• Solutions
  • Overview
  • Network Security
    • Vulnerability Scan
    • Penetration Testing
    • Social Engineering
  • Government
    • SCAP
    • FISMA
    • CyberScope
    • CAG 20
  • Industry Compliance
    • PCI
    • HIPAA
    • SOX
    • COPPA
    • GLBA
    • NERC
  • Consultants
  • Enterprise
  • Small Business
  • MSP Solutions
• Products
  • Overview
  • Compare Editions
  • Software
    • SAINTscanner®<
    • SAINTexploit®
    • SAINTmanager®
    • SAINTwriter®
  • On Demand SaaS
    • WebSAINT PRO®
    • WebSAINT®
  • Appliances
    • SAINTbox®
    • SAINTstick®
• Services
  • Overview
  • PCI Compliance
  • Vulnerability Assessment
  • Penetration Testing
  • Web App. Assessment
• Customers
  • Overview
  • Case Studies
  • Testimonials
• Support
  • Overview
  • Technical Support
  • Certification Training
  • Videos
• Resources
  • Overview
  • Literature
  • Request Demo
  • Request Evaluation
  • System Requirements
• Partners
  • Overview
  • SAINT Partners
    • USA
    • International
  • Contact Partners
• Company
  • Overview
  • Contact Us
  • News
  • Events
  • Careers
  • Management

• Company Overview
• Contact SAINT
• News & Press Releases
• Events
• Careers
• Management

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

For Immediate Release – May 6, 2011

SAINT Releases New Version—7.8

New SAINT version features improved scan speed, new XCCDF benchmarks, upgraded WebSAINT servers and much more

Bethesda, MD – SAINT Corporation announces a new product release, version 7.8, of the SAINT vulnerability scanner and penetration testing software.

Version 7.8 contains the following new features:

• Send scan results to syslog – Besides receiving your scan results by e-mail, you may also wish to have your results sent to syslog. This has the advantage of allowing vulnerability alerts to be routed to the appropriate system through an existing syslog facility. When this option is enabled, your results will be sent to syslog when the scan finishes. Using this feature requires the syslog daemon already to be running on the host which is running SAINT.
• Improved protocol identification – Identification of SSL, Oracle, and Sybase protocols on non-standard ports; SSL vulnerability checks on non-standard ports; elimination of extraneous probes.
• Option to use Nmap for port scanning – Improved speed and performance on heavily firewalled targets; support for SYN scans and more. Note that Nmap must already be installed on scanning system.
• Upgrade of WebSAINT servers – PCI scan policy is now configured to use TCP SYN scanning, and to support faster port scan times. Additional scanning capacity has been added and there is less queuing, for more real-time scanning.
  
• New report templates – hosts by vulnerability Illustrates the number of machines affected by any vulnerability instance. The new vulnerability summary lists vulnerabilities and number of hosts affected by each one.
• Authentication – SNMP Community strings can now be inserted into the SCAN/Authentication page for faster administration when including assessments on network related devices.
• New scan policy – Password guessing policy with configuration options for dictionaries and evading lockout policies by specifying the time and number of attempts.
• Improved SCAP probes and reporting – Greatly reduced the time it takes to import content.  Reports are now automatically generated. Other additions include full support for OVAL variables, full support for sets and set filters, and more detail to the XCCDF/configuration scan detail report.
• New benchmarks added to configuration/XCCDF scan policy category – these include DISA Microsoft Office 2007 benchmarks;  XP firewall, Vista firewall, and Win7 firewall benchmarks:
  • U.S. Government Configuration Baseline (USGCB) IE 8
  • USGCB Win 7 Firewall
  • Federal Desktop Core Configuration (FDCC) IE 7
  • FDCC Vista Firewall
  • FDCC XP Firewall
  • Defense Information Systems Agency (DISA) MS Access 2007
  • DISA MS Excel 2007
  • DISA MS Infopath 2007
  • DISA MS Office System 2007
  • DISA MS Outlook 2007
  • DISA MS Powerpoint 2007
  • DISA MS Visio 2007
  • DISA MS Word 2007
    
    
• Show all services – New option to see all services in Data Analysis view of host information by class of service; even services that are not on a vulnerable host.
  
• Added ability to detect user-specified console file – can show GUI option to view console file and allow previous output to be cleared from the console file when restarting SAINT/SAINTmanager/SAINT node, rather than appending.
  
• Ability to turn SAINTexpress on and off, and show status – for non Internet connected SAINT systems, this removes the warning banner, which provides more space to administer SAINT.
• SAINTwriter now displays the full date string (2011/04/10 11:00) for the Scan Time value when it is selected as a Host List column.

About SAINT
SAINT Corporation is a global leader in network security. SAINT customers include high-level government agencies, top colleges and universities, and major financial institutions. Our mission is to make network security easy and affordable.

Contact: Billy Austin   (301) 841-0119 or 1-(800) 596-2006 x0119

Copyright © 2011 SAINT Corporation. All Rights Reserved.