compliance Features AVDS reporting is designed to respond to PCI, SOX, HIPAA, ISO and all other compliance requirements. Beyond Security is an approved Scanning Vendor for the Payment Card Industry and AVDS owners "We needed a way to discover and audit network assets, understand and prioritize current network vulnerabilities, then track and manage the remediation efforts over time. After a three month review of nearly ten different vulnerability scanning vendors we chose Beyond Security's AVDS. We had specifically selected AVDS because it would cause no disruption to our systems and required no installation of any new software on our systems." –Gary Anton VP of Strategic Sourcing and IT Illinois Tool Works (ITW) Contact Us: www.beyondsecurity.com sales@beyondsecurity.com US: +1 800-801-2821 UK: +44 118-315-0005 France: +33(0)6 03 79 55 74 Korea: +82 70-8741-8885 China: +86 10-598-22245 India: +91 80-4040-7235 Singapore: +65 6850-5045 Brazil: +55-11-3197-2029 Scanning Performance Given average network structure, a single AVDS scanner can test approximately 2500 active IPs at default settings. This allows scanning production networks during working hour with no impact on user experience. Scan speed can be adjusted lower, to become practically invisible, or high enough to get large networks completed during off hours. Default Min Max Rate of Scan (Packets/Second) 300 35 1200 Number of Sessions per Scan 8 2 32 Throughput per Scan (Kilobits/Second) 60 6 240 Average Scanning Time Typical Class C network in ~12 minutes Product Line There is an AVDS product for every network and web application testing need. Hosted services are available for just a single web site. Network scanning product applications range from a single location with 100 active IPs to international corporations with hundreds of business units and hundreds of thousands of active IPs. Product Application Hosted Scanning Service Scan one or thousands of external IPs, PCI available SAS Small networks with single administrator AVDSII Up to 500 IPs in one network AVDS Unlimited IPs, networks, administrators, Appliance Hardware Specifications AVDS is available in a variety of form factors. The standard appliance is a 1U rackmount server. Portable units allow easy transport between business locations. Custom systems can be configured with any arrangement of redundant power supplies, RAID drive arrays and optical communication capabilities. Form Factor Components Standard 1U 19” Rack Mount; Xeon E3-1220, 4GB UDIMM, 500GB SATA, 2 Gigabit ports, Portable 7" x 7" x 1.4" / 18 x 18 x 3.5cm case, 3 Lbs., Pentium G3240T, 4GB DDR3, 500GB SATA Custom 2U 19” Rack Mount; Choice of processors, memory and redundant drives, ports and power supplies System Requirements  Browser: Chrome, IE 6.0 or later, Firefox 1.5 or later (for administrative console)  IP address on your internal network  Power requirements vary by form factor, but all are Energy Star compliant

Recommandé

USP SES and the Location Layer: Geolocation for adaptive Access Control and P...
USP SES and the Location Layer: Geolocation for adaptive Access Control and P...USP SES and the Location Layer: Geolocation for adaptive Access Control and P...
USP SES and the Location Layer: Geolocation for adaptive Access Control and P...United Security Providers AG
 
Wapples brochure v1 4 eng
Wapples brochure v1 4 engWapples brochure v1 4 eng
Wapples brochure v1 4 enghasbro505
 
F5 Networks: The Right Way to Protect Against DDoS Attacks (Business White Pa...
F5 Networks: The Right Way to Protect Against DDoS Attacks (Business White Pa...F5 Networks: The Right Way to Protect Against DDoS Attacks (Business White Pa...
F5 Networks: The Right Way to Protect Against DDoS Attacks (Business White Pa...F5 Networks
 
How to Protect Against top Web Security Issues With Citrix NetScaler
How to Protect Against top Web Security Issues With Citrix NetScalerHow to Protect Against top Web Security Issues With Citrix NetScaler
How to Protect Against top Web Security Issues With Citrix NetScalerDavid McGeough
 
Kona Web Application Firewall Overview - Akamai at RSA Conference 2013
Kona Web Application Firewall Overview - Akamai at RSA Conference 2013Kona Web Application Firewall Overview - Akamai at RSA Conference 2013
Kona Web Application Firewall Overview - Akamai at RSA Conference 2013Akamai Technologies
 
Incapsula: How to Increase SaaS Websites’ Uptime and Accelerate Performance
Incapsula: How to Increase SaaS Websites’ Uptime and Accelerate PerformanceIncapsula: How to Increase SaaS Websites’ Uptime and Accelerate Performance
Incapsula: How to Increase SaaS Websites’ Uptime and Accelerate PerformanceImperva Incapsula
 
Tripwire IP360 Vulnerability Management Scanning Best Practices
Tripwire IP360 Vulnerability Management Scanning Best PracticesTripwire IP360 Vulnerability Management Scanning Best Practices
Tripwire IP360 Vulnerability Management Scanning Best PracticesTripwire
 
Radware - WAF (Web Application Firewall)
Radware - WAF (Web Application Firewall)Radware - WAF (Web Application Firewall)
Radware - WAF (Web Application Firewall)Deivid Toledo
 

Recommandé

USP SES and the Location Layer: Geolocation for adaptive Access Control and P...
USP SES and the Location Layer: Geolocation for adaptive Access Control and P...USP SES and the Location Layer: Geolocation for adaptive Access Control and P...
USP SES and the Location Layer: Geolocation for adaptive Access Control and P...United Security Providers AG
 
Wapples brochure v1 4 eng
Wapples brochure v1 4 engWapples brochure v1 4 eng
Wapples brochure v1 4 enghasbro505
 
