Freely subscribe to our NEWSLETTER

Version 7.8 contains the following new features:

Send scan results to syslog – Besides receiving your scan results by e-mail, you may also wish to have your results sent to syslog. This has the advantage of allowing vulnerability alerts to be routed to the appropriate system through an existing syslog facility. When this option is enabled, your results will be sent to syslog when the scan finishes. Using this feature requires the syslog daemon already to be running on the host which is running SAINT.

Improved protocol identification – Identification of SSL, Oracle, and Sybase protocols on non-standard ports; SSL vulnerability checks on non-standard ports; elimination of extraneous probes.

Option to use Nmap for port scanning – Improved speed and performance on heavily firewalled targets; support for SYN scans and more. Note that Nmap must already be installed on scanning system.

Upgrade of WebSAINT servers – PCI scan policy is now configured to use TCP SYN scanning, and to support faster port scan times. Additional scanning capacity has been added and there is less queuing, for more real-time scanning.

New report templates – hosts by vulnerability Illustrates the number of machines affected by any vulnerability instance. The new vulnerability summary lists vulnerabilities and number of hosts affected by each one.

Authentication – SNMP Community strings can now be inserted into the SCAN/Authentication page for faster administration when including assessments on network related devices.

New scan policy – Password guessing policy with configuration options for dictionaries and evading lockout policies by specifying the time and number of attempts.

Improved SCAP probes and reporting – Greatly reduced the time it takes to import content. Reports are now automatically generated. Other additions include full support for OVAL variables, full support for sets and set filters, and more detail to the XCCDF/configuration scan detail report.