Secunia CSI 5.0
Vulnerability Intelligence Manager (VIM)
Corporate Software Inspector (CSI)
Technology
Free Trial
Request Quote
Download CSI
FAQ

Download Patch Management Software

    Automate your vulnerability scanning and computer security with patch management software from industry experts. Designed to be non-intrusive and easy on the hosts and network being scanned, the Secunia CSI, once downloaded, has a minimal impact while accurately pinpointing vulnerable programs across your network.

    Start using the Secunia CSI 5.0 to secure your computer network.

     

    Downloading patch management software will immediately make your network security easier to handle. With an intuitive dashboard that works as your control panel you can manage computers, start and schedule scans, view scan results, pinpoint vulnerable hosts and software, and more. The dashboard is very light weight, in terms of required system resources and has been designed with the purpose of running in the background for instant access to your results.

    Product information

    • Current version: 5.0
    • Latest release: 31st August, 2011
    • Download file size: 1,140,136 bytes
    • Platform: Microsoft Windows®

    Corporate Typical users

    • CFO, IT Executives
    • IT Security, IT Operations
    • IT-Audit & Compliance Managers
    • System & Network Admins


    System Requirements

    The Secunia CSI is an authenticated patch scanner, designed to be non-intrusive and easy on the hosts and network being scanned, thus causing a minimal impact while pinpointing vulnerable programs across your network.

    Running the centralised dashboard
    • Network/Internet connection (SSL 443/tcp to csi5.secunia.com)
    • Microsoft Windows XP Service Pack 3, 2003, 2008, Vista, and 7
    • Microsoft Internet Explorer 7 or higher

    The centralised dashboard is your control panel. This is where you manage computers, start and schedule scans, view scan results, pinpoint vulnerable hosts and programs, and so forth. The dashboard is very light weight, in terms of required system resources - it has been designed with the purpose of running in the background for instant access to your results.

    Scanning using remote login (Agent-less):
    • Administrative privileges
    • Microsoft Windows XP Service Pack 3, 2003, 2008, Vista, and 7
    • Windows Update Agent 2.0

      Standard Windows services/ports:
      • Workstation and Server Service
      • Remote Registry Service
      • File and Print Sharing
      • COM+
      • Ports 139/tcp and 445/tcp open inbound
    Scanning using installable agent (Agent-based):
    • Administrative privileges
    • Microsoft Windows XP Service Pack 3, 2003, 2008, Vista, and 7
    • Windows Update Agent 2.0

    Changelog

    Version 5.0 - Secunia CSI 5.0 (Major update / Final release, 31st August 2011)

    • Updated Design - The design of the Secunia CSI 5.0 has been updated in accordance with Secunia’s brand image and new design guidelines.
    • Enhanced Reporting - Improved modular reporting has been implemented. This means that reports are fully customisable and can be configured to include the data that the customer wants. This also includes data from sub-users.

      The modular reporting is similar to what has already been successfully implemented in the Secunia Vulnerability Intelligence Manager (VIM). It allows for greater flexibility and ensures a reporting setup that is easily extendable in terms of adding more reporting features.
    • Scan Agent for Apple Mac OS X - With the Secunia CSI 5.0 it is now possible to scan Apple Mac OS X and have the scan results displayed in the solution’s user interface.

      The new CSI Agent for Mac is available for download from the “Download Local Agent” page within the Secunia CSI 5.0. The new agent can be installed on the Mac host in both “command line” and “service” mode, in a similar way to how the Windows equivalent works.
    • Enhanced Secunia Personal Software Inspector (PSI) Integration - The integration with the Secunia PSI has evolved from the previous implementation. It now allows for enhanced management of the connected Secunia PSI installations. This includes:
      • Control of scan frequency
      • Control of check-in frequency
      • If auto-updates should be enabled or not
      • Approval of missing updates for connected Secunia PSI users
    • Secunia Community - The Secunia Community is now directly available from within the Secunia CSI 5.0 user interface. This allows for fast access to other users of the Secunia CSI 5.0, which enables experiences, problems, ideas, files / packages, and useful advice, etc. to be shared.

