»  New PCI Compliance Rules To Impose Significant Burdens On Merchants
 
 »  netVigilance gets 5 stars by SC Magazine 4 years in a row
 
netVigilance Advantages
 »  Focuses exclusively on solutions for Network Vulnerability Detection and Assessment, Including PCI compliance
 
 »  Automatically produces robust reports that describe how to fix vulnerabilities, saving its customers tens of thousands of dollars per year in time and effort that competitive solutions require
 
 »  Has Extremely low false positive rate, enabling you to focus your resources on fixing actual vulnerabilities
 
 » 

Is an active member of the PCI ASV Task Force and the CVSS SIG under first.org, where we are a leader in industry efforts to improve these key standards
 

 »  Goes Beyond Compliance to ensure your security
 
netVigilance
Frequently Asked Questions

Quick solutions to the most common problems.
Available 24x7

 

*

Fact: Frequent Asked Questions resolve common Support issues within 5 minutes.


 

  1. New Install 
  2. License Mismatch Message
  3. Crash
  4. False Positive
  5. Upgrading

 

 

New Install

  1. Q: Now that I have the License file - How do I get the netVigilance Internal Scan - Windows Software ?

    A: Please download the Software from our web-site using the Link in License email.

     

  2. Q: In my License email I got both a .dat and a .zip file, which one should I use ?

    A: Normally you can use the .dat file, but some mail-systems change this file, this is why the dat file is supplied inside a zip-archive as well.

     

  3. Q: I have two networks Interface Cards (NICs) in my machine, but software License seems to bind to the wrong one ?

    A: netVigilance Internal Scan - Windows binds to the first network Adapter in your system. To change the adapter order do the following : "Network connections -Menu Advanced - Advanced Settings..." use the UP and DOWN arrows to move the desired network adapter to the top.

 

License Mismatch Message

  1. Q: When I start netVigilance Internal Scan I get the following message: License Manager has detected a mismatch between your license and your hardware.

    A: There are several reasons that you may see this message. Please check the following:

    1. Make sure the Network Adapter that the license was issued for is first in the binding order. To change the adapter order do the following : "Network connections - Menu Advanced - Advanced Settings..." use the UP and DOWN arrows to move the desired network adapter to the top.

    2. Make sure no VPN Adapters are active. Issue an IPCONFIG /ALL and disable any VPN Adapters listed for the duration of the scan.

    3. The AEP Netilla Security Platform SSL VPN creates a virtual VPN adapter that inserts itself as first in the Adapter Binding order and cannot be disabled. Because of this AEP Netilla Security Platform SSL VPN has been verified not to work with our product.

    4. Please review the email and compare the MAC address of the issued license against an IPCONFIG /ALL. If any differences than please contact the License Department with the correct MAC Address.  

 

Crash

  1. Q: what are the known conflicts between netVigilance Internal Scan - Windows and other products.?

    A: netVigilance scanign engine is using its own network driver layer to be able to create the specially crafted network packages that is needed for the assessment. This Driver does not conflict with normal Windows operations or correctly coded 3rd party device drivers. However it has been known to conflict with some programs that installs their own network driver. The following programs are verified not to work with netVigilance scan engines:

    1. Sygate Personal Firewall

    2. Network Associates Inc. (NAI) Sniffer Pro

    3. Kerio Winroute

    4. Kerio Firewall

    5. Symantec Enterprise Firewall VPN Client (Raptor VPN Client) 

 

 False Positive

  1. Q. A test case is appearing in my report and the test method checks for vulnerable versions returned by the service banner but I am patched. Why?
     

    A. Banner checks are vulnerability checks that are inference checks. That is they are trying to determine whether the service is vulnerable without running the actual exploit. Several possible reasons for running inference checks include a newly released vulnerability that has been released with little public details, actual exploit would cause a Denial of Service for the service targeted or exploit is a local exploit being tested over the network.

    False positives may be seen because of several reasons:

    • People can hide or create their own banners for many applications thus hiding inference checks used by the scanner or even sending back false information to the test method.
    • Many open source applications will release a workaround or a patch when the fix for an exploit is released. Recompiling will solve the exploit but not change the vulnerable banner version.
    • Many applications will release patches to fix an exploit which will not change the version displayed in the banner. Only an install of a newer version will change the banner.

    False positives should be reported to netVigilance support. Please have the Testcase id and the banner information returned in the extended data for the Testcase. If the banner string reflects a patch that corrects the vulnerability or reflects an operating system that is not vulnerable then we can update the test method to exclude the non-vulnerable version.
     

Upgrading

  1. Q: What is the internet address for downloading updates for netVigilance Internal Scan - Windows?

    A: The url for downloadig updates to netVigilance Internal Scan - Windows is:
    upgradenx.netvigilance.com 

  2. Q: How can I verify connectivity to the netVigilance Internal Scan - windows upgrade sites ?

    A: Use your web-browser to browse the servers or click these links :
    http://upgradenx.netvigilance.com You should see a netVigilance Logo

  3. Q: The Upgrade mechanism asks me for a Username and Password - What should I use ?

    A: Use the Username and Password supplied to you in the License Email.

     

  4. Q: How can I upgrade netVigilance Internal Scan - Windows if I do not have Internet access from the machine with the Console (offline upgrade)?

    A: Use the COLUP file (Cumulative OffLine Upgrade Package) that can be manually downloaded here:
    https://upgrade.netvigilance.com
    Please use the username and password supplied in your license email to log in.
    To install:

     

    1. Double-click on the file and extract to the default location (assumes default install path)

    2. Launch netVigilance Internal Scan - Windows console

    3. Choose Tools Menu

    4. Choose Options

    5. Select the Auto Upgrade Tab
       

      Option - Auto Upgrade

    6. Click on the Package Location button

    7. Select the box for Upgrade packages are on my computer or my local network.

    8. Click on the browse button
       

      Web Upgrade Server Setting

    9. Select the path C:\Program File\SecureScoutSecureScoutNXUpgrades

    10. Click OK

    11. Click on Check for update now

    12. Follow prompts

    13. Remove check in "Upgrade package are ...." after upgrade and SecureScout NX will check the web site.

     

  5. Q: I am trying to upgrade netVigilance Internal Scan using upgradenx.netvigilance.com but receive the following Popup error: "WebUpgrade returned an error (0x2000e006)". Logfile shows "[WebUpgrade] Web Server returned error on request [GET /package_update/temporary2yaWGIS34NI8hTKcZuwmeutcQ/_upgclnt.exe] [403]What is the cause?

    A: There are many possible reasons ranging from Ad Removal programs or Web Accelerators or Download Assistants or Security software such as "At Guard" or "NetZip" or Antivirus Software that may be preventing an executable from being downloaded. Please contact support to help narrow down what may be the reason. To get the latest upgrade while the issue is looked at, please download the COLUP (see question 4 above).

 

Copyright©2004-2011,  netVigilance, Inc.   All rights reserved  • Privacy Policy

netVigilance©