- Chat with McAfee Ready to make a purchase or have questions before you buy? Chat with a McAfee expert. Available Monday to Friday.
- Find a Reseller
- Contact Me
- Get Security Notifications Now
- Call: 1-888-847-8766
Overview
McAfee Security Scanner for Databases automatically finds databases on your network, determines if the latest patches have been applied, and tests for weak passwords, default accounts, and other common threats — making it easier to demonstrate compliance to auditors and improve protection of critical data assets.
If you are interested in an enterprise-class, centrally-managed database vulnerability management solution (with additional capabilities such as scheduled scans, scan history, McAfee ePolicy Orchestrator (McAfee ePO) integration, etc.), please see McAfee Vulnerability Manager for Databases.
Tactical database security scanner — McAfee’s database security scanner (DSS) is aimed primarily at internal or external auditors looking to perform ad-hoc database vulnerability scans.
Maximum visibility into security posture — Security Scanner for Databases gives auditors, pen testers, consultants, and database administrators a solution for gaining unmatched visibility into an organization’s security posture by conducting a thorough check of more than 3,500 potential database vulnerabilities.
Actionable data to address risk — With Security Scanner for Databases, you can review expert recommendations to address these risks, helping to build an effective database security policy and meet regulatory mandates.
Features & Benefits
Prepare for and perform well during a security audit
Detect altered data, including modifications of privileges and user tables, while spotting security issues such as SQL injection vulnerabilities.
Accelerate time to compliance and minimize audit cycles
Use out-of-the-box compliance reports to uncover potential issues before an audit, minimizing the time and cost involved in confirming remediation post-audit.
Deliver speedy fixes to help address vulnerabilities while prioritizing issues
Organize items by priority and review actionable recommendations for remediation. The database browser interface allows for quick application of fixes across multiple databases.
Check password strength in the fastest and most efficient manner possible
Detect weak passwords, shared passwords, and hashes passwords while downloading data for local analysis to avoid affecting database performance.
System Requirements
These are minimum system requirements only. Actual requirements will vary depending on the nature of your environment.
Minimum system requirements
- Microsoft Windows 7
- Microsoft Windows XP with Service Pack 2 (SP2) or higher
Supported databases for security scanning
- Oracle version 9.1 or later
- Microsoft SQL Server 2000 or later
- Microsoft SQL Azure
- MySQL version 4.0 or later
- PostgreSQL version 6.0 or later
- Sybase ASE 12.5 on all supported platforms
- IBM DB2 version 8.1 or later running on Linux, Unix, and Microsoft Windows
News / Events
News
- McAfee Delivers Comprehensive Database Security Solution
March 23, 2011Topics : Risk & Compliance, Database Security
- McAfee to Acquire Sentrigo to Enhance Database Security Portfolio
March 23, 2011Topics : Risk & Compliance, Database Security
- McAfee Unveils Unparalleled Risk Management Solution
July 19, 2010Topics : Endpoint Protection, Risk & Compliance, Database Security
Events
No results foundOn Demand
No results foundResources
McAfee Security Scanner for Databases
For a technical summary on the McAfee product listed above, please view the product data sheet.
Solution Briefs
White Papers
Community
Forums
No results foundBlogs
- Relentless Pursuit To Strengthening Partner Relevance
Gavin Struthers - May 10, 2012
As discussed during our Q2 global Town Hall on May 3, (on-demand replay) strengthening partner relevance underpins everything we are doing. From our leadership with Intel to transform the security market with innovative technology, like DeepDefender to our continuous commitment to drive channel partner profitability with the industry’s richest deal registration program, Enhanced Deal Registration. Read more... - Full Database Activity Auditing for the MySQL User Base
Sean Roth - March 29, 2012
A core component of a database security strategy which reliably protects an organization’s sensitive information and ensures continuous compliance, is having a means of answering three simple questions: What? When? Who? Clear visibility into the nature of each and every database transaction– knowing what happened, when it happened and who made it happen– means being Read more... - Urchins, LizaMoons, Tigers, and Bears
Jim Walter - October 21, 2011
In early April, I wrote about the famed “LizaMoon” SQL-injection attacks. I said it then, and I’ll say it again now: SQL-injection (SQLi) attacks are a constant. Some of these attacks are more visible than others. Some adversaries find intelligent ways to hide their tracks so as not to splatter evidence of their misdeeds all over various search Read more... - In the Wake of the Week: Need Sleep
Lang Tibbils - October 07, 2011
They are keeping me busy here at McAfee. Beginning to think that “Safe” isn’t the only thing that “Never Sleeps” around here. This weeks highlights include, our re-designed channel partner website, a blog recap of the Sept. 12 Global Channel Partner Town Hall Meeting, staying focused while attending the McAfee Partner Summit, a new market Read more... - Building an Arsenal of Best-in-Breed Database Security Solutions
Eric Schou - August 19, 2011
Visit any news site on the Web, and undoubtedly you’ll come across a barrage of articles publicizing the details of yet another data breach. With the prominence of SQL injection attacks, and malicious insiders and hackers exploiting sensitive data stored on unpatched and vulnerable databases, enterprise organizations have found themselves reevaluating their security strategies. Following Read more...