F5 Networks: The Right Way to Protect Against DDoS Attacks (Business White Pa...
F5 Networks: The Right Way to Protect Against DDoS Attacks (Business White Pa...F5 Networks: The Right Way to Protect Against DDoS Attacks (Business White Pa...
F5 Networks: The Right Way to Protect Against DDoS Attacks (Business White Pa...F5 Networks
 
How to Protect Against top Web Security Issues With Citrix NetScaler
How to Protect Against top Web Security Issues With Citrix NetScalerHow to Protect Against top Web Security Issues With Citrix NetScaler
How to Protect Against top Web Security Issues With Citrix NetScalerDavid McGeough
 
Kona Web Application Firewall Overview - Akamai at RSA Conference 2013
Kona Web Application Firewall Overview - Akamai at RSA Conference 2013Kona Web Application Firewall Overview - Akamai at RSA Conference 2013
Kona Web Application Firewall Overview - Akamai at RSA Conference 2013Akamai Technologies
 
Incapsula: How to Increase SaaS Websites’ Uptime and Accelerate Performance
Incapsula: How to Increase SaaS Websites’ Uptime and Accelerate PerformanceIncapsula: How to Increase SaaS Websites’ Uptime and Accelerate Performance
Incapsula: How to Increase SaaS Websites’ Uptime and Accelerate PerformanceImperva Incapsula
 
Tripwire IP360 Vulnerability Management Scanning Best Practices
Tripwire IP360 Vulnerability Management Scanning Best PracticesTripwire IP360 Vulnerability Management Scanning Best Practices
Tripwire IP360 Vulnerability Management Scanning Best PracticesTripwire
 
Radware - WAF (Web Application Firewall)
Radware - WAF (Web Application Firewall)Radware - WAF (Web Application Firewall)
Radware - WAF (Web Application Firewall)Deivid Toledo
 
How to Troubleshoot Apps for the Modern Connected Worker
How to Troubleshoot Apps for the Modern Connected WorkerHow to Troubleshoot Apps for the Modern Connected Worker
How to Troubleshoot Apps for the Modern Connected WorkerThousandEyes
 
Finology Group – Insurtech Innovation Award 2024
Finology Group – Insurtech Innovation Award 2024Finology Group – Insurtech Innovation Award 2024
Finology Group – Insurtech Innovation Award 2024The Digital Insurer
 
2024: Domino Containers - The Next Step. News from the Domino Container commu...
2024: Domino Containers - The Next Step. News from the Domino Container commu...2024: Domino Containers - The Next Step. News from the Domino Container commu...
2024: Domino Containers - The Next Step. News from the Domino Container commu...Martijn de Jong
 
Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...
Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...
Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...Igalia
 
From Event to Action: Accelerate Your Decision Making with Real-Time Automation
From Event to Action: Accelerate Your Decision Making with Real-Time AutomationFrom Event to Action: Accelerate Your Decision Making with Real-Time Automation
From Event to Action: Accelerate Your Decision Making with Real-Time AutomationSafe Software
 
Histor y of HAM Radio presentation slide
Histor y of HAM Radio presentation slideHistor y of HAM Radio presentation slide
Histor y of HAM Radio presentation slidevu2urc
 
08448380779 Call Girls In Diplomatic Enclave Women Seeking Men
08448380779 Call Girls In Diplomatic Enclave Women Seeking Men08448380779 Call Girls In Diplomatic Enclave Women Seeking Men
08448380779 Call Girls In Diplomatic Enclave Women Seeking MenDelhi Call girls
 
The Role of Taxonomy and Ontology in Semantic Layers - Heather Hedden.pdf
The Role of Taxonomy and Ontology in Semantic Layers - Heather Hedden.pdfThe Role of Taxonomy and Ontology in Semantic Layers - Heather Hedden.pdf
The Role of Taxonomy and Ontology in Semantic Layers - Heather Hedden.pdfEnterprise Knowledge
 
Axa Assurance Maroc - Insurer Innovation Award 2024
Axa Assurance Maroc - Insurer Innovation Award 2024Axa Assurance Maroc - Insurer Innovation Award 2024
Axa Assurance Maroc - Insurer Innovation Award 2024The Digital Insurer
 
Data Cloud, More than a CDP by Matt Robison
Data Cloud, More than a CDP by Matt RobisonData Cloud, More than a CDP by Matt Robison
Data Cloud, More than a CDP by Matt RobisonAnna Loughnan Colquhoun
 
08448380779 Call Girls In Greater Kailash - I Women Seeking Men
08448380779 Call Girls In Greater Kailash - I Women Seeking Men08448380779 Call Girls In Greater Kailash - I Women Seeking Men
08448380779 Call Girls In Greater Kailash - I Women Seeking MenDelhi Call girls
 
Breaking the Kubernetes Kill Chain: Host Path Mount
Breaking the Kubernetes Kill Chain: Host Path MountBreaking the Kubernetes Kill Chain: Host Path Mount
Breaking the Kubernetes Kill Chain: Host Path MountPuma Security, LLC
 
08448380779 Call Girls In Civil Lines Women Seeking Men
08448380779 Call Girls In Civil Lines Women Seeking Men08448380779 Call Girls In Civil Lines Women Seeking Men
08448380779 Call Girls In Civil Lines Women Seeking MenDelhi Call girls
 
