Spycatcher Enterprise 3.2

SpyCatcher Enterprise 3.2
Tenebril
Price: Starts at $199

Tenebril says its SpyCatcher Enterprise 3.2 has the centralized management that enterprises need for the war on spyware, but Spy-Catcher isn't quite the killer app sought after by security managers in this space.

The problem with most antispyware applications is they are client-only. Tenebril took its antispyware app and added its Remote Management Console (RMC), which enables security managers to administer their client-side antispyware applications. Unfortunately, RMC falls short in its ability to effectively maintain or even query its clients.

SpyCatcher's RMC does an adequate job of reporting the status of clients and whether spyware's been detected, but it doesn't have the ability to do on-demand scans or updates, or real-time reporting. All updates and scans are done on predefined schedules, and reporting is based on historical data.

The term "remote" is also a misnomer. SpyCatcher doesn't have what many would consider remote administration or access. There's no Web interface or remote access mechanism. The closest you can get to remote access is Telneting into a box that RMC is installed on. Otherwise, security managers must sit at the physical console.

More Information Attend this on-demand webcast and learn how spyware works and what you can do to safeguard your business.

All data collected by the RMC is exportable to CSV, SQL or plaintext. It can be automatically saved to a specific location on the network or sent via e-mail to security managers and admins. Between scans and updates, though, you'll have to rely on your IDS to catch suspicious network activity indicative of spyware.

RMC does give security managers centralized control over clients' browser settings, such as locking home pages and browser configurations.

All this boils down to SpyCatcher Enterprise being a glorified client monitor that logs data about processes, software versions, infections, scans and updates. Tenebril has left out the foundation of immediate information delivery that would provide security managers with real value. Until SpyCatcher has these capabilities, it's nowhere near ready for prime time.

About the Author
Ryan Guzal is a contributor to Information Security magazine.

This review orginally appeared in Information Security magazine

Rate this Tip To rate tips, you must be a member of SearchSecurity.com. Register now to start rating these tips. Log in if you are already a member. Digg This!     StumbleUpon     Del.icio.us    RELATED CONTENT Security Buyer's Guide Keystroke dynamics makes BioPassword Internet Edition a viable authentication option Access security with KoolSpan's SecurEdge NetChk Protect 5.5 Biometrics: Best practices, future trends 2006 Products of the Year: Emerging Technologies Secure Sphere 2.0 Scan & Deliver: SLAs force service providers and outsources to hit the mark ... or hit the road Secure remote access: SSH Tectia Manager Configuresoft's Enterprise Configuration Manager v4.7 Websense Enterprise 5.5 Web Application Security (Also see Web Access Control) Microsoft tools won't be quick fix for SQL injection attacks New defenses for automated SQL injection attacks HP aims at IBM with application vulnerability scanning as service Information security book excerpts and reviews Kaminsky on DNS rebinding attacks, hacking techniques Webmail security: Best practices for data protection Tracing malware's steps with RE:Trace SQL injection attack infects hundreds of thousands of websites PCI Council issues clarification on Web application security Web security gateways keep Web-based malware at bay Spyware, Adware and Trojans Stolen data ending up in Google cache, say researchers Information security book excerpts and reviews Yahoo, McAfee to warn users of dangerous websites Botnets and ethics Security Services: Webroot Email Security SaaS Interview: Jim Kirkhope of NCR Trojan downloaders, droppers skyrocket, Microsoft says Kraken botnet balloons to dangerous levels New Storm attack exploits April Fool's Day Panda latest AV firm trying to adapt with the times Spyware, Adware and Trojans Research RELATED GLOSSARY TERMS Terms from Whatis.com − the technology online dictionary anonymous Web surfing  (SearchSecurity.com) buffer overflow  (SearchSecurity.com) cache cramming  (SearchSecurity.com) cookie poisoning  (SearchSecurity.com) dictionary attack  (SearchSecurity.com) distributed denial-of-service attack  (SearchSecurity.com) JavaScript hijacking  (SearchSecurity.com) National Computer Security Center  (SearchSecurity.com) threat modeling  (SearchSecurity.com) trigraph  (SearchSecurity.com) RELATED RESOURCES 2020software.com, trial software downloads for accounting software, ERP software, CRM software and business software systems Search Bitpipe.com for the latest white papers and business webcasts Whatis.com, the online computer dictionary DISCLAIMER: Our Tips Exchange is a forum for you to share technical advice and expertise with your peers and to learn from other enterprise IT professionals. TechTarget provides the infrastructure to facilitate this sharing of information. However, we cannot guarantee the accuracy or validity of the material submitted. You agree that your use of the Ask The Expert services and your reliance on any questions, answers, information or other materials received through this Web site is at your own risk.