During the past few weeks, I've looked at several security scanners for the Windows NT environment, including eEye's Retina, Shavlik Technologies' InspectorScan, and WebTrends' Security Analyzer. This week, I'll continue with a look at Axent Technologies’ NetRecon 3.0. Although NetRecon can scan all TCP/IP devices, in this review, as in all my reviews, I’ve tested the product in an NT-only environment.
Features and Benefits
NetRecon lets security administrators scan their networks for vulnerabilities. The software quickly scans each network host, and offers clear reports on its findings. The product can scan for and report on a variety of security risks, including weak passwords and denial of service (DoS) vulnerabilities. With regard to the later, although NetRecon tests for and reports on DoS vulnerabilities, it does not actually perform DoS attacks.
The NetRecon program window consists of three different panes, as Screen 1 shows. The first pane lets you select the type of scan to run, the next pane displays detailed information about the scan, and the third pane automatically creates and updates a graph containing the amount of high-, medium-, and low-risk vulnerabilities the product finds. . . .
