Internal Scanning
The Internal Scanning feature allows customers to run Web Inspector PCI vulnerability scans on computers located on a local area network (LAN). These computers are typically 'inside' the company's private network and are protected by a perimeter firewall or other network security device.
Note: The
Web Inspector PCI is powered by Comodo HackerGuardian and so WI PCI
will be accessing HG technology wherever required. |
In order to run an internal scan, the administrator must first install and configure the HackerGuardian (HG)internal scanning Agent on the local network.
Once installed and configured, this Agent will establish a secure connection to a HackerGuardian Access server which will in turn establish a secure communication channel (connection) to a HackerGuardian scanning server. The scanning server will then be able to connect to and run scans on the local computers located at the IP addresses that have been specified as Local Devices in Web Inspector PCI. The Agent software is available as an iso image (to create a Live CD), as files (to create a Live USB stick) or as files to run from a VM ware player. The scans can be run directly from the 'Overview' area of Web Inspector PCI interface after installation and configuration of the agent. (see 'How to install the Agent' , 'Configuring the Agent' and 'Using the Agent - Main Menu' for more details on set up and configuration of the agent. See 'Start Device Scanning' to learn how to run an internal scan once the agent has been installed.)
There are two main prerequisites to running an internal scan:
- The creation of a 'Local Device' as a target for the scans in the 'Device List' area of the Web Inspector PCI interface. Local Devices are defined by one or more IP addresses.
- The HG internal scanning Agent has been installed on your local network to communicate with the HackerGuardian scanning servers via VPN connection.
Once these two steps are complete, users can start an internal scan on the device by clicking the 'Start Scan' button in the 'Overview' area.
For creating local devices and to run scans on the local devices, switch to 'Device List' area of Web Inspector PCI. Click here for more details on the interface.
Note: The Internal Scanning feature allows you to create and edit local target devices and to manually run scans on selected devices. Unlike other, 'external', devices, 'LAN Devices' are defined using IP addresses only. |
Click on the links below for
detailed explanations on steps involved in the Internal Scanning.