• Customer Login
  • Request Info
  • North America - English
    • North America - English
    • Outside North America
McAfee Secure sites help keep you safe from identity theft, credit card fraud, spyware, spam, viruses and online scams
  • Products
    • McAfee SECURE
    • Vulnerability Assessment SaaS
    • PCI Certification Service
    • Compare Products
    • Case Studies
    • Resources and Research
  • Technology
    • Technology
    • The McAfee SECURE standard
  • For Consumers
    • Certified Merchant Directory
    • Resources and Research
    • SiteAdvisor
    • Security Advice Center
  • Resources
    • News
    • Case Studies
    • Research
    • Collateral
  • Partnerships

Content

McAfee SECURE™ Technology

Simple, effective, affordable website security scanning and risk assessment.

Sidebar

Ready to Buy?

Request Info
Live Chat
Contact Sales

McAfee SECURE Technology

McAfee technology helps you manage online risk. Whether you turn to McAfee for vulnerability scanning, PCI certification or trustmark validation, we deliver security solutions that are simple, effective and affordable.

When it comes to vulnerability outbreaks, the time between identification and infection is very short. Trying to keep your network up-to-date on your own is tedious, time consuming and expensive. With McAfee products, we take care of the tough stuff and give you the information you need, when you need it so you can concentrate on the work that helps your business grow.

You don't want to discover that your site is vulnerable after it is hacked. McAfee solutions are effective because we approach your site through the eyes of the bad guys. The core of our service is our comprehensive website scanner. Our daily, non-invasive vulnerability scan will quickly identify vulnerabilities that could let hackers in, and put you at risk. Our discovery and scan processes mimic the ways in which hackers search for vulnerabilities they can exploit. And because we scan daily, you get testing, verification and communication quickly.

As the largest dedicated security company in the world, McAfee has the resources to provide you with enterprise class technology at an affordable price. And our world recognized brand can help reassure your customers that you're making their site experience safer and more secure.

Learn more about our website scanning technology below.

  • Scanning
  • Portal
  • Remediation
  • Certification
  • Effectiveness
  • Our Standard
Port DiscoveryAccurately determining which ports on an IP address are open is a crucial first step to a comprehensive security audit. Our discovery technology is designed to map any network, no matter how complex or large. And unlike most scanning solutions based on Nmap, our advanced dynamic port scanning can handle all targets, from desktop PCs to the most aggressive firewalls, IDS and IPS systems.
Network DiscoveryOur advanced scanning technology is designed to reduce the difficulty of managing the security of large, complex public IP networks. It allows you to quickly and accurately discover, identify and monitor network devices, find rogue devices or identify unauthorized services across any specified IP sub-net range. Our smart scan can even root out stealth techniques used to overcome IDS, scan blocking, and packet delays.
Network Services Vulnerability ScanOnce the network is mapped, we thoroughly interrogate each service on every available port to determine exactly what software is running and how it is configured. We then match this to our vulnerability knowledge base which is updated every 15 minutes. This allows us to launch additional, service specific tests.
Web Applications Vulnerability ScanWeb application testing is a critical piece of the vulnerability scan because traditional security mechanisms such as firewalls and IDS provide little or no protection against attacks on your web applications. During this testing phase, all HTTP services and virtual domains are checked for the existence of potentially dangerous modules, configurations settings, CGIs and other scripts, and default installed files. The website is then "deep crawled" including flash embedded links and password protected pages, to find forms and other potentially dangerous interactive elements. These are then exercised in specific ways to disclose any application-level vulnerabilities such as code revelation, cross-site scripting and SQL injection. Both generic and software specific tests are performed in order to uncover misconfigurations and coding error vulnerabilities.
Content ScanMcAfee also scans your downloadable files, registration forms and outbound links for risk. Files are scanned for accidental infection by malware. Forms are tested using unique, one time use e-mail addresses to see if form data is properly protected. And outbound links are tested against a massive database to ensure your site does not inadvertently link to a malicious website. These scans are based on a database that is referenced nearly three billion times per day by McAfee customers.

Footer

  • Terms of Service
  • About us
  • Privacy Policy
  • McAfee Home
  • Report trustmark abuse

Copyright 2012 McAfee, Inc ©