      The Secunia Community can be accessed through the conveniently located “Community” button located on the top right-hand side of the Secunia CSI 5.0 interface.
    • Secunia CSI API – Local Database Access - Secunia appreciates openness, which is why we have introduced the Secunia CSI API. The API’s “Local Database Console” provides access to, and interaction with, Secunia’s underlying database containing all scan results, scan history, sites, and configuration settings as presented and used in the Secunia CSI 5.0 user interface.

      The underlying database is a standard SQLite database, which makes it very easy to write your own custom SQL queries. The Secunia CSI 5.0 synchronises the database with the client.

      This allows quick and simple access to the vast amounts of information collected in the Secunia CSI 5.0 database. Furthermore, it provides the ability to copy and export the contents of the local database to 3rd party programs for further processing.

      The “Local Database Console” is built in a way that makes it very easy for users to share their “database queries” through the Secunia Community Forum for example which, in turn, helps other users retrieve custom data from the Secunia CSI 5.0 database.

      The local database is located on the file system and can be accessed using any 3rd party tool capable of interacting with a SQLite database.
    • Secunia Package System (SPS) – Enhanced WSUS integration
      • Fully Customisable Packages
        The Secunia Package System (SPS) enables the creation of packages that are fully customisable, meaning that it is possible to control every aspect of the package (update) that is deployed and executed on the client. Such flexibility enables you to control the execution flow, add multiple files to the same update package, perform configuration changes, and so forth, all through a simple wizard using standard techniques.

        The extended control of your packages is of course optional. You can still create “normal” update packages in a matter of seconds by using the predefined SPS packages as provided by the Secunia CSI 5.0 for a wide variety of products.

        All available packages can be created, edited, and altered to your fit your requirements in a few simple steps.
      • Full 32-bit and 64-bit support
        Packages for both 32-bit and 64-bit systems can easily be created and defined during the package creation wizard, thus enabling simplified deployment of patches to 32-bit and 64-bit systems.
      • Language Specific Updates
        As with the 32-bit and 64-bit support, it is now very convenient to define which languages a package should be installed for. For example, now you can easily patch various language versions of Adobe Reader.
      • Program Uninstall
        Due to the flexibility of the new Secunia Package System (SPS), it is now also possible to create “uninstall packages” for installed software that support silent uninstallation or where a custom uninstaller may be used. This effectively enables customers to remotely uninstall unwanted programs across their client base.
      • Import and Export Packages
        Packages can be imported and exported, which allows for sharing between colleagues and other Secunia CSI 5.0 users on the Secunia Community Forums, for example. Packages are saved in XML format, making it easy to open an exported package in your favourite editor for further customisation and adjustment.
      • Edit Published Packages
        Packages can be edited even after they have been “published” to a WSUS server. Once edited, they can either be re-published to WSUS or exported to a file for sharing or for future reuse.
    • Minor Items - Besides the major items described, many minor improvements are also available within the Secunia CSI 5.0 interface.
      • Zombie Files Concept
        The Secunia CSI 5.0 now supports Zombie File detection. This allows the Secunia CSI back-end to automatically filter out scan results which are likely “left-over” files from a previous installation that do not pose any immediate threat to your clients. The control panel for enabling detection of Zombie Files is located on the Settings page.
      • Additional Portlets on the Dashboard
        Additional portlets have been implemented in the Secunia CSI 5.0 Dashboard based on customer feedback.
      • Rule-Based Database Clean-up
        Hosts may be deleted from your database using rules. This allows for easier database maintenance, when, for example, hosts have been decommissioned or for some other reason are no longer are part of the network.
      • Generic Page Specific Help
        On every page there is page specific help available. This help information can be accessed through the Help icon on the top menu bar within the Secunia CSI 5.0.
      • Automated Solution Setup Help
        The automated solution setup help is represented by a red / green icon on the top menu bar that will help to ensure that basic functionality is configured correctly in the Secunia CSI 5.0.
      • Warning When Creating Patches Based on Old Scan Results
        The Secunia CSI 5.0 will show a warning message if packages are created based on old scan results, thus recommending a rescan before a package is created. This is carried out in order to avoid packages being created based on old and potentially out-of-date scan results.
      • Ability to Group Results on WSUS Page
        As a default setting, the results on the entry page for creating SPS packages for WSUS is now grouped by Vendor, thereby making it easier to prioritise and manage missing updates.
      • Limit Black/White List Rules to a Specific Site
        Black and White list rules can be limited to apply to a specific site, enabling more advanced result filtering.
      • Deregister CSI / Permanently Logout
        It is now possible to “deregister” your Secunia CSI 5.0 installation. This will remove local login credentials and settings from the host. This is useful for customers with multiple accounts or if the Secunia CSI 5.0 has been used temporarily on a host.
      • Automatic Password Recovery
        By registering and confirming your e-mail address and mobile number, it will be possible to change your password without contacting the Secunia Customer Support Center (CSC) in advance.
      • Improved Access to View Missing KB Numbers for Microsoft Programs
        The access to view exactly what KB numbers are missing has been improved and the program specific view now offers a full list of missing security-related KB numbers for the specific program.
      • Feedback on Software Suggestions
        It is possible to add your e-mail address when you make Software Suggestions to Secunia, meaning that we can notify you once your suggestions have been added to the Secunia database, or allow the Secunia team to request more information if the initially submitted data proves insufficient.
      • Use of Client Local Time in Interface
        Throughout the interface local client time is used, meaning that all dates, timestamps, etc. will be presented in local time based on the local system clock.
      • Ability to Export Result Data to Clipboard or File in CSV Format
        Many views under “Results” offer the ability to export the results of the grids into CSV format to either your clipboard or to a local file. This can be used to export and further process your scan results.
      • App-V Scanning
        Using the Secunia CSI 5.0 and the Microsoft Application Virtualization (App-V) SFT View, it is possible to make automated assessments of already created and deployed App-V packages and have the results shown in your Secunia CSI 5.0 interface.