Tata AIG General Insurance Company - Insurer Innovation Award 2024
Tata AIG General Insurance Company - Insurer Innovation Award 2024Tata AIG General Insurance Company - Insurer Innovation Award 2024
Tata AIG General Insurance Company - Insurer Innovation Award 2024The Digital Insurer
 
Injustice - Developers Among Us (SciFiDevCon 2024)
Injustice - Developers Among Us (SciFiDevCon 2024)Injustice - Developers Among Us (SciFiDevCon 2024)
Injustice - Developers Among Us (SciFiDevCon 2024)Allon Mureinik
 
Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...
Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...
Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...Drew Madelung
 
Workshop - Best of Both Worlds_ Combine KG and Vector search for enhanced R...
Workshop - Best of Both Worlds_ Combine KG and Vector search for enhanced R...Workshop - Best of Both Worlds_ Combine KG and Vector search for enhanced R...
Workshop - Best of Both Worlds_ Combine KG and Vector search for enhanced R...Neo4j
 
Scaling API-first – The story of a global engineering organization
Scaling API-first – The story of a global engineering organizationScaling API-first – The story of a global engineering organization
Scaling API-first – The story of a global engineering organizationRadu Cotescu
 
The Codex of Business Writing Software for Real-World Solutions 2.pptx
The Codex of Business Writing Software for Real-World Solutions 2.pptxThe Codex of Business Writing Software for Real-World Solutions 2.pptx
The Codex of Business Writing Software for Real-World Solutions 2.pptxMalak Abu Hammad
 
TrustArc Webinar - Stay Ahead of US State Data Privacy Law Developments
TrustArc Webinar - Stay Ahead of US State Data Privacy Law DevelopmentsTrustArc Webinar - Stay Ahead of US State Data Privacy Law Developments
TrustArc Webinar - Stay Ahead of US State Data Privacy Law DevelopmentsTrustArc
 
2024 State of Marketing Report – by Hubspot
2024 State of Marketing Report – by Hubspot2024 State of Marketing Report – by Hubspot
2024 State of Marketing Report – by HubspotMarius Sescu
 
Everything You Need To Know About ChatGPT
Everything You Need To Know About ChatGPTEverything You Need To Know About ChatGPT
Everything You Need To Know About ChatGPTExpeed Software
 

Contenu connexe

Dernier

How to Troubleshoot Apps for the Modern Connected Worker
How to Troubleshoot Apps for the Modern Connected WorkerHow to Troubleshoot Apps for the Modern Connected Worker
How to Troubleshoot Apps for the Modern Connected WorkerThousandEyes
 
Finology Group – Insurtech Innovation Award 2024
Finology Group – Insurtech Innovation Award 2024Finology Group – Insurtech Innovation Award 2024
Finology Group – Insurtech Innovation Award 2024The Digital Insurer
 
2024: Domino Containers - The Next Step. News from the Domino Container commu...
2024: Domino Containers - The Next Step. News from the Domino Container commu...2024: Domino Containers - The Next Step. News from the Domino Container commu...
2024: Domino Containers - The Next Step. News from the Domino Container commu...Martijn de Jong
 
Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...
Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...
Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...Igalia
 
From Event to Action: Accelerate Your Decision Making with Real-Time Automation
From Event to Action: Accelerate Your Decision Making with Real-Time AutomationFrom Event to Action: Accelerate Your Decision Making with Real-Time Automation
From Event to Action: Accelerate Your Decision Making with Real-Time AutomationSafe Software
 
Histor y of HAM Radio presentation slide
Histor y of HAM Radio presentation slideHistor y of HAM Radio presentation slide
Histor y of HAM Radio presentation slidevu2urc
 
08448380779 Call Girls In Diplomatic Enclave Women Seeking Men
08448380779 Call Girls In Diplomatic Enclave Women Seeking Men08448380779 Call Girls In Diplomatic Enclave Women Seeking Men
08448380779 Call Girls In Diplomatic Enclave Women Seeking MenDelhi Call girls
 
The Role of Taxonomy and Ontology in Semantic Layers - Heather Hedden.pdf
The Role of Taxonomy and Ontology in Semantic Layers - Heather Hedden.pdfThe Role of Taxonomy and Ontology in Semantic Layers - Heather Hedden.pdf
The Role of Taxonomy and Ontology in Semantic Layers - Heather Hedden.pdfEnterprise Knowledge
 
Axa Assurance Maroc - Insurer Innovation Award 2024
Axa Assurance Maroc - Insurer Innovation Award 2024Axa Assurance Maroc - Insurer Innovation Award 2024
Axa Assurance Maroc - Insurer Innovation Award 2024The Digital Insurer
 
Data Cloud, More than a CDP by Matt Robison
Data Cloud, More than a CDP by Matt RobisonData Cloud, More than a CDP by Matt Robison
Data Cloud, More than a CDP by Matt RobisonAnna Loughnan Colquhoun
 
08448380779 Call Girls In Greater Kailash - I Women Seeking Men
08448380779 Call Girls In Greater Kailash - I Women Seeking Men08448380779 Call Girls In Greater Kailash - I Women Seeking Men
08448380779 Call Girls In Greater Kailash - I Women Seeking MenDelhi Call girls
 
Breaking the Kubernetes Kill Chain: Host Path Mount
Breaking the Kubernetes Kill Chain: Host Path MountBreaking the Kubernetes Kill Chain: Host Path Mount
Breaking the Kubernetes Kill Chain: Host Path MountPuma Security, LLC
 
08448380779 Call Girls In Civil Lines Women Seeking Men
08448380779 Call Girls In Civil Lines Women Seeking Men08448380779 Call Girls In Civil Lines Women Seeking Men
08448380779 Call Girls In Civil Lines Women Seeking MenDelhi Call girls
 
