This is really more than a single VA tool. It is part of an integrated enterprise-wide vulnerability management platform consisting of distributed scanners, a central platform and a variety of reporting and management processes. The appliance is pre-installed on a hefty Dell server.
StillSecure’s website characterizes the VAM as a “vulnerability command/control center”. We place it in our fully featured appliance category.
The product comes partially installed and you use the supplied installation and maintenance disk to bring it online. Documentation is prodigious and is delivered in a thick binder, with more on a CD.
StillSecure offers phone support and there is a limited FAQ on the website. Generally, we found the tool easy to use and install, but did experience some difficulty during installation that required us to edit two network configuration files manually. Since the product runs in a Linux environment, that task requires a knowledge of the various flavors of Linux.
This complete package has everything needed to find and repair vulnerabilities and create over 60 different reports. The Security POV is the reporting and compliance engine and reports can be generated to meet the requirements of regulatory compliance reporting. What’s more, VAM has a module that helps manage the vulnerability remediation process.
Interestingly, portions of the VAM’s vulnerability assessment engine are built on Nessus, which allows it to take advantage of the large number of plugins rapidly and efficiently.
This machine performed very well on our test network. It discovered it and scanned for vulnerabilities all in one step. But the process page display does not automatically refresh, so the analyst has to do it manually to see current status of a scan.
When used with additional modules in a very large enterprise, VAM offers a comprehensive vulnerability management tool.