Nessus Professional – Trusted by more than 24,000 organizations worldwide, Nessus Professional automates point-in-time assessments to help quickly identify and fix vulnerabilities, including software flaws, missing patches, malware, and misconfigurations, across a variety of operating systems, devices and applications. Nessus is ideal for security consultants because it offers- Unlimited assessments, No limit to the number of IPs or assessments, easily transferable license: Quickly and easily transfer your license between computers, Customizable reporting: Easily customize reports with client name and logo. Email directly to the client after every assessment.
Rapid7 Nexpose – Rapid7’s on-premise vulnerability management solution, Nexpose, helps you reduce your threat exposure by enabling you to assess and respond to changes in your environment real time and prioritizing risk across vulnerabilities, configurations, and controls. Data breaches are growing at an alarming rate. Your attack surface is constantly changing, the adversary is becoming more nimble than your security teams, and your board wants to know what you are doing about it. Nexpose gives you the confidence you need to understand your attack surface, focus on what matters, and create better security outcomes.
Rapid7 Metasploit Pro – Rapid7’s penetration testing solution, Metasploit, increases penetration testers’ productivity, validates vulnerabilities, enables phishing and broader social engineering, and improves security awareness. Metasploit, backed by a community of 200,000 users and contributors, gives you that insight. It’s the most impactful penetration testing solution on the planet. With it, uncover weaknesses in your defenses, focus on the highest risks, and improve your security outcomes.
Static Application Security Testing
Fortify SCA – Fortify SCA is a static application security testing (SAST) offering used by development groups and security professionals to analyze the source code for security vulnerabilities. It reviews code and helps developers identify, prioritize, and resolve issues with less effort and in less time. It supports a wide variety of development environments, languages, platforms, and frameworks to enable security reviews in mixed development and production environments. 25 Programming languages, Over 911,000 component-level APIs, Detects over 961 vulnerability categories and Supports all major platforms, build environments, and IDEs
Dynamic Application Security Testing
Acunetix – Acunetix is the leading web vulnerability scanner used by serious Fortune 500 companies and widely acclaimed to include the most advanced SQL injection and XSS black box scanning technology. It automatically crawls your websites and performs black box AND grey box hacking techniques which finds dangerous vulnerabilities that can compromise your website and data. Acunetix tests for SQL Injection, XSS, XXE, SSRF, Host Header Injection and over 4500 other web vulnerabilities. It has the most advanced scanning techniques generating the least false positives possible.
For more info, please visit – www.acunetix.com
GFI Languard – It allows you to scan, detect, assess and rectify security vulnerabilities in your network and connected devices. Providing a complete picture of your network and helping maintain security with minimal effort. enables complete patch management of security and non-security patches to Microsoft operating systems, Mac OS X, major Linux distributions and third-party applications. It can also automate patching for all major web browsers too.Security audits check for over 60,000 vulnerability assessments using an extensive, industrial strength vulnerabilities database incorporating OVAL (11,500+ checks) and SANS Top 20 standards. Once you have scanned for vulnerabilities and patched your systems, you can use the GFI LanGuard auditing function to learn everything about your network’s security status.
Configuration Audit Tool
Nipper Studio – Nipper Studio was the 1st advanced and detailed configuration auditing tool in the world. It is the configuration auditing tool of choice, for enterprise clients in 80 countries.It helps you harden and secure vital network devices, such as Firewalls, Switches and Routers. It provides detailed configuration reporting, including information such as: filtering, routing protocols, administration services & more. This report offers a quick, clear view of your device settings.
Voltage SecureMail – Micro Focus® Voltage SecureMail is the best of breed end-to-end encrypted email solution available for desktop, cloud, and mobile that is scalable to millions of users while keeping Personally Identifiable Information (PII) and Personal Health Information (PHI) secure and private. This level of secure email communication gives organizations the confidence to transition from paper to electronic communication.It enables enterprises to confidently meet privacy compliance mandates, while lowering risk of data breach and cost of operation.