Business challenges:
With new threats and vulnerabilities being exploited at such a rapid pace, access is necessary to the latest threat information and the updates necessary to detect and counter vulnerabilities, intrusions or malicious intents, viruses or malwares, policy violations and it has to be done in-time.
A commercial out of the box products, in general have drawbacks, if you are looking at a specific requirement. They,
- Do not meet the specific task requirements or are not customizable. Products are built to address generic requirements, whereas tools address specific requirements.
- Are not cost-effective, huge TCO and upfront investment.
Additionally you might have the need to carry out an assessment exercise for a particular need. A Signature for a Worm/Trojan not publicly known, a plugin for detecting a specific condition in a customized service, policy compliance check to determine violations as per your organizational security policy, detecting a service listening on non-standard ports, security configuration of a set of devices, are few examples.
In summary, security assessment is a process and not a product. There are general requirements and there are those specific requirements and all have to be dealt with and is an ongoing activity.
The Solution
SecPod can be your trusted partner to deliver high quality tools to perform security assessment of your/customers network. Having dedicated security research team that has thorough knowledge of Network Security, SecPod can ensure timely and quality delivery of the tools in a cost-effective manner.
Tools
We deliver tools around,
- Security hardening checks for various endpoints
- Security standards compliance checks such as FDCC, NSA, Microsoft hardening guides and others
- Security settings check for various applications/servers/devices
- Network inventory
- Policy compliance checks such as,
- Mis-configured devices
- Browser security settings
- Antivirus/Anti Spyware Dat updates check
- P2P software installed
- Microsoft Office Macro settings
- Browser plugins
- Registry startup entries
- Unwanted services, software
- Patch level checking for All Linux variants, Microsoft Windows and major enterprise applications/servers
- Zero-day vulnerability checks, exploits
- Other custom requirements
At SecPod, we have created library of tools that can be either readily used or easily customizable to address specific requirements. At all times, we keep our tools library updated to combat the current threat indicators. And new tools get added. These are delivered as a service and also option to license the tools and the necessary updates through support package is available.
Why SecPod?
- Deliver tools/services that specifically address the requirements and are easily customizable to an environment.
- Provide option to license the tools for repeatability
- Dual shore services to drive down cost
- No huge upfront investment
Write to us at info@secpod.com |