Tata AIG General Insurance Company - Insurer Innovation Award 2024
Tata AIG General Insurance Company - Insurer Innovation Award 2024Tata AIG General Insurance Company - Insurer Innovation Award 2024
Tata AIG General Insurance Company - Insurer Innovation Award 2024The Digital Insurer
 
Injustice - Developers Among Us (SciFiDevCon 2024)
Injustice - Developers Among Us (SciFiDevCon 2024)Injustice - Developers Among Us (SciFiDevCon 2024)
Injustice - Developers Among Us (SciFiDevCon 2024)Allon Mureinik
 
Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...
Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...
Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...Drew Madelung
 
Workshop - Best of Both Worlds_ Combine KG and Vector search for enhanced R...
Workshop - Best of Both Worlds_ Combine KG and Vector search for enhanced R...Workshop - Best of Both Worlds_ Combine KG and Vector search for enhanced R...
Workshop - Best of Both Worlds_ Combine KG and Vector search for enhanced R...Neo4j
 
Scaling API-first – The story of a global engineering organization
Scaling API-first – The story of a global engineering organizationScaling API-first – The story of a global engineering organization
Scaling API-first – The story of a global engineering organizationRadu Cotescu
 
The Codex of Business Writing Software for Real-World Solutions 2.pptx
The Codex of Business Writing Software for Real-World Solutions 2.pptxThe Codex of Business Writing Software for Real-World Solutions 2.pptx
The Codex of Business Writing Software for Real-World Solutions 2.pptxMalak Abu Hammad
 
TrustArc Webinar - Stay Ahead of US State Data Privacy Law Developments
TrustArc Webinar - Stay Ahead of US State Data Privacy Law DevelopmentsTrustArc Webinar - Stay Ahead of US State Data Privacy Law Developments
TrustArc Webinar - Stay Ahead of US State Data Privacy Law DevelopmentsTrustArc
 

Dernier (20)

How to Troubleshoot Apps for the Modern Connected Worker
How to Troubleshoot Apps for the Modern Connected WorkerHow to Troubleshoot Apps for the Modern Connected Worker
How to Troubleshoot Apps for the Modern Connected Worker
 
Finology Group – Insurtech Innovation Award 2024
Finology Group – Insurtech Innovation Award 2024Finology Group – Insurtech Innovation Award 2024
Finology Group – Insurtech Innovation Award 2024
 
2024: Domino Containers - The Next Step. News from the Domino Container commu...
2024: Domino Containers - The Next Step. News from the Domino Container commu...2024: Domino Containers - The Next Step. News from the Domino Container commu...
2024: Domino Containers - The Next Step. News from the Domino Container commu...
 
Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...
Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...
Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...
 
From Event to Action: Accelerate Your Decision Making with Real-Time Automation
From Event to Action: Accelerate Your Decision Making with Real-Time AutomationFrom Event to Action: Accelerate Your Decision Making with Real-Time Automation
From Event to Action: Accelerate Your Decision Making with Real-Time Automation
 
Histor y of HAM Radio presentation slide
Histor y of HAM Radio presentation slideHistor y of HAM Radio presentation slide
Histor y of HAM Radio presentation slide
 
08448380779 Call Girls In Diplomatic Enclave Women Seeking Men
08448380779 Call Girls In Diplomatic Enclave Women Seeking Men08448380779 Call Girls In Diplomatic Enclave Women Seeking Men
08448380779 Call Girls In Diplomatic Enclave Women Seeking Men
 
The Role of Taxonomy and Ontology in Semantic Layers - Heather Hedden.pdf
The Role of Taxonomy and Ontology in Semantic Layers - Heather Hedden.pdfThe Role of Taxonomy and Ontology in Semantic Layers - Heather Hedden.pdf
The Role of Taxonomy and Ontology in Semantic Layers - Heather Hedden.pdf
 
Axa Assurance Maroc - Insurer Innovation Award 2024
Axa Assurance Maroc - Insurer Innovation Award 2024Axa Assurance Maroc - Insurer Innovation Award 2024
Axa Assurance Maroc - Insurer Innovation Award 2024
 
Data Cloud, More than a CDP by Matt Robison
Data Cloud, More than a CDP by Matt RobisonData Cloud, More than a CDP by Matt Robison
Data Cloud, More than a CDP by Matt Robison
 
08448380779 Call Girls In Greater Kailash - I Women Seeking Men
08448380779 Call Girls In Greater Kailash - I Women Seeking Men08448380779 Call Girls In Greater Kailash - I Women Seeking Men
08448380779 Call Girls In Greater Kailash - I Women Seeking Men
 
Breaking the Kubernetes Kill Chain: Host Path Mount
Breaking the Kubernetes Kill Chain: Host Path MountBreaking the Kubernetes Kill Chain: Host Path Mount
Breaking the Kubernetes Kill Chain: Host Path Mount
 
08448380779 Call Girls In Civil Lines Women Seeking Men
08448380779 Call Girls In Civil Lines Women Seeking Men08448380779 Call Girls In Civil Lines Women Seeking Men
08448380779 Call Girls In Civil Lines Women Seeking Men
 
Tata AIG General Insurance Company - Insurer Innovation Award 2024
Tata AIG General Insurance Company - Insurer Innovation Award 2024Tata AIG General Insurance Company - Insurer Innovation Award 2024
Tata AIG General Insurance Company - Insurer Innovation Award 2024
 
Injustice - Developers Among Us (SciFiDevCon 2024)
Injustice - Developers Among Us (SciFiDevCon 2024)Injustice - Developers Among Us (SciFiDevCon 2024)
Injustice - Developers Among Us (SciFiDevCon 2024)
 
Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...
Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...
Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...
 
