Are you certain that your network is secure? Probably not. And you’re not alone. Most companies only check their network when a critical vulnerability is published as they don’t have the time or knowledge to write tests for each CVE. Or they use basic scanning tools that only check OS versions for potentially impacted devices.
Sit back and rest assured, we got you covered! Our CVEasy solution gets you in full control of all CVEs, fully tested and verified. How? We do this by validating the following things:
OS version check
Netpicker has automated the process of comparing the public CVE files with the OS version of each of your network devices. We’ll backup your configs, check the OS and in Netpicker, you’ll see an overview of all you devices that are potentially vulnerable ranked by CVEs severity.
Config rule test
Because an OS version match does not mean that your devices are actually vulnerable, a more in-depth analysis is required that verifies the specific config rules on each device. This requires additional tests or scripts that go beyond a standard OS version check.
In an ideal world, this is done by your own network engineers, but in most cases, this doesn’t happens. That why we have don it for you! We have already built a library of (py)tests for all main vendors which we update on a regular basis. And based on customer demand we add new ones.
What does this mean?
This means that we do all the heavy lifting for you! Netpicker will run as a black box in your network (on premise), create reports and proactively notify you when new vulnerabilities are found. We don’t just alarm you of potential vulnerabilities (with OS version check), but we make sure all CVEs are tested and verified so you don’t spend time on any false positives. How easy is that!
How does this work
It’s a simple as downloading our Netpicker instance (OVA or Docker), tell us which vendors and how many devices you have and subscribe to our CVEasy service. We’ll plan a kick-off call, set up your system to get automated CVE and tests updates (also air gapped is possible), configure how you want to get notified and you are good to go.
Join FREE beta program!
We are currently in beta and are keen to work with potential users to help to grow our vendors list, library of CVE (py)tests and get customer feedback. You’ll get a free subscription (limited scope/time) so you can already test a part of your network.
Does this sound interesting? Make sure to sign up below. We only accept a limited number.
.