Scuba by Imperva: A Free Database Vulnerability Scanner
Scuba is a free tool that scans leading enterprise databases for security vulnerabilities and configuration flaws, including patch levels. Reports deliver actionable information to quickly reduce risk, and regular vulnerability updates ensure that Scuba keeps pace with new threats.
Scuba offers nearly 1,200 tests that can be run without experiencing downtime or performance degradation because Scuba does not exploit the vulnerabilities it finds. From configuration flaws such as weak passwords, to known security risks and missing critical patches, Scuba delivers a snapshot analysis of the security posture of your databases and database infrastructure.Use Scuba to:
- Automate vulnerability discovery
- Secure infrastructure and measure compliance
- Prioritize risk and focus remediation resources
- Safely test enterprise class databases
While Scuba helps reduce the risks associated with database vulnerabilities, developing a comprehensive database security solution requires additional capabilities. Following a phased approach, such as the one we lay out in our Scuba Next Steps datasheet will simply moving in this direction.