User Vetted Tools

<< 20 Critical Controls Home

The following tools have been confirmed by users to automate part or all of the controls listed here:

CAG 20 Critical Security Controls Document: Click here (pdf)

SANS Vetted Tools Case Studies

Critical Control 1 - Inventory of Authorized and Unauthorized Devices

• BSA Visibility (Insightix)
• IPSonar (Lumeta)
• CCM & IP360 (nCircle) - Case Study Available
• SecureFusion (Symantec)
• CounterAct (ForeScout Technologies)
• Nessus & SecurityCenter (Tenable)

Critical Control 2 - Inventory of Authorized and Unauthorized Software

• Parity (Bit9)
• CCM & IP360 (nCircle) - Case Study Available
• Nessus & SecurityCenter (Tenable)
• CounterAct (ForeScout Technologies)

Critical Control 3 - Secure Configurations for Hardware and Software on Laptops, Workstations, and servers

• CCM (FDCC) & IP360 (misconfigurations) (nCircle) - Case Study Available
• Retina & Blink (eEye Digital Security)
• SecureFusion (Symantec)
• Nessus & SecurityCenter (Tenable)

Critical Control 4 - Secure Configurations for Network Devices such as Firewalls, Routers, and Switches

• Network Advisor (RedSeal)
• Firewall Analyzer & FireFlow (AlgoSec)
• FirePAC (Athena Security)
• Assure-Firewall Compliance Auditor & Network Compliance Auditor (Skybox Security)
• FireMon (Secure Passage)
• Network Configuration Manager - (Solarwinds)
• CCM (nCircle)
• Tufin Security Suite -SecureTrack and SecureChange (Tufin Technologies) - case study coming soon

Critical Control 5 - Boundary Defense

• Network Advisor (RedSeal)
• FireMon (Secure Passage)
• Tufin Security Suite -SecureTrack and SecureChange (Tufin Technologies) - case study coming soon

Critical Control 6 - Maintenance, Monitoring, and Analysis of Security Audit Logs

• ArcSight ESM, ArcSight Logger (HP)
• Splunk - Case Study Coming Soon
• Security Blanket (Trusted Computer Solutions)
• Security Manager (Intellitactics)
• Enterprise Security Manager (Arcsight)
• OSSIM (Alienvault)
• Open Log Management (LogLogic)

Critical Control 7 - Application Software Security

• Fortify 360, Fortify on Demand (HP)
• Hailstorm (Cenzic) - Case Study Available
• Nessus & SecurityCenter (Tenable)
• WebApp 360 (nCircle)

Critical Control 8 - Controlled Use of Administrative Privileges

• ArcSight ESM, ArcSight IdentityView (HP)
• SMS & Active Directory (Microsoft)
• Security Manager (Intellitactics)
• Security Blanket (Trusted Computer Solutions)
• CCM (nCircle) - Case Study Available

Critical Control 9 - Controlled Access Based on Need to Know

• CounterAct (ForeScout Technologies)

Critical Control 10 - Continuous Vulnerability Assessment and Remediation

• Nexpose (Rapid 7)
• Retina (eEye Digital Security)
• IP360 (nCircle) - Case Study Available
• Vulnerability Manager & Remediation Manager (McAfee)
• QualysGuard (Qualys)
• Nessus (Tenable)
• Skybox Secure solution (Skybox security)
• SAINT & SAINTmanager (SAINT) - Case Study Available
• SecureFusion (Symantec)
• CounterAct (ForeScout Technologies)

Critical Control 11 - Account Monitoring and Control

• ArcSight ESM, ArcSight IdentityView (HP)
• SMS (Microsoft)
• Security Blanket (Trusted Computer Solutions)
• Security Manager (Intellitactics)

Critical Control 12 - Malware Defenses

• TippingPoint IPS, TMS, SMS (HP)
• Blink (eEye Digital Security)
• SMS & Active Directory (Microsoft)

Critical Control 13 - Limitation and Control of Network Ports, Protocols, and Services

• TippingPoint IPS, TMS, SMS (HP)
• CCM (nCircle) - Case Study Available
• FireMon (SecurePassage)

Critical Control 14 - Wireless Device Control

• Retina & Blink (eEye Digital Security)

Critical Control 15 - Data Loss Prevention

• RSA (DLP) Suite (RSA)

Critical Control 17 - Penetration Tests and Red Team Exercises

• WebInspect, QAInspect (HP)
• CORE IMPACT Pro (Core Security Technologies) - Case Study Available