Analytics
2/20/2013
03:50 PM
Dark Reading
Dark Reading
Products and Releases
Connect Directly
RSS
E-Mail
50%
50%

nCircle IP360 Utilizes Customizable, Python-Based Vulnerability Rules

New tools augment nCircle’s existing Advance Security Programming Language

SAN FRANCISCO, CA -- February 20, 2013 -- nCircle, the leader in information risk and security performance management solutions, today announced that IP360&trade users can now create custom vulnerability detection rules using the well-known Python programming language. The new tools augment nCircle's existing Advance Security Programming Language (ASPL), making it possible to rapidly build targeted, tailored vulnerability assessments for specific business requirements.

Large, complex enterprise networks often include custom and legacy hardware applications. Complete assessment of these applications and devices for security weaknesses is unavailable using commercial scanners. This means that undetected security weaknesses can be exploited by attackers to gain access to critical business information.

nCircle's new, extensible Python-based custom vulnerability assessment rules allow users to design vulnerability detection for internal applications and legacy hardware, which is considered out-of-scope for most commercial vulnerability scanners. Python-based custom rules allow users to combine advanced programming techniques with various forms of authenticated access, including:

Simple Network Management Protocol (SNMP)

Windows Server Message Block (file and registry)

Windows Management Instrumentation (WMI)

Secure Shell (SSH)

Custom Python-based vulnerability assessment rules can also implement detection using proprietary network communication protocols.

"VERT is dedicated to providing the most comprehensive coverage in the industry, but there is no way any one vendor can cover all the custom software and legacy systems present in enterprise networks," said Lamar Bailey, director of security research and development for nCircle. "Our new Python capabilities make it possible for our customers to create complex detection rules that dramatically extend their network visibility, which is a critical aspect of network security."

nCircle IP360 users can collaborate with each other and VERT security engineers to share custom Python-based vulnerability assessment rules in a dedicated, online Suite360 user group.

For more information about nCircle IP360 please visit: https://www.ncircle.com/index.php?s=products_ip360 .

About nCircle Suite360

nCircle provides the world's most comprehensive suite of solutions for agentless security and configuration auditing for physical and virtual IT environments. nCircle's solutions combine the broadest discovery and deepest assessment of networks and their operating systems, applications, vulnerabilities and configurations with advanced analytics to help enterprises reduce security risk and achieve compliance. nCircle Suite360 is an integrated suite that shares a unified scan engine, common scoring methodologies and centralized reporting and analytics. Suite360 includes IP360&trade for vulnerability management, WebApp360&trade for web application scanning, Configuration Compliance Manager (CCM)&trade for configuration auditing and file integrity monitoring, Certified PCI Scan Service&trade for on-demand self-service PCI scanning and Suite360 Intelligence Hub&trade for IT governance, risk and compliance (ITGRC) reporting and analytics.

About nCircle

nCircle is the leading provider of information risk and security performance management solutions to more than 6,500 businesses and government agencies worldwide. nCircle solutions enable enterprises of all sizes to (1) automate compliance and reduce risk, and (2) measure and compare the performance of their IT security program with their own goals and industry peers. nCircle solutions may be deployed on a customer's premises, as a cloud-based service, or in combination, for maximum flexibility and value.

nCircle has won numerous awards for growth, innovation, customer satisfaction and technology leadership and has been ranked among the top 100 best places to work in the San Francisco Bay Area. nCircle is headquartered in San Francisco, CA, with regional offices throughout the United States and in London and Toronto. To learn how you can more effectively protect your company visit us at http://www.ncircle.com.

Comment  | 
Print  | 
More Insights
Register for Dark Reading Newsletters
Partner Perspectives
What's This?
In a digital world inundated with advanced security threats, Intel Security seeks to transform how we live and work to keep our information secure. Through hardware and software development, Intel Security delivers robust solutions that integrate security into every layer of every digital device. In combining the security expertise of McAfee with the innovation, performance, and trust of Intel, this vision becomes a reality.

As we rely on technology to enhance our everyday and business life, we must too consider the security of the intellectual property and confidential data that is housed on these devices. As we increase the number of devices we use, we increase the number of gateways and opportunity for security threats. Intel Security takes the “security connected” approach to ensure that every device is secure, and that all security solutions are seamlessly integrated.
Featured Writers
White Papers
Cartoon
Current Issue
Dark Reading's October Tech Digest
Fast data analysis can stymie attacks and strengthen enterprise security. Does your team have the data smarts?
Flash Poll
Threat Intel Today
Threat Intel Today
The 397 respondents to our new survey buy into using intel to stay ahead of attackers: 85% say threat intelligence plays some role in their IT security strategies, and many of them subscribe to two or more third-party feeds; 10% leverage five or more.
Video
Slideshows
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2014-7298
Published: 2014-10-24
adsetgroups in Centrify Server Suite 2008 through 2014.1 and Centrify DirectControl 3.x through 4.2.0 on Linux and UNIX allows local users to read arbitrary files with root privileges by leveraging improperly protected setuid functionality.

CVE-2014-8346
Published: 2014-10-24
The Remote Controls feature on Samsung mobile devices does not validate the source of lock-code data received over a network, which makes it easier for remote attackers to cause a denial of service (screen locking with an arbitrary code) by triggering unexpected Find My Mobile network traffic.

CVE-2014-0619
Published: 2014-10-23
Untrusted search path vulnerability in Hamster Free ZIP Archiver 2.0.1.7 allows local users to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse dwmapi.dll that is located in the current working directory.

CVE-2014-2230
Published: 2014-10-23
Open redirect vulnerability in the header function in adclick.php in OpenX 2.8.10 and earlier allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the (1) dest parameter to adclick.php or (2) _maxdest parameter to ck.php.

CVE-2014-7281
Published: 2014-10-23
Cross-site request forgery (CSRF) vulnerability in Shenzhen Tenda Technology Tenda A32 Router with firmware 5.07.53_CN allows remote attackers to hijack the authentication of administrators for requests that reboot the device via a request to goform/SysToolReboot.

Best of the Web
Dark Reading Radio
Archived Dark Reading Radio
Follow Dark Reading editors into the field as they talk with noted experts from the security world.