|
|
|
| DATA SLEUTH |
Data Sleuth is a proprietary breakthrough in advanced vulnerability assessment intelligence. As a passive analysis engine, Data Sleuth monitors the findings of NTOSpider's attack modules. Upon the discovery of a vulnerability, Data Sleuth analyzes the data/content to determine the relative risk priority. Should an otherwise benign vulnerability, such as a backup/archive file, contain security sensitive information, the vulnerability risk is escalated from Informational/Low to High risk. This allows security personnel to quickly identify and focus on remediating High Risk vulnerabilities before addressing lesser concerns.
|
|
 |
|
As an example, archive files should never be moved into the production environment after the development process as they frequently wind up on public servers for anyone to look at. Generally speaking, however, the vast majority of these vulnerabilities are of Informational or Low risk, and should be removed in compliance with best practices. In this case, upon discovery Data Sleuth will open the file and analyze its contents for security sensitive information, including: usernames/passwords, SQL strings and ODBC connectors, and source code. If anything potentially sensitive is found within the vulnerabilities contents the risk of the vulnerability is escalated and the information is presented in the report with the rest of the findings.
|
|
|
