RedCheck is a professional security scanner solution that combines network and system verification protocols. Its functionality is enhanced with compliance monitoring, database and web-server security evaluation, integrity control and much more. That is why RedCheck is a very effective tool against vulnerabilities.
RedCheck makes security system snapshots and allows qualified personnel to detect errors in system administration and to check if everything meets the most current security policies.
RedCheck performs central and/or local host scanning, searching for OS and software vulnerabilities. Agent or agentless audit performance can easily be set to manual or automatic mode. The scan process itself is based on comparison of the system parameters with a SCAP-written vulnerabilities list located in an open OVALdb repository. This RedCheck database contains vulnerabilities descriptions for a large number of OS platforms and applications such as:
- All server and client Microsoft OS starting with Windows XP / Server 2003
- Red Hat, CentOS, Debian, Ubuntu, ROSA server and client OS
- Microsoft, Adobe, OpenOffice office suites for Linux-based platforms
- Microsoft SQL 2008/2008R2/2012 databases, Oracle database for Linux / Windows, Oracle MySQL
- Internet Explorer, Opera, Google Chrome browsers
- frameworks, virtualization tools, programming languages etc.
The list of vulnerabilities is daily updated and replenished with new platforms and products regularly. RedCheck updates automatically each time you start the program.
The scan results that are stored in "History" may be represented as a general or differential reports. Differential reporting helps you control the effectiveness of security protocols and easily keep track of newly emerging vulnerabilities.
Every time a bug in software is detected developers try to fix their code and release an update as soon as possible. And it is very important for system administrators to install there updates promptly to eliminate potential threats. RedCheck quickly and accurately indicates missing system updates. Its scan report will also give you secured links where you can download the required updates. Its database contains all the information about server and client operating systems updates for Microsoft, popular Linux platforms, as well as for a large number of applications.
Security policies compliance
The simplest way to hack an organization is to find computers that contain software installed with default settings. Typically, these configurations provide maximum functionality, but do not guarantee the safety. A priori assumption is that security is under a system administrator’s or a user’s control. Unfortunately, the "human factor" or rather lack of proper qualification of system administrators is the main threat to security. Also it’s important to mention - the security settings should be reasonable, balanced and do not interfere with company goals.
Developers usually suggest certain security settings to users or offer to follow authoritative policies. Such suggestions are written in security guidelines and configuration files. And responsibilities of a system administrator is to adopt these settings and to monitor their integrity.
RedCheck allows to automate this control process and assess the conformity of the system and its parts. In turn, the user can create their own configuration and set them into a scan schedule.
RedCheck includes a number of preset configurations (policies), based on the international standards and recommendations, such as: MSCM, PCI DSS, FDCC, USGCB and others.
RedCheck is an effective database safety management tool. Besides vulnerability and critical updates search, RedCheck provides precise inspection of stored procedures and security settings of popular Microsoft SQL Server, Oracle Database, MySQL databases including ones related to:
- network databases
- authentication systems
- access control mechanisms
- user rights and privileges
RedCheck gives you information about everything related to security: operating system, installed software, service packs and hotfixes, running processes, shared folders, hardware and much more. Detailed reporting allows you to track even the smallest software and hardware changes, scanning your network without installing it on every computer.
Capturing and monitoring of integrity of the executable files, libraries and other files is performed with higher standards using certified cryptographic library, which is a part of the scanner.
RedCheck also provides a feature of a system start up lock in case of any executive files and libraries violations were detected, which makes it extremely useful on systems with high security requirements (military, banking systems, governmental networks). And no other tools needed!
Nmap utility support allows to improve network audits, providing information, such as number of hosts available, open ports, running applications (application name and version), types and versions of operating systems, firewall’s running data packets, etc. These features allow to use RedCheck not only for security purposes, but also for other tasks, such as controlling the network structure, scheduling management apps startup, host or service supervision etc.
With RedCheck software security administrators can check out password strength and vulnerability possibilites in OS and database authentication mechanisms.
Our solution can picks up passwords “from dictionary”, that is useful in database authentication processes. Functional features are available for Microsoft SQL Server, Postgres SQL and Oracle SQL.
Scan results can be saved in "History" or in PDF (or any other Adobe Acrobat supported) format and also can be presented in a simplified or in a differential version which makes it easy to keep track of any changes from occurred vulnerabilities to unauthorized soft- or hardware installation. To quickly find the needed events, RedCheck offers filtered search that can sort by date, time, scan type, status, name or number of the host.
Application servers are the basis for many corporate solutions, and on their security depends websites’ and corporate IT-services functioning, such as web-servers, mail servers and their components, mobile services, remote desktops, print servers, CRM and ERP systems, interpreters and frameworks, and many more.
RedCheck is an effective tool for server security configuration monitoring and application security analysis tool with an additional RedCheck Audit security pack for application servers (licensed separately). When you purchase this license, RedCheck offers following web-servers and their components (platforms) configurations scan:
- Apache HTTP Server
- .NET Framework
- Apache Tomcat
These configurations identify potentially unsafe security settings of both the OS and application server. The module works with servers running under Linux and Windows systems.