Home | Products | Retina
Retina™ The Network Security Scanner
Retina, the unparalleled network security product that scans, monitors, alerts, and automatically fixes network security vulnerabilities. Retina also includes an auto-update feature that provides continuous updates of its modules, allowing users to keep pace with the latest security vulnerabilities. Retina is the first network security software that works like an around-the-clock human network security analyst.
Unrivaled in its capabilities, Retina provides a continuous security presence in places no other application has dared go before. While most security scanners confine themselves to searching for only known vulnerabilities, Retina shatters the mold of the typical security scanner through its use of state-of-the-art Artificial Intelligence feature CHAM (Common Hacking Attack Methods). The CHAM feature allows Retina to think like a hacker, or security analyst, attempting to break into your network.
Also setting it apart from other network security scanners is Retina’s “Fix-It” technology, a feature that allows for the automatic correction of common system security issues, such as registry settings, file permissions and more. This feature allows system administrators to solve the more common security problems with a single click, enabling them to focus on more complex systems issues.
Validating this claim of pioneering security research and application was our recent discovery of a hole in Microsoft Internet Information Server. Using Retina, a hole that affected over a million Windows NT Web servers on the Internet was identified. A serious flaw, which left unchecked, could have been devastating. Retina has been the force behind several other high-profile vulnerability advisories including a flaw in Ultraseek, the Infoseek search engine. For a complete list of Retina vulnerability advisories, click here.
Retina Features
Retina is designed to identify and alert you of security vulnerabilities, suggest fixes and report possible security holes within a network’s Internet, Intranet and Extranet systems. Its superior scanning capabilities provide a network with the most comprehensive security analysis available.
Retina includes vulnerability auditing modules for the following systems and services:
- NetBIOS
- HTTP, CGI and WinCGI
- FTP
- DNS
- DoS
- POP3
- SMTP
- Registry
- Services
- Users and Accounts
- Password vulnerabilities
- Publishing extensions
- Database servers | - Firewalls and Routers
- Proxy Servers
- Web Interfaces
- Files and permissions
- Unix RPC services
- NFS mounts
- IMAP
- LDAP
- SSH
- Telnet
- SNMP
- Trojans
- DDoS Agents |
Vulnerability Scanning
Vulnerability scanning is the process of checking for all the potential methods that an attacker might use to tamper with an organization’s network. By analyzing what types of software and software configurations are on a given network, scanners are able to determine what types of attack are possible against a network so it can defend itself accordingly. Vulnerability scanning has become a primary focus of network administrators as the potential threat of a security breach has become preeminent.
Network and software vulnerabilities exist in two basic forms: known vulnerabilities and unknown vulnerabilities. Known vulnerabilities are those that have been identified and isolated by a security scan. An advisory is then published to alert users of the existing hole or flaw. Unknown vulnerabilities have not been discovered or publicly acknowledged, making them a potential security threat.
Graphical User Interface
Retina contains a simple to navigate graphical user interface. This interface can easily be used to control all aspects of scanning and reporting features within Retina. A lack of security expertise among IT personnel is no longer a compromise to an organization’s network security. Visionary in its function, this technology gives overworked and under-resourced IT personnel a viable network security presence without the constant attention required to monitor it. As a result, an organization’s IT talent can focus more effectively on its daily operations.
CHAM (Common Hacking Attack Methods)
This groundbreaking feature is the first of its kind. CHAM employs AI technology in order to simulate the thought process of a hacker or security analyst in finding holes in networks and software packages. A software program or network might have no known vulnerabilities, but that does not mean it is completely secure. Even if no hacker or security analyst has attempted to find and exploit holes in the software or network, damaging flaws may still exist. Retina will adopt the mindset of a hacker or security analyst to find those potential holes in network software to thwart off any potential security breach.
Fix-It
Retina includes advanced Fix-It technology. This distinct feature allows the network administrator to automatically correct common system security issues including registry settings, file permissions and more. Rather than wasting valuable time manually fixing vulnerabilities, a simple click of a button will command Retina to do it for you. This rare component can also work remotely across a vast network, affording the network administrator the freedom and flexibility to operate under any conditions.
Audits
A Retina Audit is a network assessment that identifies and details any problems found that might compromise network security. Retina offers a variety of examples of potential security flaws that can be scanned for. Retina also has a wizard interface to create new audits. These audits can be used to find vulnerabilities specific to an organization’s needs and concerns. Most scanners currently on the market claim of easy to use scripting languages to create new audits. However, in most scenarios these are essentially just interfaces to scripting languages such as Perl, forcing you to adapt to their predetermined programming guidelines. By contrast, Retina has a truly easy way of creating custom audits in any scripting language you prefer, saving valuable time and resources.
Smart Scanning
Retina includes an AI (Artificial Intelligence) module that makes it vastly smarter and intensely thorough about pinpointing real world vulnerabilities. Current security scanners on the market will initiate a port scan of a remote system and assume that a certain port is a certain protocol. In contrast, Retina never assumes anything. Retina does not stop at merely grabbing banners on ports,. It analyses specific input/output data on a port to determine what protocol and service is actually running. For example, if Retina determines a port to be open, the AI component within the Smart Scan will not assume it is an FTP Server and do only FTP Server checks. Retina will actually determine what protocol is on the open port and proceed to initiate checks accordingly.
Smart Reporting
Retina can produce fully documented network audit reports based on its security scans.
Smart Reporting allows the network administrator to access, read and print these real-time security test results with ease. The reports detail all security holes and flaws that are detected in a scan and are ready to print with just a simple click of the mouse. Two options are available for reporting: the Technical Report with intricate detail to satisfy IT personnel, and the Executive Report for high-level management summaries.
Auto Update
Retina encompasses an auto-update feature that provides continuous updates for its modules using an Internet connection. This feature will allow the network administrator to update Retina’s modules on a regular basis, thus keeping pace with the latest vulnerabilities.
Open Architecture
Retina has an open architecture that provides the administrator the opportunity to develop vulnerabilities tests and auditing modules tailored to an organization’s precise requirements. What differentiates Retina from other security scanners on the market is that it does not force the administrator to use a certain programming language to create these modules. Retina offers the flexibility to create customized modules with any programming language that best suits the administrator, including Perl, C, C++, Visual Basic, Delphi etc.
eEye Approved
eEye Approved is the essential support element behind Retina. Mirroring our ingenious software, the eEye Digital Security Team is constantly striving to keep your organization’s network safe. The eEye Digital Security Team will keep network administrators informed on the latest up-to-the-minute security vulnerabilities, hacking techniques and analysis methods.
System Requirements
1. Windows NT Version 4.0 SP3 or higher
2. Internet Explorer Version 4.01 or higher
3. 32 MB of memory
4. 16 MB of free disk space
5. Internet connection (optional for remote scanning)
 Retina™ White Paper
|
|
 |
Interested in becoming an eEye partner? Click here to apply.
 |
|
Email this page