ARTICLE

SSA 1.6 Beta 2 released

Monday 14 April 2008

SSA (Security System Analyzer) is free non-intrusive OVAL-Compatible software. It provides security testers, auditors with an advanced overview of the security policy level applied.

Features :

- OVAL-compatible product
- Fully support of open security standards and initiatives (CVE, OVAL, CCE, CPE, CWE, CAPEC, CVSS, CRF)
- Perform a deep inventory audit on installed softwares and applications
- Scan and map vulnerabilities using non-intrusive techniques based on schemas
- Detect and identify missed patches and hotfixes
- Define a patch management deployment strategy using CVSS scores


SSA 1.6 beta 2 just released

Changelog

- Updated OVAL Security Check Plugin to support OVAL 5.4 schema
- Proxy support of NTLM authentication
- Reported Bugs fixed
- Draft documentation delayed (sorry guys, we’ve urged to release beta 2 to fix errors generated with OVAL 5.3 schema)

Next Beta 3 roadmap :

- Full support of CRF standard (reporting)
- Beta release of CCE Security Check Plugin
- Draft documentation


POSTSCRIPTUM

Download SSA 1.6 Beta 2


RELATED ARTICLES

Configurations checks, Local auditing, SSA, Vulnerability Management,

14 April 2008 : SSA 1.6 Beta 2 released
7 April 2008 : SSA Security System Analyzer version 1.6 beta 1 released
18 July 2007 : SSA Security System Analyzer version 1.5.2 released
5 June 2007 : Oval version 5.3 2nd Canditate available
16 April 2007 : SSA is now OVAL-Compatible