Issue TOC Print full article Print this page E-Mail this URL Discuss this article Flame the author     In this article Introduction Wants & Needs Foundstone Enterprise and FoundScan Engine 2.6 Qualys QualysGuard Intranet Scanner Harris Corp. STAT Scanner Professional Edition 5 eEye Digital Security Retina Network Security Scanner Vigilante.com SecureScan NX 2.6.50 SAINT 4.3 nCircle Network Security IP360 Vulnerability Management System 5.3 Other Products Reviewed How We Tested Web Links Report Card

The only area we found lacking with Retina was its ability to detect the vulnerabilities we laid out for it. Unfortunately, that hurt its score considerably. On the bright side, eEye's enterprise version of Retina is a fully distributed model that uses Microsoft SQL for data storage and a management and aggregation server to control remote scanners. What's more, eEye has incorporated multiuser authentication, much better reporting than its nonenterprise version (though exportability is still a bit lacking), and a comprehensive ticketing system, similar to that used by Foundstone.

It's evident that Retina enterprise was built to scale, and it should suit larger organizations quite well. We look forward to seeing what eEye has to offer in the future. Although Retina's Unix scanning capability is a bit lacking, the product did find a large percentage of the Windows vulnerabilities--pushing its overall percentage of detected vulnerabilities to about 55 percent.

We would like to see more integration with corporate asset-classification efforts, more detection capabilities and some additional options for exporting reports.

Retina Network Security Scanner, $995; management console, $15,000. eEye Digital Security, (866) 339-3732, (949) 349-9062. www.eeye.com