|
| |
AppSec's products -
AppDetectivePro and DbProtect deliver the industry's most comprehensive database security, risk and compliance solution. |
| |
| Find out which solution is best for you. |
| |
AppDetectivePro is a PC-based, database vulnerability assessment point solution.
|
| DbProtect is an enterprise-class database security, risk and compliance platform. |
|
 |
 |
| For Auditors and IT Advisors |
For Enterprises
|
 |
 |
$2,000 per database
Also available per engagement |
Starting at $30K for a 5 database pack |
|
|
| Snapshot: Right for You |
|
|
| Ideal for |
Corporate Auditors, External Auditors and IT Advisors |
Enterprise Information Security and Database Administration teams |
| Ideal uses |
Point and shoot assessment of database vulnerabilities and misconfigurations |
Complete solution ideal for continuous compliance and security of enterprise databases |
| Ideal number of databases |
Up to 5 database instances |
5 to 50,000 database instances |
| Solution type |
Laptop or Desktop PC software
(Windows client) |
Enterprise-class software platform
(Web-based console) |
| Number of users |
Single user |
Multi-user |
| Enterprise Ready |
|
|
| Complete and continuous database security, risk and compliance |
|
 |
| Centrally managed system supporting multiple users |
|
|
| Strong system security with role based access controls for separation of duties |
|
|
| Executive-level dashboards with drill-down |
|
|
| Continuous 24x7 monitoring of all database activity |
|
|
| Architected for large scale global deployments |
|
|
| Set it and forget it with enterprise-class job automation |
|
|
| Database Security, Risk & Compliance Feature Set |
|
| Asset Management |
|
|
| Agentless discovery and inventory of all databases on the network |
 |
|
| Heterogeneous support for Microsoft SQL Server, Oracle, IBM DB2 LUW & z/OS, Sybase, MySQL and Lotus Domino |
|
|
Powerful database search engine to find and display databases based on complex criteria
(Such as Oracle databases in the Houston data center with high-risk vulnerabilities) |
|
|
| Vulnerability Management |
|
|
Scan for more than 1,400 database vulnerabilities and misconfigurations
(based on the industry leading SHATTER Knowledge base) |
|
|
| Scan for missing patches |
|
|
| Scan for weak and default passwords |
|
|
| Scan for misconfigurations |
|
|
Scan with and without database login credentials
(Penetration Testing and Auditing) |
|
|
| Remediation with fix scripts |
|
|
| Rights Management |
|
|
Complete review of database access control system
(Explains who has access to sensitive data / objects and how they got that access.) |
|
|
| Controls for separation of duties |
|
|
| Audit and Threat Management |
|
|
| Monitor and audit all privileged access to the database |
|
|
| Detect and alert on database attacks in real time |
|
|
| Audit all access to sensitive or regulated data |
|
|
| Real time feed into 3rd party SIEM and IT-GRC systems |
|
|
| Analytics and Reporting |
|
|
| Centralized reporting across all databases in the enterprise, line of business or geographical locale |
|
|
| Executive-level dashboards with drill-down |
|
|
| Unified view of risk and threat data |
|
|
| Compliance packs for SOX, PCI, HIPAA, FISMA, DIACAP and other regulations |
|
|
| Customizable compliance/security reports |
|
|
| Director and IT Admin level reporting |
|
|
| Reports on vulnerabilities, misconfigurations, passwords, access controls and operating system issues |
|
|
| Reports on normal and abnormal database activity and on attempted database exploits |
|
|
| Role based access to control which databases each user can view and report on |
|
|
| Policy Management |
|
|
| Intuitive policy editor to modify built-in policies or to create new custom policies |
|
|
| Built-in policies for scanning databases based on leading practices for database security |
|
|
| Centrally manage policies for database security and compliance across the globe |
|
|
| Built-in policies for monitoring database access for attacks and misuse |
|
|
| User-definable checks, rules and exceptions |
|
|
 |
|
|