    Version 4.1.0.2007 - Secunia CSI 4.1 (Minor update, 24th May 2011)

    • Resolved issue with local database synchronisation
    • Added time to the WSUS deadline option

    Version 4.1.0.2004 - Secunia CSI 4.1 (Minor update, 5th April 2011)

    • Fixed incompatibility issue with Internet Explorer 9
    • Fixed minor display issue with Quick Scan

    Version 4.1.0.2001 - Secunia CSI 4.1 (Recommended update, 10th February 2011)

    • Improved WSUS connection wizard
    • Updated the Secunia CSI menu system
    • Performance improvements
    • Updated manuals

    Version 4.1.0.0 - Secunia CSI 4.1 (Recommended update, 1st September 2010)

    • Secunia CSI and Secunia PSI Integration
      The Secunia CSI now integrates with the Secunia PSI. The integration enables you to create a custom Secunia PSI installer that will automatically configure the Secunia PSI installation to post data to your Secunia CSI account.

      It allows you to monitor and track the security and patch level of computers that are not directly under your control and where the local user has administrative privileges.
    • Scheduled Report Generation
      All reports can now be scheduled for generation at an interval configured by you and sent via email to addresses of your choice. This can be used for setting up reports that are automatically generated and emailed to you, management, auditors, etc. based on your preferences and company requirements / policies.
    • Additional Report: Executive Summary
      A new "Executive Summary" report has been implemented, which quickly gives you a complete summary on the security state of the hosts that are scanned with your Secunia CSI, furthermore, it provides intelligence on historic data, for example on how many vulnerabilities or patch events the programs deployed on your network have suffered over the duration of the last three years.
    • Deployment of the CSI Agent Scan Engine using the WSUS / SCCM integration
      Get full value of your solution in a few clicks. You are no longer limited to deploy security patches using the Secunia CSI's integration with WSUS and SCCM, you can also use it to deploy your "CSI Agents" to computers in your network.
    • Improved Dashboard
      Many new and improved views have been added to the internal dashboard in your Secunia CSI. Most of the views focus on the current state of your programs, hosts, and sites across your network compared to data from e.g. 1 or more weeks ago, thus enabling you to quickly and easily assess if patching on your network is on a positive or negative trend.
    • Static URL for the Dashboard
      Each Dashboard Profile that you configure comes with a URL which allows you to "export" the Dashboard Profile to your browser of choice, thus enabling you to view it on the IT departments info screens or the company "war room".
    • Black/White Listing Paths in Scan Engine
      Using the new Black and White Listing rules, it is now possible to impact how and where the CSI Scan Engine will search for files on the local hard drives of the computer being scanned.
    • Ability to Configure Microsoft Update scan server
      Ability to configure on a global-level how scans of your Microsoft products should be conducted. You can choose between either your "Locally Managed Server (WSUS/SCCM)" or the "Official Microsoft Update Online Site" depending on your scan and result requirements.
    • Fixed various minor bugs

