Venusense vulnerabilities scanning and management system is independently developed by Venusense. It is a vulnerabilities analysis, assessment, and management system based on the network.

Total

● Abundant vulnerabilities resources

Based on the active defense laboratory ADLAB^TM of Venusense and under the support of the most authentic and comprehensive Chinese common vulnerabilities and exposures (CNCVE) in China, Venusense vulnerabilities scanning and management system rich research experiences and profound knowledge accumulation can provide customers with continuous and high quality products application value.

● The most comprehensive vulnerabilities base

Venusense vulnerabilities scanning and management system can scan more than 2,300 kinds of vulnerabilities grouped into 32 categories; cover the important and prevalent system and database vulnerabilities in current network environment. It ensures the comprehensiveness and timeliness of vulnerabilities identification through adjustment and update according to the change of network environment.

● Support comprehensive network objects:

Hosts in the net: servers, customer computers, network printers, etc;

Operating system: Microsoft Windows 9X/NT/2000/XP/2003, Sun Solaris, HP Unix, IBM AIX, IRIX, Linux, BSD, etc.

Network equipments: those of Cisco, 3Com, Checkpoint, and other major manufacturers;

Application system: database, Web, FTP, Email, etc.

● The most comprehensive database scanning in the industry

Venusense vulnerabilities scanning and management system has the ability to scan SQL Server, Oracle, Sybase, DB2, MySQL and other many databases, and can scan nearly 300 vulnerabilities of the database system.

● Various forms of displaying results and reports

It can generate customized reports for various user roles with various forms like chart, table, and text description, as well as export results and reports in the formats like PDF, XML, HTML, EXCEL, and WORD.

● Successful application of products in many sectors

Venusense vulnerabilities scanning and management system has been successfully applied in government, financial, telecommunication, army, education, enterprises, energy, and other sectors. They all show their approval to the products.

Accurate

● Accurate identification of the object information

It adopts progressive scan and analysis method with the latest operating system fingerprinting, intelligent port service identification, and other technologies to identify the information of various objects under scanning accurately. The information includes those of the operating system, network name, users, service opened on abnormal ports, etc;

● Accurate judgment of the information of vulnerabilities

In addition to normal method of scan, Tianjing can adopt different types of scan methods on the same vulnerability for correlation checking and achieving accurate judgment results.

● Accurate scan under the domain management mode

Its features the unique Windows domain scan technology, which makes it possible to use the authority of domain administrator under Windows domain management mode, to ensure the accuracy of the scan results through the scan equivalent to those based on hosts in the domain.

● More intuitive assessment of vulnerability risks

Venusense vulnerabilities scanning and management system adopts the international standards, common vulnerability scoring system (CVSS), to unify the scores of all the vulnerabilities and reveal their risk levels accurately and objectively. It will provide guidelines for the priority determination of vulnerability fixing. Based on such priorities and with the help of CVSS scoring of vulnerabilities, Venusense vulnerabilities scanning and management system can intuitively assess the quantitative and qualitative vulnerability risks of hosts and network through the integration of protection level and assets value of the assets under protection as well as the risks assessment algorithm developed with the reference to the Chinese GB. This will help the users determine the vulnerability risk level of hosts and network, as well as formulate reasonable management strategies of vulnerability risks.

Fast

● Strong support for scan efficiency

It integrates the scanning technologies of pre-detection, progressive, and multithreading. It can quickly discover the survival hosts in the target network, ensuring that the scan tasks will be finished quickly through the start of multi-threads for simultaneously scanning based on appropriate scan strategy chose according to the results of progressive detection.

● Fast and continue update of vulnerability base

Venusense vulnerabilities scanning and management system can promptly update the patch information and fixing suggestions of vulnerabilities through real time tracking and analysis of the published information on vulnerabilities. The vulnerabilities base will update biweekly. It will update immediately in case of emergent and significant vulnerabilities.

Independent

● Fully independent IPR

Venusense vulnerabilities scanning and management system is a network security product with the fully independent IPR in China. It has obtained the approval of the state secrecy department after evaluation. Its security and secrecy may be control at will.

● Leading ability of independent research

Venusense ADLAB^TM has the greatest ability of independently mining and verifying security vulnerabilities. It has independently exposed 49 security vulnerabilities through the common vulnerabilities and exposures CVE in 2006 and 2007. Such achievement is beyond other security research institutes in China. In China, Venusense is the among the first network anti-hacking manufacturers which obtain the qualification of inquiring source code of Microsoft.

● Wide range for free selection

Various product models may be selected to meet the demands of different customers. These products may be applied and deployed flexibly. They can be used solely in independent network, as well as realize unified management under distributed deployment at various tiers. Thus, it is possible to meet various deployment demands of the users to the maximum extent. It provides 15 types of default scanning strategies and seven groups of default and customized reports temples, based on which strong customizing functions are provided for the customers to exert the usefulness of the products to the maximum through free selection and adjustment.