Sentrigo Introduces Repscan 3.0, Vulnerability Assessment And Security Scanning For Databases

PRESS RELEASE

SANTA CLARA, Calif.—February 22, 2010—Sentrigo, Inc. the innovator in database security software, today announced Repscan version 3.0, a major new release of its database vulnerability assessment and security scanning software. The newest version incorporates new and improved features that allow users to more easily navigate, identify and interpret critical data within an enterprise, and now includes Microsoft SQL Server support.

With more than 3,000 security verifications scanning Oracle and Microsoft databases and applications, Repscan is the most comprehensive vulnerability assessment solution available. Among the new product features is a graphical user interface, which has been completely redesigned to allow even security experts with limited database knowledge to run and interpret results. The product also adds powerful tools for penetration testing, as well as a database browser (with drill-down functionality) that allows interactive review of crucial database information.

"Databases require specialized skills to manage and secure. As database threats evolve -- and as we see a continuing growth of compliance requirements relevant to data and database infrastructure -- most admins are reliant on assessment support for specialized security and compliance policies," said Adrian Lane, security strategist and analyst at Securosis. "Assessment tools have evolved into full-fledged enterprise class products that not only address underlying vulnerability and patch management issues; but a complete range of security, compliance, and operational tasks."

Developed by security researcher, Alexander Kornbrust of Red Database Security, this new version of the successful Repscan product now offers deep database discovery capabilities allowing enterprises to locate and identify databases on a network " an important first step to scanning and protecting them. In addition, the product's enhanced data discovery ability identifies which databases have sensitive information that is likely subject to compliance requirements.

"Often the toughest job in complying with a new standard or in protecting a database is figuring out which database tables contain the data you need to protect," said Dan Sarel, vice president of products at Sentrigo. "Repscan's new data discovery feature allows customers to find databases that contain payment card data, social security numbers, salaries, financial data, and more. This is just one of the many rich new features built into Repscan that distinguishes it as the most comprehensive vulnerability assessment solution available."

Repscan complements and integrates with Sentrigo's Hedgehog family of database activity monitoring software—the industry's leading software solution for auditing and protecting corporate databases from privileged insiders as well as malicious hackers. Vulnerabilities discovered by Repscan can automatically generate protection rules and policies with Hedgehog, preventing exploit of identified weaknesses. Additional Repscan features include:

* Current database version and patch level inventory * Scans for empty, weak or default passwords from database users * Finds security gaps, such as hardcoded passwords, deprecated functions, SQL injection vulnerabilities, and more * Insecure PL/SQL code detection * Modified database object detection, including discovery of root kits and altered data detection (privileged and user tables) * Forensic trace discovery from common security and hacker tools

For more information about Repscan, please visit http://www.sentrigo.com/repscan.

About Sentrigo

Sentrigo, Inc. is a recognized innovator in database security. The company's Hedgehog software provides full-visibility database activity monitoring and real-time protection and has been rapidly adopted by Global 2000 companies to defend mission-critical data against insider misuse as well as outsider intrusion. Enterprises across industry sectors are also using Sentrigo Hedgehog to accelerate compliance with regulatory requirements such as PCI DSS, Sarbanes-Oxley and HIPAA. Sentrigo has won wide acclaim for its industry and technology leadership by publications such as Network World and SC Magazine. For additional information and to download Hedgehog, visit www.sentrigo.com.