Workshop - Best of Both Worlds_ Combine KG and Vector search for enhanced R...
Workshop - Best of Both Worlds_ Combine KG and Vector search for enhanced R...Workshop - Best of Both Worlds_ Combine KG and Vector search for enhanced R...
Workshop - Best of Both Worlds_ Combine KG and Vector search for enhanced R...
 
Scaling API-first – The story of a global engineering organization
Scaling API-first – The story of a global engineering organizationScaling API-first – The story of a global engineering organization
Scaling API-first – The story of a global engineering organization
 
The Codex of Business Writing Software for Real-World Solutions 2.pptx
The Codex of Business Writing Software for Real-World Solutions 2.pptxThe Codex of Business Writing Software for Real-World Solutions 2.pptx
The Codex of Business Writing Software for Real-World Solutions 2.pptx
 
TrustArc Webinar - Stay Ahead of US State Data Privacy Law Developments
TrustArc Webinar - Stay Ahead of US State Data Privacy Law DevelopmentsTrustArc Webinar - Stay Ahead of US State Data Privacy Law Developments
TrustArc Webinar - Stay Ahead of US State Data Privacy Law Developments
 

En vedette

2024 State of Marketing Report – by Hubspot
2024 State of Marketing Report – by Hubspot2024 State of Marketing Report – by Hubspot
2024 State of Marketing Report – by HubspotMarius Sescu
 
Everything You Need To Know About ChatGPT
Everything You Need To Know About ChatGPTEverything You Need To Know About ChatGPT
Everything You Need To Know About ChatGPTExpeed Software
 
Product Design Trends in 2024 | Teenage Engineerings
Product Design Trends in 2024 | Teenage EngineeringsProduct Design Trends in 2024 | Teenage Engineerings
Product Design Trends in 2024 | Teenage EngineeringsPixeldarts
 
How Race, Age and Gender Shape Attitudes Towards Mental Health
How Race, Age and Gender Shape Attitudes Towards Mental HealthHow Race, Age and Gender Shape Attitudes Towards Mental Health
How Race, Age and Gender Shape Attitudes Towards Mental HealthThinkNow
 
AI Trends in Creative Operations 2024 by Artwork Flow.pdf
AI Trends in Creative Operations 2024 by Artwork Flow.pdfAI Trends in Creative Operations 2024 by Artwork Flow.pdf
AI Trends in Creative Operations 2024 by Artwork Flow.pdfmarketingartwork
 
PEPSICO Presentation to CAGNY Conference Feb 2024
PEPSICO Presentation to CAGNY Conference Feb 2024PEPSICO Presentation to CAGNY Conference Feb 2024
PEPSICO Presentation to CAGNY Conference Feb 2024Neil Kimberley
 
Content Methodology: A Best Practices Report (Webinar)
Content Methodology: A Best Practices Report (Webinar)Content Methodology: A Best Practices Report (Webinar)
Content Methodology: A Best Practices Report (Webinar)contently
 
How to Prepare For a Successful Job Search for 2024
How to Prepare For a Successful Job Search for 2024How to Prepare For a Successful Job Search for 2024
How to Prepare For a Successful Job Search for 2024Albert Qian
 
Social Media Marketing Trends 2024 // The Global Indie Insights
Social Media Marketing Trends 2024 // The Global Indie InsightsSocial Media Marketing Trends 2024 // The Global Indie Insights
Social Media Marketing Trends 2024 // The Global Indie InsightsKurio // The Social Media Age(ncy)
 
Trends In Paid Search: Navigating The Digital Landscape In 2024
Trends In Paid Search: Navigating The Digital Landscape In 2024Trends In Paid Search: Navigating The Digital Landscape In 2024
Trends In Paid Search: Navigating The Digital Landscape In 2024Search Engine Journal
 
5 Public speaking tips from TED - Visualized summary
5 Public speaking tips from TED - Visualized summary5 Public speaking tips from TED - Visualized summary
5 Public speaking tips from TED - Visualized summarySpeakerHub
 
ChatGPT and the Future of Work - Clark Boyd
ChatGPT and the Future of Work - Clark Boyd ChatGPT and the Future of Work - Clark Boyd
ChatGPT and the Future of Work - Clark Boyd Clark Boyd
 
Getting into the tech field. what next
Getting into the tech field. what next Getting into the tech field. what next
Getting into the tech field. what next Tessa Mero
 
Google's Just Not That Into You: Understanding Core Updates & Search Intent
Google's Just Not That Into You: Understanding Core Updates & Search IntentGoogle's Just Not That Into You: Understanding Core Updates & Search Intent
Google's Just Not That Into You: Understanding Core Updates & Search IntentLily Ray
 
Time Management & Productivity - Best Practices
Time Management & Productivity - Best PracticesTime Management & Productivity - Best Practices
Time Management & Productivity - Best PracticesVit Horky
 
The six step guide to practical project management
The six step guide to practical project managementThe six step guide to practical project management
The six step guide to practical project managementMindGenius
 
Beginners Guide to TikTok for Search - Rachel Pearson - We are Tilt __ Bright...
Beginners Guide to TikTok for Search - Rachel Pearson - We are Tilt __ Bright...Beginners Guide to TikTok for Search - Rachel Pearson - We are Tilt __ Bright...
Beginners Guide to TikTok for Search - Rachel Pearson - We are Tilt __ Bright...RachelPearson36
 