    Version 4.0.0.1 - Secunia CSI 4.0 (Recommended update, 5th May 2010)

    • User Management
      Added ability to create and login with Shadow Accounts.

      "Groups" renamed to "Sites"
      The terminology "Groups" has been replaced with "Sites" as this better suits the recommended usage of the Secunia CSI. It is recommended that you choose site names that are descriptive for you and your organisation, thus making it easy to verify the security state of hosts within each site you manage.

      Added in-line trend reporting for sites, available through "Results" -> "Sites"
    • Speed and Performance
      Usage and start-up speed of the Secunia CSI has been improved.
    • Replaced Flash charts
      The Secunia CSI no longer require Adobe Flash player to display graphs and charts.
    • Support for multiple Microsoft WSUS downstream servers
      The patches created with the Secunia CSI can now be distributed to downstream Microsoft WSUS servers, after installing the appropriate certificates on the downstream Microsft WSUS servers.

      Allow editing of the name of update packages for Microsoft WSUS/SCCM

      Allow editing of the silent install parameters used in update packages for Microsoft WSUS/SCCM
    • Fixed various minor bugs

    Version 4.0.0.0 - Secunia CSI 4.0 (Major update / Final release, 22nd March 2010)

    • User Management
      Implemented user management module which allows for setting up sub-accounts beneath an administrative Secunia CSI account, as well as providing access to scan results of those sub-accounts.
    • Added in-line program trend reporting, available through "Results" -> "Programs"
    • Fixed sorting in the "Available" and "Deployment" pages
    • Fixed various minor bugs

    Version 3.9.0.7 - Secunia CSI 4.0 Public Beta (Minor update / Beta release, 10th March 2010)

    • Improved logic for automatically patching Adobe Reader
      The Secunia CSI now handles Adobe's incremental patches (version 9.3.1), as well as the normal major branch patches (version 9.3.0).
    • Improved logic for automatically patching Adobe Flash Player
      The update packages created by the Secunia CSI for Adobe Flash Player will automatically detect new file names if created by the Adobe Flash Player installer.
    • Implemented "Support" menu
    • Corrected sorting on the "Available" and "Deployment" pages
    • Updated names for certain data, to correspond to the column/state names used in Microsoft WSUS
    • Fixed performance issue with certain pages, when large amounts of data (hosts) was loaded from Microsoft WSUS
    • Fixed various minor bugs

    Version 3.9.0.4 - Secunia CSI 4.0 Public Beta (Minor update / Beta release, 1st March 2010)

    • Added in-line host trend reporting, available through "Results" -> "Host Overview"
    • Added report generation wizard, available through "Reports" -> "Generate Reports"
    • General cosmetic changes to highlight available functionality on all pages
    • Fixed various minor bugs

    Version 3.9.0.3 - Secunia CSI 4.0 Public Beta (Minor update / Beta release, 15th February 2010)

    • Improved descriptions and documentation
    • Improved configuration of WSUS. Added wizard and automatic creation of a GPO, which configures everything automatically for all clients.
    • Functionality for handling Scan Grous configured to use Network-Appliance agents.
    • Added ability to double-click a column-divider to auto-expand its width.
    • Added password reset functionality.
    • Added ability to quickly create Ignore Rules, available through the product right-click menu.
    • Added PDF report - Product Report, available through the product right-click menu.
    • Added PDF report - Host Remediation Report, available through the host right-click menu.
    • Added PDF report - Administrative Report, available through the host right-click menu.
    • Fixed various minor bugs

