CBI Network Auditor

Software CBI Network Auditor Performs analysis of the operation of servers, PC, switching equipment, firewalls and other nodes of the network that have IP-addresses. Product Network Auditor Is intended for use by administrators and information security services of computer networks, organizations for the certification of information objects in order to detect vulnerable sites in the established network software and hardware using TCP / IP stack protocols. Decision Network Auditor Provides collection of information about the tested network and scanning of vulnerable parts of the network. The program implements various categories of checks that allow testing of the most common services (WEB, Mail, FTP, SNMP, RPC, etc.), password selection, operating system types detection, denial of service tests, account checks And the Windows system registry, etc. The scanner allows you to perform parallel multi-threaded scanning of network nodes using a graphical user interface. The product implements a unique mechanism for checking installed Linux distributions (Mandriva, Gentoo, Red Hat, Slackware, Fedora Core, Debian, SUSE), FreeBSD and Solaris for vulnerabilities in the software. The HTTP server analysis module performs a detailed check of the structure and content of the website. Program Network Auditor The ability to interact with a popular network scanner Nmap In the field of identification of services, network devices and types of operating systems. Supply Network Scanner Network Auditor Is carried out under the license for a limited number of IP-addresses. The kit includes electronic keys Guardant for USB or LPT ports. Features of the Network Auditor 3.0:

• Network Examiner 3.0 "Contains a database of available checks. Registration of test sets in the database Network Examiner 3.0 "Is automatically performed the first time the program is launched in accordance with the audit libraries supplied in the Network Examiner 3.0 ". Viewing of registered checks is carried out in the interface part Network Examiner 3.0 "In the form of a drop-down graphic" tree "of checks.
• "Network Examiner 3.0" Updates the following vulnerability databases on Windows OS and its updates. Current vulnerability databases are available for download from the Center for Certified Updates of ZAO "Protection Profile".
• Network Examiner 3.0 "Allows simultaneous parallel multithread testing of network nodes.
• Testing is carried out by conducting a session of work within the framework of a newly created or established session. Network Examiner 3.0 "Allows you to save the settings of the last session held with the session, for use in the next session.
• Testing is carried out within the range of IP addresses specified when creating a new session. The number of tested IP-addresses does not exceed the number specified in the license for the delivery of the software product and is specified in the electronic authorization key supplied with the software.
• Testing is carried out only for the nodes of the network, available at the time of the session with the session. The availability of network nodes is determined by running any of the supplied checks to determine availability or any combination thereof. Checks associated with the definition of availability are automatically allocated to a separate group.
• When creating an audit plan, it is possible to display and edit the input parameters of the checks. The values ​​of the input parameters of the checks are filled automatically by default.
• Network Examiner 3.0 "Allows you to dynamically display the process of executing the audit plan in the part of executing and completing the checks.
• During the session with the session Network Examiner 3.0 "Allows at any time in a graphic form to visualize the processes of information exchange between individual nodes of the network for different types of protocols.
• All results of performed checks for each of the work sessions can be stored in the database Network Examiner 3.0 "And later viewed in the interface part of the network scanner in the form of a corresponding results tree.
• Network Examiner 3.0 "Allows you to view individual generalized work results for the entire set of nodes of the network, by groups and by a separate IP address for any of the sessions performed and for the entire session.
• Network Examiner 3.0 »Generates reports in HTML format. For each of the work sessions performed Network Examiner 3.0 "Allows you to generate reports of varying degrees of detail, as well as in a generalized form with respect to detected vulnerabilities.

Network Examiner 3.0 "Includes sets of inspections in the following categories:

• Determining the availability of the nodes of the network being tested by at least three different methods;
• Definition of open TCP and UDP ports on the nodes of the network being tested;
• Determine the type of operating system installed on the network node being tested,
• Mapping of services and services launched on the nodes of the network to ports designated and controlled by the IANA organization;
• Determine the NetBios name of the network node to be scanned;
• Determine the DNS name of the network node to be scanned;
• Checking accounts for network nodes running under Windows operating systems;
• Checking the availability and availability of shared network resources on the network nodes being checked;
• Vulnerability checks of operating systems of the Windows family using the updated OVAL vulnerability definitions repository;
• Check for uninstalled updates to the Windows operating systems using the updatable OVAL update definitions repository;
• Check for uninstalled software updates for UNIX operating systems;
• FTP service checking;
• RPC service checks;
• Checking e-mail;
• Checks, including a detailed analysis of the structure and content of the WEB-site for the presence of various kinds of vulnerabilities;
• Verify remote access to applications;
• Verify remote access to administrator rights;
• Check the default passwords;
• The selection of passwords through SMB.