- Sarbanes-Oxley (SOX)
- Health Insurance Portability and Accountability Act (HIPAA)
- Federal Information Security Management Act (FISMA)
- Government Information Security Reform Act (GISRA)
- Gramm Leach Bliley Act (GLBA)
- Statement on Auditing Standards Number 70 (SAS-70)
- International Standards Organization (ISO) 17799
- Europe's EU Data Protection Directive 95/46/EC
- Canada's Personal Information Protection and Electronic Documents
Act
Clients who use the Hacker Defended
Internet Vulnerability Seurity Scanning Service are permitted to post the
Hacker Defended Vulnerability Scanning Service user seal.
Steps in
using the Internet Vulnerability Security Scanning Service.
- Signup for the Hacker Defended Vulnerability Scanning Service.
- ControlScan to start daily scan of your website.
- ControlScan to send you a daily scan report detailing possible
vulnerabilities.
- A ControlScan dedicated internet security specialist to call you
to discuss what vulnerabilities need to be resolved.
25 Point Verification Program
- Scans for over 10000 security
vulnerabilities
- Scan for SANS Top 20 vulnerabilities
- Includes proactive attacks finding not only known vulnerabilities,
but also potential new ones
- Automatically discovers and analyzes the server's configuration to
determine which tests are needed
- Includes an HTTP explore function permitting Hacker Defended to
scan a range of IP addresses for running web servers
- Filters false positives
- Includes Forceful Browsing attacks allowing access to restricted
parts in the web server directory
- Supports proxy servers and proxy authentication
- Hacker Defended automatically emails scan results daily offering
updated verification for your website
- Includes baseline security software ensuring security against
outdated server software
- Supports host authentication
- Includes an exploit terminal allowing you to send HTTP requests
and view the server's response
- Includes a slowdown mechanism which is a powerful tool when
performing DoS attacks
- Automatically includes self updates
- Scans web pages in various formats such as ASP, CGI, PHP,
ColdFusion, and others
- Scans devices such as routers and firewalls that run web sites
- Allows to specifically scan for SANS Top 20 vulnerabilities
- Allows to open non-destructive scans
- Supports command line operation
- Allows to define a range or list of IP addresses to be scanned
- Tests IDS - intrusion detection systems for evasions exploitations
- Supports both HTTP and HTTPS (SSL) protocols
- Produces simple, easy to read HTML reports
- Stores scan results and reports as XML files, making it
potentially possible to interoperate with other tools
- Stores and allows you to view the HTTP request and response for
each
- Provides more security checks than any other security-based
company for all leading web server platforms -- target servers can be
local or remote
About ControlScan
ControlScan provides third party
verification and services to identify, measure and prioritize security,
privacy, quality, accessibility and compliance risks that exist on
corporate web properties. ControlScan's solutions provide the visibility
and control necessary to evaluate a company's web property risk exposure,
and to put processes and procedures in place to effectively implement
online governance strategies. For more information visit
www.controlscan.com
|
