Passive Vulnerability Scanner Features

Performs Automatic Discovery of Users, Infrastructure and Vulnerabilities

Real-time Vulnerability Scanning

Continuous Scanning:

  • Delivers continuous scanning and assessment of an organization’s security in a non-intrusive manner
  • Monitors network traffic at the packet level to provide visibility into both server and client-side vulnerabilities with full asset discovery
  • Scales to meet future scanning demands of proliferation of devices, including virtual systems and cloud services

Full Asset Discovery:

  • Network devices
  • Virtual- and cloud-based devices
  • BYOD/mobile devices
  • Jailbroken iOS devices

Vulnerability Assessment:

  • Automatic infrastructure and vulnerability assessment
  • Identifies server- and client-side vulnerabilities in new and transient assets
  • Detects vulnerabilities on communicating systems and the protocols and applications used
  • Identifies when an application is compromised or subverted

Mobile Risk Identification:

  • Finds BYOD/mobile devices
  • Identifies mobile operating systems
  • Detects application and OS vulnerabilities

Network Security Monitoring:

  • Detects and documents new hosts added to a network
  • Continuously discovers and tracks users
  • Discovers when internal systems begin port scan of other systems
  • Highlights all interactive and encrypted network sessions
  • Spots which ports served and browsed for each individual system
  • Passively determines the operating system of each active host

Compliance and Deployment

PCI DSS Compliance

The PCI DSS requires accurate and comprehensive identification of all systems involved in the transmission, processing or storage of credit card data. These systems collectively comprise the "cardholder data environment" (CDE) where PCI DSS controls must be consistently applied and validated on an annual basis. Organizations also must provide evidence of procedures to maintain the integrity of the CDE. Passive Vulnerability Scanner™ (PVS™) not only monitors known data flows in/out of the CDE but also identifies undocumented data flows, particularly of unencrypted payment card information.

Deployment Options

PVS is available as a self-contained passive scanner and also as a tightly integrated sensor in SecurityCenter Continuous View™. Available as an individual vulnerability scanner, PVS is perfect for continuous scanning of a smaller network segment and scales to support a larger network and uniquely provides targeted monitoring for highly sensitive networks. PVS is also in SecurityCenter Continuous View, a market defining, continuous monitoring platform that uniquely combines detection, reporting and pattern recognition utilizing industry recognized algorithms and models.

Getting Started


Get a 30-day trial for your organization

Try Now


Get the full power of passive scanning

Buy Now