iTnews

Review: AppDetectivePro

By Patrick Love, Head of Fiduciary Support, Global Wealth Sol on Sep 13, 2007 4:43PM
Review: AppDetectivePro

AppDetectivePro primarily looks for security holes inside of a number of popular database servers. The user interface makes it easy to determine which steps of the scan should be performed next.

The application also includes a pen test feature, which truly performs a vulnerability assessment of the database. We did have some initial trouble figuring out the correct menu to configure the network interface for the product to use.

From there the program performs a network discovery, which identifies SQL servers, Oracle servers and web servers. This program is different in that it does not detect web application vulnerabilities, but rather it looks for vulnerabilities in the back-end database.

The program also includes a fix script feature, which allows for faster remediation of vulnerabilities. AppDetectivePro is part of a suite of products, including DbProtect, which provides activity monitoring, patch management and database encryption. These offerings work to protect the database after the scan in real time.

The installation of AppDetectivePro also installed some necessary additional components, including XML and a form of SQL database. The application can also use Access for storing the results so an SQL install is not necessarily needed. The program installation was straightforward and only needed "next" to be clicked a few times.

Documentation is included electronically in the form of PDF files. The documentation is easy to follow and the layout is logical and probably necessary for most administrators. The documentation was indexed and searchable in the documents that we looked at and this made for an easier time finding necessary information.

Phone support is available and standard support of 9 a.m.-9 p.m. EST is included in the list price of the product. More support is available for an additional fee. Support is also available through the company’s website at www.appsecinc.com and access to the portal is password protected. Email support is also available and we found it very fast in responding.

The pricing for the AppDetectivePro offering was at the low end of the price spectrum with pricing beginning at just $900. Since support and maintenance is included, the price is easily justified.

For: Easy install and a logical dashboard with great all-around support.
Against: First use of the product can be a bit confusing.
Verdict: This product is great for security analysis of a database, and the cost is at the very low end of products tested.

Got a news tip for our journalists? Share it with us anonymously here.
Tags:
application assessment security vulnerability

Partner Content

COVID puts agile IT under the microscope
Promoted Content COVID puts agile IT under the microscope
Beat the DDoS blackmails in 2021
Promoted Content Beat the DDoS blackmails in 2021
Putting cyber security basics in place
Partner Content Putting cyber security basics in place
One way SD-WAN can save business leaders' time
Partner Content One way SD-WAN can save business leaders' time

Sponsored Whitepapers

Move beyond passwords
Move beyond passwords
The top 5 tech trends to deliver business outcomes
The top 5 tech trends to deliver business outcomes
10 reasons why businesses need to invest in cloud security training
10 reasons why businesses need to invest in cloud security training
Your guide to application security solutions
Your guide to application security solutions
State of Software Security: Open Source Edition
State of Software Security: Open Source Edition

Events

  • On-Demand Webinar: How Poly and Microsoft are Embracing Future Work Environments
By Patrick Love, Head of Fiduciary Support, Global Wealth Sol
Sep 13 2007
4:43PM
0 Comments

Related Articles

  • NSW govt sets up vulnerability tracking centre in Bathurst
  • Apple patches iOS to address unc0ver jailbreak
  • Oxfam Australia confirms 'supporter' data accessed in cyber attack
  • Mumbai power outage could have been cyber sabotage
Share on Twitter Share on Facebook Share on LinkedIn Share on Whatsapp Email A Friend

Most Read Articles

TPG Telecom to start enticing NBN customers to move

TPG Telecom to start enticing NBN customers to move
Infosys scores another $40m for Centrelink payments engine build

Infosys scores another $40m for Centrelink payments engine build
Telstra InfraCo opens up telco's own fibre network

Telstra InfraCo opens up telco's own fibre network
Transport for NSW data stolen in Accellion breach

Transport for NSW data stolen in Accellion breach
You must be a registered member of iTnews to post a comment.
Log In | Register
All rights reserved. This material may not be published, broadcast, rewritten or redistributed in any form without prior authorisation.
Your use of this website constitutes acceptance of nextmedia's Privacy Policy and Terms & Conditions.