Retina®,  network security and vulnerability scanner provides port scanning and vulnerability assessment capabilities, identifies known security vulnerabilities and assists in prioritizing threats for remediation. Featuring fast, accurate, and non-intrusive scanning and the industry's most comprehensive vulnerability database, users are able to secure their networks against even the most recent of discovered vulnerabilities. Users can also leverage Retina to enforce internal security policies and standards-based registry settings through custom policy audits. And, because the majority of Retina scan can be conducted without administrator rights, Retina is the easiest scanner to use, and the most cost-effective to deploy.

Today, security administrators are tasked with managing an unrelenting number of network vulnerabilities. These vulnerabilities occur in every level of the network, within operating systems, applications, even network devices such as routers and switches. Retina Network Security Scanner can scan every machine on your network - including a variety of operating system platforms (e.g. Windows, Unix, Linux), networked devices (e.g. firewalls, routers, etc.), databases and third-party or custom applications - in record time. After scanning, Retina delivers a comprehensive report that details all vulnerabilities and recommends the appropriate corrective actions and fixes.

Retina's asset discovery feature allows security administrators to identify and prioritize network devices, providing a clear picture of the enterprise network infrastructure --including servers, databases, switches, routers and wireless access points.

Retina leverages the expertise of eEye Digital Security's Research Team, incorporating the most comprehensive and up-to-date vulnerabilities database and scanning technology which is automatically downloaded at the beginning of each Retina session. This enables security professionals to proactively secure their networks against vulnerabilities.

In addition to scanning against the most complete database of known vulnerabilities, users can write their own customized audits. These audits can be used to enforce internal security policies to verify such items as anti-virus deployments, approved machine configurations and application version control.

Retina® solves the problems security administrators face as they attempt to assess the state of their network’s security. With the industry’s most comprehensive vulnerability database, users are able to secure their networks against even the most recent of discovered vulnerabilities and efficiently plan remediation efforts.

Unrivaled Ease of Use
Despite its powerful capabilities, Retina was designed to be the easiest scanner to operate on the market. The award-winning graphical user interface provides easy control over all aspects of Retina's scanning and reporting capabilities. Retina also features a number of automatic features that facilitate such functions as scheduling, repairing common system problems and updating the application.

Non-Intrusive Scanning
Unlike most other security scanners on the market, eEye has gone to great lengths to design Retina with intelligent scanning techniques that are non-intrusive and do not test by exploitation during normal scanning operation. As a result, Retina can scan your network without overloading its resources and without causing systems to crash. This makes Retina especially powerful for remote scanning services.

Rogue Wireless Access Detection
Retina can now be used to detect wireless access points that may have been established on your network. Retina automatically detects the presence of unauthorized access points on networks of any size. Retina's rogue wireless detection capabilities eliminates the need for using handheld/wireless access detection tools and walking around buildings or driving the corporate perimeter.

Custom Audit/Policy Creation
In addition to a comprehensive database of security audits, Retina's Audit Wizard gives you the ability to create new audits to check for security vulnerabilities in custom applications or other configurations that may be unique to your network, allowing you to enforce security policies. Audit Wizard simplifies the process of building custom checks and getting them integrated into Retina for use in your very next scan.

High-Speed Scanning Ability
Retina is recognized as the fastest security scanner on the market. It has the ability to scan every machine on your network, all types of operating systems, networked devices and third-party or custom applications in record time. In fact, Retina is able to scan an entire Class C network in about 15 minutes.

Comprehensive and Up-to-Date Vulnerabilities Database
Because eEye is a recognized digital security research powerhouse, Retina incorporates the most comprehensive and up-to-date vulnerabilities database. Along with constantly monitoring security advisories, eEye frequently has advanced knowledge of security issues due to discoveries made by its own team of security experts. In fact, the eEye research team has itself issued a number of advisories regarding major security issues that its members have personally detected. With Retina's Auto-Update feature, this almost daily stream of vulnerability updates can be automatically downloaded at the beginning of every Retina session.

Complete OS Detection
Retina is the first and only commercial scanner to license and incorporate the Nmap (Network Mapper) Fingerprint Database, an open-source utility for network exploration and the most complete database of OS TCP/IP stack fingerprints available. Nmap uses raw IP packets in novel ways to determine which hosts are available on the network, which services or ports they are offering, which operating system they are running, what type of packet filters/firewalls are in use, and dozens of other characteristics. Incorporating Nmap allows Retina to perform remote operating system detection for subsequently smarter scanning. Additionally, eEye has integrated ICMP technology to further increase the efficiency and accuracy of OS detection.

