Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Perimeter

6/29/2010
12:04 PM
Dark Reading
Dark Reading
Products and Releases
50%
50%

Sentrigo Adds DB2, MySQL Support To Vuln Assessment And Security Scanner

Version 3.5 extends vulnerability scanning to additional database environments

SANTA CLARA, Calif.—June 29, 2010—Sentrigo, Inc. the innovator in database security software, today announced that its leading database vulnerability assessment and security scanning software solution, Repscan, has extended support to include IBM DB2 and MySQL environments. Version 3.5 also includes several new features that allow for faster and more efficient protection of sensitive data.

The Repscan vulnerability assessment and security scanning solution now supports all of the most widely deployed DMBS platforms including Oracle, Microsoft SQL Server, IBM DB2 and MySQL databases. Repscan’s automated testing for more than 3,000 potential vulnerabilities is the most comprehensive vulnerability assessment solution currently available. Reports from Repscan help demonstrate compliance for audit purposes, and improve security overall for an enterprise’s most valuable data.

In addition to its broad database support, Repscan now features a quick vulnerability check based on a port scan, which works with all supported databases to provide an initial view of potential threats immediately, until a more detailed and time-intensive scan can be completed. Running on any of Repscan’s supported platforms, customers also have access to penetration testing tools, forensic trace analysis, and a powerful database browser which allows security staff without specific database knowledge to test and evaluate database security.

“By adding support for DB2 and MySQL, Repscan allows organizations with any of the most widely-deployed database environments to gain a detailed view of their current security posture,” said Dan Sarel, vice president of products at Sentrigo. “Combined with a rich set of new and existing features that allow for superior ease-of-use and ongoing management, Repscan is the clear choice for organizations seeking a comprehensive vulnerability assessment solution. The more advanced features go well beyond traditional vulnerability management or assessment tools, providing PCI QSAs and ASVs, as well as other auditors and security consultants, with a comprehensive tool for conducting their tests.”

Repscan is able to detect database modifications, neglected patches, insecure system configurations, weak and default passwords, as well as exploitable PL/SQL code and forensic traces. Beyond simply listing vulnerabilities, the system organizes items by priority, and provides actionable recommendations for remediation based on input from leading security researchers.

The product complements and integrates with Sentrigo’s Hedgehog Enterprise database activity monitoring and compliance software—the industry’s leading software solution for auditing and protecting corporate databases from privileged insiders as well as malicious hackers. Vulnerabilities discovered by Repscan can automatically generate protection rules and policies within Hedgehog Enterprise, preventing the exploit of identified weaknesses.

For more information about Repscan, please visit http://www.sentrigo.com/repscan.

Tweet this: Sentrigo announces its Repscan vulnerability assessment solution now supports DB2 and MySQL environments

Follow Sentrigo on Twitter at: http://twitter.com/sentrigo

About Sentrigo

Sentrigo is a recognized innovator in database security solutions, offering a full suite of products for vulnerability assessment, virtual patching and database monitoring/auditing. The company’s flagship product, Hedgehog Enterprise, provides Database Activity Monitoring (DAM) and real-time Intrusion Prevention, protecting sensitive data from external threats and misuse by privileged insiders. Hedgehog can be quickly and easily deployed at small and midsize organizations, and scales to handle the largest enterprises, providing full visibility into all database activity and allowing enterprises to enforce security policy and comply with regulatory requirements, such as PCI DSS, Sarbanes-Oxley, and HIPAA. The company has won wide acclaim for its technology leadership from publications such as Network World and SC Magazine, and recently received the 2010 Global Product Excellence Award for Database Security from Info Security Products Guide. For additional information and to download Hedgehog, visit www.sentrigo.com.

Comment  | 
Print  | 
More Insights
Comments
Newest First  |  Oldest First  |  Threaded View
Attackers Leave Stolen Credentials Searchable on Google
Kelly Sheridan, Staff Editor, Dark Reading,  1/21/2021
How to Better Secure Your Microsoft 365 Environment
Kelly Sheridan, Staff Editor, Dark Reading,  1/25/2021
Register for Dark Reading Newsletters
White Papers
Video
Cartoon Contest
Write a Caption, Win an Amazon Gift Card! Click Here
Latest Comment: I can't find the back door.
Current Issue
2020: The Year in Security
Download this Tech Digest for a look at the biggest security stories that - so far - have shaped a very strange and stressful year.
Flash Poll
Assessing Cybersecurity Risk in Today's Enterprises
Assessing Cybersecurity Risk in Today's Enterprises
COVID-19 has created a new IT paradigm in the enterprise -- and a new level of cybersecurity risk. This report offers a look at how enterprises are assessing and managing cyber-risk under the new normal.
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2021-21272
PUBLISHED: 2021-01-25
ORAS is open source software which enables a way to push OCI Artifacts to OCI Conformant registries. ORAS is both a CLI for initial testing and a Go Module. In ORAS from version 0.4.0 and before version 0.9.0, there is a "zip-slip" vulnerability. The directory support feature allows the ...
CVE-2021-23901
PUBLISHED: 2021-01-25
An XML external entity (XXE) injection vulnerability was discovered in the Nutch DmozParser and is known to affect Nutch versions < 1.18. XML external entity injection (also known as XXE) is a web security vulnerability that allows an attacker to interfere with an application's processing of XML ...
CVE-2020-17532
PUBLISHED: 2021-01-25
When handler-router component is enabled in servicecomb-java-chassis, authenticated user may inject some data and cause arbitrary code execution. The problem happens in versions between 2.0.0 ~ 2.1.3 and fixed in Apache ServiceComb-Java-Chassis 2.1.5
CVE-2020-12512
PUBLISHED: 2021-01-22
Pepperl+Fuchs Comtrol IO-Link Master in Version 1.5.48 and below is prone to an authenticated reflected POST Cross-Site Scripting
CVE-2020-12513
PUBLISHED: 2021-01-22
Pepperl+Fuchs Comtrol IO-Link Master in Version 1.5.48 and below is prone to an authenticated blind OS Command Injection.