ARTICLE SARA-7.9.2a the final version released

Friday 9 April 2010 - 1325 read - ( Keywords : Saint , Vulnerability Scanner )

The Security Auditor’s Research Assistant (SARA) is a third generation network security analysis tool that that has been available and actively updated for over 10 years. Sadly, all good things have to come to an end and so it goes for SARA. SARA 7.9.1 is our last release. Actually, SARA-7.9.2a is the final release.

The first generation assistant, the Security Administrator’s Tool for Analyzing Networks (SATAN) was developed in early 1995. It became the benchmark for network security analysis for several years. However, few updates were provided and the tool slowly became obsolete in the growing threat environment.

BMP - 25.2 kb

Features

- Operates under Unix, Linux, MAC OS/X or Windows (through coLinux) OS’.
- Integrates the National Vulnerability Database (NVD).
- Performs SQL injection tests.
- Performs exhaustive XSS tests
- Can adapt to many firewalled environments.
- Support remote self scan and API facilities.
- Used for CIS benchmark initiatives
- Plug-in facility for third party apps
- CVE standards support
- Enterprise search module
- Standalone or daemon mode
- Free-use open SATAN oriented license
- Updated twice a month (we try)
- User extension support - Based on the SATAN model

Changes:

- Changed encoded encoding scheme to reduce AV rejection


POSTSCRIPTUM

Download


COMPLIANCE MANDATES

Vulnerability Scanner : PCI DSS 11.2, 6.6, SOX A13.3, GLBA 16CFR Part 314.4(c), HIPAA 164.308(a)(8), FISMA RA-5, SI-2, ISO 27001-27002 12.6, 15.2.2


RELATED ARTICLES

Saint, Vulnerability Scanner,

15 April 2010 : SAINT® 7.3.3 Released
9 April 2010 : SARA-7.9.2a the final version released
1 April 2010 : SAINT® v7.3.2 Released
16 March 2010 : Saint Vulnerability Scanner v7.3 on the wild
27 February 2010 : Saint Vulnerability Scanner and Exploiter v7.2.7 released