What it does

The Secunia Personal Software Inspector (PSI) is a free security scanner which identifies programs that are insecure and need updates. It automates the updating of the majority of these programs, making it a lot easier to maintain a secure PC.

It automatically detects insecure programs, downloads the required patches, and installs them accordingly without further user interaction.

The Secunia PSI also detects and notifies you of programs that cannot be automatically updated with patches and provides you with detailed instructions for updating the program when available. In most cases, you simply need to click the appropriate icon in the Results window and follow the on-screen instructions to install the latest patches.

Secunia SC2012
 

How it works

Secunia PSI

The Secunia PSI is an invaluable tool for you to use when assessing the security patch state of software installed on your system. It constantly monitors your system for insecure software installations, notifies you when an insecure application is installed, and even provides you with detailed instructions for updating the application when available.

 

The Secunia PSI works by examining files on your computer (primarily .exe, .dll, and .ocx files). These files contain non-specific meta information provided by the software vendor. This data is the same for all users and originates from the installed programs on your computer — never from their configuration.

After examining all the files on your local hard drive(s), the collected data is sent to Secunia's servers, which match the data against the Secunia File Signatures engine to determine the exact applications installed on your system.
This information can then be used to provide you with a detailed report of the missing security related updates for your system. Please refer to the Privacy Statement for more details about how information from your computer is used by Secunia.

What it does not do

It is not the purpose of the Secunia PSI to detect whether your system has already been compromised or if local changes, settings, or missing requirements could cause the Secunia PSI to report incorrect results. The Secunia PSI relies on the meta-data of executable and library files. The Secunia PSI does not conduct an integrity check of the individual files, rather, it checks whether a specific program is vulnerable according to the reported version numbers and not whether the files have been compromised or replaced by other users or programs.

The Secunia PSI is not a replacement for other security measures such as antivirus or personal firewalls - the Secunia PSI is a great supplement to these other security measures as it helps prevent the exploitation of often overlooked exposures.

 

Privacy Statement

Communication

All communication between your system (The Secunia PSI) and the Secunia servers is conducted via an encrypted connection (SSL), effectively protecting against eavesdropping of the data and the results being exchanged with Secunia.

Data

All data sent to Secunia is treated as confidential.

The Secunia PSI collects unique text strings and data about executable files and installed applications on your system, including hostname and langroup, and Microsoft KB numbers. This data is analyzed by the Secunia File Signature engine to determine the exact applications installed on your system. This can in turn be used to provide you with a detailed report about the specific missing security related updates on your system. No other data is collected from your system.

The data sent to Secunia is non-personal data only. The data is generic, standardized, and originates from installed programs on your computer.

All data sent to Secunia will be deleted automatically no later than 12 months after you terminate using the program or immediately after you cancel your registration.

Secunia will not share or sell specific data about individuals with any third parties. Only aggregate statistics which cannot be related directly to any individuals will be published and shared with third parties.