En vedette (20)

2024 State of Marketing Report – by Hubspot
2024 State of Marketing Report – by Hubspot2024 State of Marketing Report – by Hubspot
2024 State of Marketing Report – by Hubspot
 
Everything You Need To Know About ChatGPT
Everything You Need To Know About ChatGPTEverything You Need To Know About ChatGPT
Everything You Need To Know About ChatGPT
 
Product Design Trends in 2024 | Teenage Engineerings
Product Design Trends in 2024 | Teenage EngineeringsProduct Design Trends in 2024 | Teenage Engineerings
Product Design Trends in 2024 | Teenage Engineerings
 
How Race, Age and Gender Shape Attitudes Towards Mental Health
How Race, Age and Gender Shape Attitudes Towards Mental HealthHow Race, Age and Gender Shape Attitudes Towards Mental Health
How Race, Age and Gender Shape Attitudes Towards Mental Health
 
AI Trends in Creative Operations 2024 by Artwork Flow.pdf
AI Trends in Creative Operations 2024 by Artwork Flow.pdfAI Trends in Creative Operations 2024 by Artwork Flow.pdf
AI Trends in Creative Operations 2024 by Artwork Flow.pdf
 
Skeleton Culture Code
Skeleton Culture CodeSkeleton Culture Code
Skeleton Culture Code
 
PEPSICO Presentation to CAGNY Conference Feb 2024
PEPSICO Presentation to CAGNY Conference Feb 2024PEPSICO Presentation to CAGNY Conference Feb 2024
PEPSICO Presentation to CAGNY Conference Feb 2024
 
Content Methodology: A Best Practices Report (Webinar)
Content Methodology: A Best Practices Report (Webinar)Content Methodology: A Best Practices Report (Webinar)
Content Methodology: A Best Practices Report (Webinar)
 
How to Prepare For a Successful Job Search for 2024
How to Prepare For a Successful Job Search for 2024How to Prepare For a Successful Job Search for 2024
How to Prepare For a Successful Job Search for 2024
 
Social Media Marketing Trends 2024 // The Global Indie Insights
Social Media Marketing Trends 2024 // The Global Indie InsightsSocial Media Marketing Trends 2024 // The Global Indie Insights
Social Media Marketing Trends 2024 // The Global Indie Insights
 
Trends In Paid Search: Navigating The Digital Landscape In 2024
Trends In Paid Search: Navigating The Digital Landscape In 2024Trends In Paid Search: Navigating The Digital Landscape In 2024
Trends In Paid Search: Navigating The Digital Landscape In 2024
 
5 Public speaking tips from TED - Visualized summary
5 Public speaking tips from TED - Visualized summary5 Public speaking tips from TED - Visualized summary
5 Public speaking tips from TED - Visualized summary
 
ChatGPT and the Future of Work - Clark Boyd
ChatGPT and the Future of Work - Clark Boyd ChatGPT and the Future of Work - Clark Boyd
ChatGPT and the Future of Work - Clark Boyd
 
Getting into the tech field. what next
Getting into the tech field. what next Getting into the tech field. what next
Getting into the tech field. what next
 
Google's Just Not That Into You: Understanding Core Updates & Search Intent
Google's Just Not That Into You: Understanding Core Updates & Search IntentGoogle's Just Not That Into You: Understanding Core Updates & Search Intent
Google's Just Not That Into You: Understanding Core Updates & Search Intent
 
How to have difficult conversations
How to have difficult conversations How to have difficult conversations
How to have difficult conversations
 
Introduction to Data Science
Introduction to Data ScienceIntroduction to Data Science
Introduction to Data Science
 
Time Management & Productivity - Best Practices
Time Management & Productivity - Best PracticesTime Management & Productivity - Best Practices
Time Management & Productivity - Best Practices
 
The six step guide to practical project management
The six step guide to practical project managementThe six step guide to practical project management
The six step guide to practical project management
 
Beginners Guide to TikTok for Search - Rachel Pearson - We are Tilt __ Bright...
Beginners Guide to TikTok for Search - Rachel Pearson - We are Tilt __ Bright...Beginners Guide to TikTok for Search - Rachel Pearson - We are Tilt __ Bright...
Beginners Guide to TikTok for Search - Rachel Pearson - We are Tilt __ Bright...
 