Smart Protocol Scanning
Unlike most other security scanners, Retina does not make assumptions about typical protocols running behind specific ports such as a web server running behind Port 80. Instead, the scanner actually analyzes the input/output data on each port to determine which protocol and service is actually running. In this way, Retina makes adjustments for custom or unconventional machine setup.

Advanced and Customized Reporting Capabilities
Rather than providing boilerplate text, Retina automatically customizes the content of its network audit reports to reflect the severity of the vulnerabilities discovered and the level of security risk involved. You can further customize these reports by rewriting specific content and/or by incorporating your logo or other text in the header and footer sections. Retina offers two different reporting options: Technical Reports with intricate details to satisfy IT personnel and Executive Reports for high-level management summaries.

Advanced Scheduling Capabilities
Retina's scheduler function allows you to set the scanner to run on a regular basis to periodically check for vulnerabilities. And because Retina is non-intrusive in its scanning operations, you can pre-schedule your scans to be run without having to worry about unplanned network downtime.

Remote Scanning Capabilities
Used in conjunction with Retina Remote Manager, Retina scans can be securely initiated from any location. Administrators can now place Retina scanners in different geographical locations, run scans remotely, and view reports. Contact an eEye sales representative for more information on Retina Remote Manager.

Open Architecture
Retina is built with an open architecture that allows you to develop vulnerability tests and auditing modules tailored to your organization's own specific requirements. You can also fine-tune the included audits, make custom changes to the Retina interface and more. A documented set of APIs is provided to simplify the process of building custom scans in your preferred programming language and integrating them into Retina. Retina also has a Policies Wizard that walks you through the creation of a custom scan.

Breadth of Systems and Services Audited
Retina runs on Windows NT/2000 and XP platforms, but, unlike other scanners, it is not limited to scanning only Windows networks. In fact, Retina has the ability to scan all types of operating systems for vulnerabilities, including Unix-based operating systems (Solaris, Linux, *BSD, etc.) as well as networked devices (such as routers and firewalls) that run "home-grown" operating systems. Retina includes vulnerability auditing modules for many systems and services such as NetBIOS, HTTP, CGI and WinCGI, FTP, DNS, DoS vulnerabilities, POP3, SMTP, LDAP, TCP/IP, UDP, Registry, Services, Users and Accounts, password vulnerabilities, publishing extensions, and more. Retina is even able to comprehensively audit databases and wireless networks for vulnerabilities.

Screenshots

Retina®, PC Magazine Editor's Choice Award winner for vulnerability   

Datasheets

• Retina Security Scanner Data Sheet

Product Requirements

Windows NT™ Version 4.0 SP6 or higher

(Windows 2000 or 2003 Server recommended)

Internet Explorer Version 5.0 or higher

256 MB of memory

40 MB of free disk space

Network connection

Technical Overview

Retina® Network Security Scanner is a proven solution designed to meet the stringent

requirements of today's security professionals. Retina's award-winning technology

gives users the tools required to effectively identify and remediate the vulnerabilities

that leave their networks susceptible to malicious attacks. Retina enables users to

secure their networks by:

Accurately discovering all the assets in a network infrastructure including operating

system platforms, networked devices, databases and third party or custom

applications. Retina also discovers wireless devices and their configurations,

ensuring these connections can be audited for the appropriate security settings.

Additionally, Retina scans active ports and confirms the services associated with

those ports.

Implementing corporate policy driven scans to audit internal security guidelines and

ensure that configuration requirements are enforced and comply with defined

standards on an ongoing or daily basis. These custom scans can also assist with

meeting any regulatory compliance requirements customers may face.

Incorporating the most comprehensive vulnerabilities database and scanning

technology available, allowing users to proactively secure their networks against

attacks. Retina was developed and is constantly updated by the world renown eEye

Research Team and leverages its expertise and superior vulnerability discovery

methodology. Updates are automatically obtained at the beginning of each

Retina session.

Providing a workflow approach to vulnerability management. Retina's user interface

allows for multiple views and reporting options with which to analyze assessment

data. This gives users the opportunity to view asset criticality correlated with

complete vulnerability data. This approach allows users to effectively prioritize

remediation efforts.