The modules of analysis of various operating systems and applications that are customized according to the Company requirements perform automated evaluation of compliance with technical security standards and guidelines of the vendors and industry best practice. A compliance reports can be generated both for the IS Management System of the entire Company and for a certain department, host, or application.

Integration of the results obtained by various modules allows checking for compliance to the policies of different complexity. For example, the policy of web-application security can require that there were no SQL Injection vulnerabilities and apply requirements to the settings of the operating system, database, Apache web-server, Cisco PIX firewall, and other components installed on certain hosts. The MaxPatrol system can check all these parameters in a single scanning session by analyzing the results obtained by the modules of web-application and database security analysis and system checks. The MaxPatrol system includes a number of prepared policies that are based on the guidelines of vendors of programs and active network equipment and the recommendations of competent organizations like NSA, NIST, CIS, and DoD.

The system architecture allows you to adapt the testing process to certain requirements by adding tests for new applications and implementing policies based on the needs of the Company. Owing to this, you can obtain the actual information about the nodes that break the security policies at any time and eliminate the contradictions efficiently.

The comprehensive approach to vulnerability detection allows MaxPatrol to evaluate the compliance with complicated security standards in a single scanning session. Thus, the scanning mechanisms implemented in MaxPatrol completely meet the Payment Card Industry Data Security Standard (PCI DSS) Technical and Operational Requirements for Approved Scanning Vendors like: