Discover all the assets in your network. In minutes.
At AlienVault, we believe that the security analyst has enough to worry about, and more than enough work to do. And the first worry is what’s connected to your network.
That’s why we built the Unified Security Management™ platform. We make it easier to manage security and compliance with built-in asset discovery, vulnerability assessment, threat detection, behavioral monitoring and security intelligence. Within minutes of installing one of our USM products, you’ll discover all of the IP-enabled devices on your network, what software is installed on them, how they’re configured, any potential vulnerabilities and active threats being executed against them. Youll be able to quickly answer questions such as:
- What devices are on my network?
- What are users doing?
- What vulnerabilities exist in my network?
- Are there known attackers trying to interact with my network?
- Are there active threats in my network?
USM also addresses another problem: IT doesn’t drive all the changes that can occur in your network, as users and lines of business often go off on their own and make changes, often without IT’s consent. Through continuous monitoring and periodic scans, USM provides you with the up-to-date information you need for accurate visibility into your current assets. AlienVault’s asset discovery provides what you really need: visibility to what is really out there.
Correlate asset info with threat and vulnerability data
Uncertainty is the biggest enemy of the security professional. It's a problem when you don't know what’s on your network, or how your devices are configured. Wouldn't you prefer certainty?
Automated asset discovery can start you on the path to certainty. AlienVault’s Unified Security Management™ platform (USM) combines three core discovery and inventory technologies to give the security analyst full visibility into the devices that show up on their network.
- Passive Network Monitoring—highlights hosts on the network and their installed software packages. Information collected includes:
- IP and hardware MAC address pairings. This is used for inventory and to detect MAC spoofing
- IP header analysis to identify operating systems and running software packages
- TCP/IP traffic analysis for OS fingerprinting and basic network topography
- Active Network Scanning—gently probes the network to coax responses from devices. These responses provide clues that help identify the device, the OS, running services, and the software installed on it. It can often identify the software vendor and version without having to send any credentials to the host.
- Host-based software inventory—installation of a lightweight, host-based agent provides an additional, more granular level of visibility. By enumerating all the software installed on the machine, the agent greatly extends, deepens, and enhances your understanding of the devices on your network, resulting in a much more dynamic and accurate inventory.
Request a Quote