WebSAINT^® Specifications

WebSAINT^® is a web-powered application that enables the system administrator to evaluate the security environment of a single computer, multiple computers, or an entire network. WebSAINT^® System administrators and security auditors across the globe find WebSAINT^® invaluable for examining corporate networks and associated information technology assets.

WebSAINT^® is hosted on the web by SAINT Corporation at www.saintcorporation.com. It is based on SAINT, SAINT Corporation's flagship product. When you use WebSAINT, SAINT Corporation protects your payment and scan results information using the secure socket layer (SSL) protocol. In other words, the link between you and SAINT Corporation is secure.

WebSAINT^® gathers as much information about computers and networks as possible by examining the signature of network services. These services (e.g., web servers, ftp servers, mail gateways, rpc services, etc.) are examined for the following vulnerabilities:

• Security flaws inherent in the operating environment
• Incorrect setup of configured network services
• Well-known bugs in system or network utilities
• Poorly implemented security policy and decisions

While WebSAINT^® is geared primarily toward the security weaknesses of an enterprise's information technology infrastructure, a great deal of general network information also can be gained when using the tool—network topology, network services, types of hardware and software being used on the network, to name a few.

The Scans

WebSAINT^® conducts a scan of tcp, udp, and rpc services on either the customer's computer or subnet. When WebSAINT^® detects a service that has a history of possible security concerns (e.g., web access to the password file), it performs a more detailed analysis. The results of the analyses are stored in a database for subsequent access through a secured web browser.

WebSAINT^® performs many vulnerability tests, including the following:

• Domain Name Server
• World Wide Web servers
• Database services
• Poor password protection
• Windows OS patch level
• Exploitable servers (e.g., imapd)
• Web programs and applications

Vulnerabilities are stored according to severity and tagged with respective codes: red indicates the most critical vulnerabilities; yellow indicates areas of concern; and brown points to areas which may require further investigation by the system administrator.

WebSAINT^® includes an option for "dangerous checks". This option allows WebSAINT^® to launch buffer overflow exploits which yield more definitive results.

The Reports

WebSAINT^® uses SAINTwriter^® software which allows network administrators to design and generate vulnerability assessment reports quickly and easily. Customers can present the findings of even the largest network scans in an easy-to-read format. It includes six standard reports ranging from executive summary to technical detail including graphs and tables to help you quickly identify problem areas. The trend analysis report option allows you to quantitatively analyze your remediation program. Reports can be easily exported to other applications like spreadsheets, word processors and databases.

Operational Features

The following features allow WebSAINT's maximum versatility in a wide variety of environments:

• Flexible configuration options
• Firewalled environment capability
• Scan scheduling (immediate, one-time, daily, weekly, monthly)
• Windows domain authentication
• Optional dangerous checks
• HTML, PDF, XML or Text reports
• No setup is necessary—runs on-line from the secure WebSAINT^® server

System Requirements

WebSAINT^® operates superbly on any platform supporting a web browser capable of SSL (128-bit encryption is recommended). Environments using Netscape Navigator Version 4.x (or above) or Microsoft Internet Explorer 4.x (or above) provide optimum operation.