Beyond Security AVDS Automated Vulnerability Detection System

  • 1. Page 1 AVDS Key Features:  Scan servers, routers, firewalls, switches, endpoints, phones – everything that ‘speaks IP’  Near-zero false positives resulting in comprehensive and actionable reporting  Web Application testing is built in to every system  Simple set up and upkeep deliver the lowest cost of operation of any VA  Compliance testing for PCI, SOX, HIPAA, ISO and more is included in every system  No host-based software or agents to install or maintain  Differential reports quickly spot new vulnerabilities and network changes.  Automatic, daily vulnerability database updates – stay ahead of the latest threats A Complete PCI Solution Beyond Security is an Approved Scanning Vendor for the Payment Card Industry (PCI ASV) and PCI certification can be included in every installed AVDS system. "We now have the ability to scan at any time. Regular vulnerability assessments scans are like having sonar on our own network. We always know what is going on around us." Mike Gutknecht Network Engineer Rayovac Corporation Automated Vulnerability Detection System AVDS™ is a complete network Vulnerability Assessment and Management product family. Its reporting delivers exactly the information you and your staff needs to locate and repair the vulnerabilities that could contribute to data loss. With each scan, AVDS will automatically find new equipment and services and add them to the inspection schedule. It then tests the response characteristics of every active node creating the most accurate network security results available in the industry. AVDS is able to scan everything that ‘talks IP’, automatically. Each scan includes the widest range of security tests available today and the test library is expanded to include new vulnerabilities daily, with updates hourly. High Accuracy AVDS tests the behavior of network hosts by recording their responses to carefully crafted queries delivering penetration test-like accuracy. No more huge reports packed with hard to resolve false positives. Most VA/VM systems depend heavily upon checking version numbers to deduce a possible security issue. This results in high error rates and hard to use reports. The AVDS test library, which has been in continuous development since 2002, consists of behavior-based tests - not version checking. Behavior in response to query is the only means of testing all the factors that are required to prove that a vulnerability exists. Simplicity of Installation and Maintenance Designed with ease-of-use in mind, the functions you will most frequently use are at easy reach. Drill-down user interface architecture facilitates getting to complex features you may only occasionally need and report details that are only occasionally used. ‘Automated’ is not just a part of the name. AVDS was designed from the ground up by practicing security experts who have felt the pain of running overly complex scanning systems. AVDS will reduce the time you spend running a scanning tool (or tools!) and increase the time you spend eliminating real network vulnerabilities. Low Cost of Operation The testing accuracy and ease-of-use is matched with an easy to understand, common sense licensing plan to produce the lowest scanning cost per IP in the VA marketplace. AVDS licenses are based on active IPs. This give you the freedom to set up fewer scans that span wider IP ranges without taking a license hit for every IP in the range. With AVDS you will spend less time chasing vulnerabilities that don’t exist, less time maintaining your VA solution and your licenses will go a lot farther, allowing you to scan more of your network for less. Integration Included with every system are the ready to use modules and advanced API that allows AVDS to talk with ticketing systems, SIEMs, WAF and all other systems that may need vulnerability data. There are no additional fees or support costs for establishing and maintain integration with other security systems.
  • 2. Page 2 Web App Testing: For security scanning of web sites, web servers, shopping carts and all Internet-facing IP addresses, scans can be done by our hosted AVDS servers and the results combined with local internal scan results for a comprehensive vulnerability report. MSPs: Easily integrate AVDS with your existing infrastructure. Installed in a Security Operating Center (SOC), ASP farm, co-location or as an outsourced service, AVDS can become a part of your service offering quickly and with minimal capital outlay. "AVDS graphically, unobtrusively and with great detail demonstrated to me the situation of our network/firewall and web server after scanning our system with a huge range of tests. Reports were sent to me that were concise and clear and then the technical staff of Beyond Security talked me through the results of the scans, interpreting areas with which I was unfamiliar and suggesting simple and precise fixes. From the moment of my first contact with Beyond Security, I have been impressed and enjoyed their friendliness, clear talking, approach to confidentiality and technical knowledge.” Paul Sheriff IT Manager City of Geraldton High Security AVDS meets or exceeds the most rigorous corporate, government and military security standards for network scanning systems. It has been selected by Central Banks, Military units and Government entities in many countries to scan some of the most carefully secured networks in the world. No data of any kind is sent out of the network by AVDS. The operating system itself is a hardened, locked down version of Linux and all functions, including storage of results is self-contained. There is no known security requirement that AVDS has not met. Focused, Actionable Reporting AVDS standard reports provide a comprehensive analysis of all vulnerabilities found grouped by risk severity or by most severely compromised asset. Every report contains technical information specific to the risks discovered, including a summary, severity, possible impact, recommended solution and relevant information such as links to software vendor patches. Reports are available on the management interface by browser with handy drill-down from the highest overview down to each individual contributing issue. Reports are provided in HTML, PDF, CSV, CIS and XML. An Executive Summary section includes an overall summary for quick assessment of discovered risks. Differential Reports Discover what changed on your network with each new scan. This popular report type will display new and removed hosts, the newest vulnerabilities, just opened, unexpected ports, newly installed vulnerable services, as well as a summary of any problems resolved since the last scan. Differential reports are a valuable tool to monitor changes to the security baseline and track remediation efforts over time. Custom Reporting Policies and Adjustable Scoring Accurate Vulnerability Management requires flexibility in asset ranking and vulnerability severity scoring. Default reporting values in AVDS follow current best practices but allow administrators to adjust the relative importance of individual assets and/or vulnerabilities. Upgrade or downgrade specific assets or vulnerabilities and ensure that your remediation efforts are always focused on the right targets. Generate reports based on detailed company vulnerability policies.