    Version 3.9.0.2 - Secunia CSI 4.0 Public Beta, Invite Only (Minor update / Beta release, 3rd February 2010)

    • Improved error handling when creating update packages
    • Functionality for handling Network-Appliance agents
    • Improved help messages for initial WSUS connection and configuration
    • Added ability to configure Change Summary settings
    • Added ability to set a Deadline for the installation of a package via Microsoft WSUS
    • Added more details about Secunia Advisories, Criticality Ratings, and Download Links for End-of-Life and Insecure programs
    • Added one new Dashboard element for End-of-Life programs
    • Fixed various minor bugs

    Version 3.9.0.1 - Secunia CSI 4.0 Public Beta, Invite Only (Major update / Beta release, 18th January 2010)

    • Integrated with Microsoft WSUS for 3rd Party Patch Deployment
      The Secunia CSI 4.0 BETA features direct integration with Microsoft WSUS for deploying 3rd party security patches, as detected by the Secunia CSI scan engine.
      The integration allows for fast and very easy creation of 3rd party update packages, that will be silently installed for the hosts you choose.
    • New User Interface and Design
      A brand new user interface has been implemented to further improve usability and functionality of the Secunia CSI.
    • Numerous Improvements and Enhancements Based on Customer Feedback

    Version 3.0.0.1 - Secunia CSI 3.0 (Minor update, 4th November 2009)

      This is a minor update, if you are upgrading from the Secunia CSI 2.x then you don't need this update.

    • Ensure that data from versions, prior to the Secunia CSI 2.x, are correctly imported into the Secunia CSI 3.0

    Version 3.0.0.0 - Secunia CSI 3.0 (Major update, 29th October 2009)

      This is a major update, all customer are recommended to install / upgrade to this version.

    • User Interface: Improved speed/responsiveness
      • The user interface has been completely rewritten, to improve the responsiveness of accessing the various functions and features of the Secunia CSI. This means that changing the view from e.g. the Dashboard to Groups Overview will be instantaneous. Furthermore, this also means that searching, sorting, viewing details, etc. will be extremely fast and overall improves the usability of the Secunia CSI significantly.
    • User Interface: Prepared for enterprise-level data amounts
      • The user interface rewrite also enables handling of "Enterprise-Level Data Amounts", basically meaning that the Secunia CSI will be able to handle/display data from thousands of hosts WITHOUT any noticeable performance impact when using the various functions and features within the Secunia CSI. The result is that the responsiveness of the Secunia CSI is the same with data from 1 or 10,000 hosts!
    • New option for the Secunia CSI-Agent: Network Appliance Mode
      • The Network Appliance mode, enables you to setup any Secunia CSI-Agent as a remote-controlled dedicated scan engine capable of automatically scanning complete networks at scheduled intervals.

      The result is that the Secunia CSI scales for large networks and enables you to manage multiple networks that are not immediately connected. Everything managed from your locally installed Secunia CSI GUI on your desktop PC.

    • Update of the Intelligent / Manual grouping concept
      • This release merges the two previous grouping mechanisms into one single grouping functionality, which is embedded into the actual design of the Secunia CSI, thus making the grouping functionality much simpler and easier use.
    • Updated scan engine
      • Increased speed of "Type 2" scans, which means better results in less time.
    • No longer possible to access scan results through browser (https://ca.secunia.com/)
      As part of the update to the User Interface it will no longer be possible to login through a browser, to view the scan results online. The Secunia CSI 3.0 must be used to view the scan result.
    • Various minor interface and usability improvements

    Version 2.9.0.14 - Secunia CSI 3.0 Public Beta (Major update / Beta release, 1st October 2009)

      This is a BETA release of the Secunia CSI 3.0. Secunia invites you to join the Public Beta test of this new version, the Public Beta test period lasts from the 1st October 2009 until 29th October 2009.

