Vulnerability assessment is usually seen as a boring topic and most people think the scanners are all equal – reaching the “commodity” status. Well, for basic scanning capabilities, that’s certainly true. But vulnerability scanners need to stay current with the evolution of IT environments; think all the changes in corporate networks in the past 20 years due to virtualization, mobility, cloud, containers and others. Those things certainly affect vulnerability management programs and how we scan for vulnerabilities. These IT changes force scanners to adapt, and we end up seeing some interesting differences at the fringes. Our new document, “A Comparison of Vulnerability and Security Configuration Assessment Solutions”, compares the 5 leaders of this space (BeyondTrust, Qualys, Rapid7, Tenable and Tripwire) and show how and where they differ.
Some of the capabilities where we found interesting differences are:
- Agent based scan
- Integration with virtualization platforms
- Integration with IaaS cloud providers
- Mobile devices vulnerability assessment capabilities
- VA on containers
- Delivery models (on-prem, SaaS)
As we’ve been doing, please consider providing feedback on the paper; this helps us improve our research
The post Our new Vulnerability Assessment Tools Comparison is out! appeared first on Augusto Barros.
from Augusto Barros http://ift.tt/2f8bFho