  • 3. Page 3 Distributed Networks: Handle hundreds of widely distributed business units from a single, central control point. Assign each security admin the rights to scan his own network, create and view his own reports. All scan results migrate up to the home office reports for a comprehensive overview of the security status of the entire organization and then drill down on how each unit is managing its assets and responding to local challenges. New Vulnerabilities: With over 300 new operating system and application vulnerabilities announced every month, regular network scanning is essential. An automated, ongoing vulnerability assessment and management solution is your best option for the elimination of all high-risk corporate network vulnerabilities. "Previously, I have dealt with many (many) different scanning vendors in my 15+ years in IT- security. AVDS from Beyond Security is the first solution I could power up, configure and start doing useful scans within 15 minutes of my first session - awesome!" Mikael Vingaard Head of Research Sec4IT “The information provided in the reports is very clear and concise. It explains to engineers what the problem is, where to look for more information, and how to fix it.” Cody Phang National Capital Authority (NCA) Australian Government Vulnerability Test Library Beyond Security maintains its own complete library of behavior-based vulnerability tests that span the entire range of known network vulnerabilities. Updates to the library are done daily and every system in the world is updated hourly, automatically. Scans Sample Checks Web Applications Apache, Microsoft IIS® , Oracle WebLogic® , IBM WebSphere® , Adobe ColdFusion® , shopping carts – every common app with a known vulnerability. Databases Oracle® , MySQL, PostgreSQL, Microsoft SQL Server® , Lotus Notes® , DB2® Network Systems Routers, Firewalls, Switches/Hubs, Remote Access Servers, Wireless Access Points, IPsec, PPTP, DHCP, DNS, LDAP, SNMP, VPNs, FTP, SSH, TELNET, Modems, Anti-Virus Systems Operating Systems Microsoft® – all versions, Solaris® ,AIX® , HP-UX® , SCO UnixWare® , BSD (OpenBSD, NetBSD), Linux – all distributions, AS/400® , VMS® , Mac OS X® , Novell NDS Languages SQL, ASP, PHP, Python, CGI, JavaScript, PERL, Ruby, .NET OSI Layer 7 Apps Web server, Database server, Mail server, FTP server, Proxy server AVDS Features at a Glance  Scan unlimited IP ranges and only pay for the active IPs on your network  Quick Scan provides ad-hoc scans within seconds  Differential reporting highlights and automatically tests newly added IPs, ports and services  Powerful search engine to quickly filter and search reported vulnerabilities  Distributed scanning architecture for large networks and multiple AVDS appliances with enterprise-wide scans and consolidated reports  Scan Profiles can check large networks quickly for a small subset of problems  Non-intrusive and consumes minimal bandwidth. Scan rate can be limited by administrator to control bandwidth requirements  Web browser administrative interface  Scales to 2 million active IPs  Automated daily updates of threat database  Vulnerability database supplied by SecuriTeam Portal (www.securiteam.com), a industry respected security clearinghouse with over 2 million visits annually and 8,500 online articles  24/7 unlimited phone support with access to Beyond Security experts Penetration Testing Alternative Many organizations are required to perform periodic penetration testing on their networks and web sites. These tests are intrusive, costly and highly dependent upon the skill of the individual. No two individuals will run the same tests and none will match the exhaustive range of tests covered by AVDS. Further, the rapid rate new vulnerabilities are discovered, exploited and made available, penetration test results are rendered out of date almost as soon as they are complete. AVDS provides results senior to most penetration testing services, on demand and easily repeatable.
  • 4. Page 4 Free Evaluation Our free 30-day evaluation is available in most countries and includes an AVDS appliance with access to all features. Compliance Features AVDS reporting is designed to respond to PCI, SOX, HIPAA, ISO and all other compliance requirements. Beyond Security is an approved Scanning Vendor for the Payment Card Industry and AVDS owners "We needed a way to discover and audit network assets, understand and prioritize current network vulnerabilities, then track and manage the remediation efforts over time. After a three month review of nearly ten different vulnerability scanning vendors we chose Beyond Security's AVDS. We had specifically selected AVDS because it would cause no disruption to our systems and required no installation of any new software on our systems." –Gary Anton VP of Strategic Sourcing and IT Illinois Tool Works (ITW) Contact Us: www.beyondsecurity.com sales@beyondsecurity.com US: +1 800-801-2821 UK: +44 118-315-0005 France: +33(0)6 03 79 55 74 Korea: +82 70-8741-8885 China: +86 10-598-22245 India: +91 80-4040-7235 Singapore: +65 6850-5045 Brazil: +55-11-3197-2029 Scanning Performance Given average network structure, a single AVDS scanner can test approximately 2500 active IPs at default settings. This allows scanning production networks during working hour with no impact on user experience. Scan speed can be adjusted lower, to become practically invisible, or high enough to get large networks completed during off hours. Default Min Max Rate of Scan (Packets/Second) 300 35 1200 Number of Sessions per Scan 8 2 32 Throughput per Scan (Kilobits/Second) 60 6 240 Average Scanning Time Typical Class C network in ~12 minutes Product Line There is an AVDS product for every network and web application testing need. Hosted services are available for just a single web site. Network scanning product applications range from a single location with 100 active IPs to international corporations with hundreds of business units and hundreds of thousands of active IPs. Product Application Hosted Scanning Service Scan one or thousands of external IPs, PCI available SAS Small networks with single administrator AVDSII Up to 500 IPs in one network AVDS Unlimited IPs, networks, administrators, Appliance Hardware Specifications AVDS is available in a variety of form factors. The standard appliance is a 1U rackmount server. Portable units allow easy transport between business locations. Custom systems can be configured with any arrangement of redundant power supplies, RAID drive arrays and optical communication capabilities. Form Factor Components Standard 1U 19” Rack Mount; Xeon E3-1220, 4GB UDIMM, 500GB SATA, 2 Gigabit ports, Portable 7" x 7" x 1.4" / 18 x 18 x 3.5cm case, 3 Lbs., Pentium G3240T, 4GB DDR3, 500GB SATA Custom 2U 19” Rack Mount; Choice of processors, memory and redundant drives, ports and power supplies System Requirements  Browser: Chrome, IE 6.0 or later, Firefox 1.5 or later (for administrative console)  IP address on your internal network  Power requirements vary by form factor, but all are Energy Star compliant