    • User Interface: Improved speed/responsiveness
      • The user interface has been completely rewritten, to improve the responsiveness of accessing the various functions and features of the Secunia CSI. This means that changing the view from e.g. the Dashboard to Groups Overview will be instantaneous. Furthermore, this also means that searching, sorting, viewing details, etc. will be extremely fast and overall improves the usability of the Secunia CSI significantly.
    • User Interface: Prepared for enterprise-level data amounts
      • The user interface rewrite also enables handling of "Enterprise-Level Data Amounts", basically meaning that the Secunia CSI will be able to handle/display data from thousands of hosts WITHOUT any noticeable performance impact when using the various functions and features within the Secunia CSI. The result is that the responsiveness of the Secunia CSI is the same with data from 1 or 10,000 hosts!
    • New option for the Secunia CSI-Agent: Network Appliance Mode
      • The Network Appliance mode, enables you to setup any Secunia CSI-Agent as a remote-controlled dedicated scan engine capable of automatically scanning complete networks at scheduled intervals.

      The result is that the Secunia CSI scales for large networks and enables you to manage multiple networks that are not immediately connected. Everything managed from your locally installed Secunia CSI GUI on your desktop PC.

    • Update of the Intelligent / Manual grouping concept
      • This release merges the two previous grouping mechanisms into one single grouping functionality, which is embedded into the actual design of the Secunia CSI, thus making the grouping functionality much simpler and easier use.
    • Updated scan engine
      • Increased speed of "Type 2" scans, which means better results in less time.
    • Various minor interface and usability improvements

    Version 2.0.2.2 (Minor update, 20th May 2009)

    • Fixed issue which caused CSI to not always detect all remote network shares.

     

    Version 2.0.2.1 (Minor update, 29th April 2009)
    • Improved networking functionality.

     

    Version 2.0.2.0 (16th February 2009)
    • The "Secunia Network Software Inspector (NSI)" has been renamed to the "Secunia Corporate Software Inspector (CSI)".

    Version 2.0.1.2 (Minor update, 12th November 2008)

    • Improved thread handling.

    Version 2.0.1.1 (Minor update, 8th October 2008)

    • Minor bug fixes for integration with Active Directory (AD).

    Version 2.0.1.0 (Feature update, 30th September 2008)

    • Integration with Active Directory (AD). Capable of enumerating AD for a better overview and easier scanning.

    Version 2.0.0.3 (Minor update, 16th June 2008)

    • Minor bug fixes.

    Version 2.0.0.2 (Minor update, 19th May 2008)

    • Enhanced proxy support.

    Version 2.0.0.1 (Minor bug fix, 6th May 2008)

    • Minor bug fix for systems running Microsoft Windows 2000

    Version 2.0.0.0 (Final NSI 2.0 release, 2nd May 2008)

    • Improved with several suggestions from Beta testers
    • Minor bug fixes

    Version 1.9.1.3 BETA (Minor bug release, 15th April 2008)

    Version 1.9.1.1 BETA (1st BETA of NSI 2.0, 11th April 2008)

    • Initial release

GSA logo

Secunia is GSA approved

Secunia CSI is GSA approved for purchase by federal and government administration agencies within the United States General Services Administration (GSA).

Find details under: GSA Pricing - GSA Contract # GS-35F-0858N

About GSA

GSA's acquisition solutions offer private sector professional services, equipment, supplies, telecommunications, and information technology to government organizations and the military.

GSA policies promote management best practices and efficient government operations.

Looking for Secunia CSI 4.1?
Download here




 Products Solutions Customers Partner Resources Company
 
 Corporate
Vulnerability Intelligence Manager (VIM)
Corporate Software Inspector (CSI)
Consumer
Personal Software Inspector (PSI)
Online Software Inspector (OSI)
 Industry
Compliance
Technology
Integration
 Customers
Testimonials
 VARS
MSSP
Technology Partners
References
 Factsheets
Reports & Papers
Webinars
Events
 About us
Careers
Memberships
Newsroom
 
© 2002-2012 Secunia ApS - Rued Langgaards Vej 8, 4th floor, DK-2300 Copenhagen, Denmark - +45 7020 5144
Terms & Conditions and Copyright - Privacy - Report Vulnerability