Retina Network Security Scanner

Integrated Network, Database and Virtual Vulnerability Assessment

With over 10,000 deployments since 1998, BeyondTrust Retina Network Security Scanner is the most sophisticated vulnerability assessment solution on the market. Available as a standalone application, a host-based option, or as part of the Retina CS enterprise vulnerability management solution, Retina Network Security Scanner enables you to efficiently identify IT exposures and prioritize remediation enterprise-wide.

  • Identify IT assets and sensitive data across disparate environments
  • Find security exposures in network, web, database, virtual, container and IoT assets
  • Prioritize remediation based on real risk to critical assets
  • Easily deploy and scale from small to large environments
  • Realize optimal performance via non-intrusive scanning

“The Retina vulnerability management solution identified vulnerable computers, servers, printers, video encoders, and access control systems while providing informative reports that made remediation possible. Retina significantly improves network security, facilitates security compliance, and continues to be an important tool in the enterprise.” — Network Management Director California Dept of Transportation

Key Capabilities

  • Discover all network (local and remote), web, virtual, container and IoT assets in your environment.
  • Scan network assets, containers, and web applications, providing a complete picture of vulnerabilities in a single console.
  • Reveal at-risk personally identifiable information and other sensitive data.
  • Identify system, application, container, database, OS and web application vulnerabilities via agent-based and/or agentless scanning.
  • Assess risk and prioritize remediation based on exploitability (from Core Impact®, Metasploit®,Exploit-db, CANVAS), CVSS v3, CWE.
  • Confirm exploitability through penetration testing, with one click to the open-source Metasploit Framework.
  • Audit personally Identifiable Information (PII) on remote targets.
  • Report progress and results to colleagues in management, compliance, audit, risk and other roles.
  • Use a simple configuration utility to make managing licensing, central policy, event management and auto-updates a snap.
  • Analyze threats and gain deeper security intelligence by upgrading to Retina CS Enterprise Vulnerability Management.
  • Share data with popular solutions for SIEM, GRC and other security management platforms.

Comprehensive Vulnerability Assessment Across Threat Vectors

Network Systems 

  • Assess network devices, Docker containers, operating systems, applications, ports and services against a vast, constantly updated vulnerability database
  • Identify vulnerable IoT devices, and safely check them for default and hard-coded credentials used with Telnet, SSH, or Basic HTTP Authentication
  • Accurately identify vulnerabilities, with a false positive rate below 1%
  • Perform Class C network scans in under 15 minutes (on average)
  • Leverage ICMP, registry, NetBIOS, and the Nmap signature database, as well as proprietary OS fingerprinting capabilities
  • Audit Windows devices using local or domain credentials
  • Perform local assessments of Cisco®, Linux, Unix® and other devices via SSH tunneling
  • Adjust scans for custom machine configurations, ports and applications via automated input/output data reconciliation on each port
  • Support SCAP-compliant, continuous vulnerability and configuration monitoring per DIACAP, FISMA, STIG, FDCC and USGCB guidelines
  • Get PCI DSS 3.0 scanning and reporting capabilities out-of-the-box
  • Achieve complete vulnerability and configuration scanning across IPv4 and IPv6
  • Simplify ad-hoc scanning with single-use target types entered as an IP address, IP ranges, CIDR, named host or a combination of any of those types

Web Applications

  • Conduct automated vulnerability assessment and web crawling with no scripting required
  • Detect OWASP Top Ten vulnerabilities including SQL Injection, Cross-Site Scripting, Cross-Site Request Forgery, OS Command Injection and more
  • Fully integrated into the Retina assessment engine
  • Retina provides the user interface for launching web scans and displaying a Web Assessment Report that contains findings from those scans


  • Scan Oracle®, Microsoft SQL Server® and MySQL databases for security exposures

Virtual Environments

  • Conduct VMware vCenter® scans with detailed risk intelligence for ESXi and virtual machines
  • Scan online & offline virtual images, plus virtualized application templates
    (ThinApp® packages)
  • Schedule scans to automatically update the vCenter console with centralized compliance and risk information
  • Stay updated on new vulnerabilities that could impact the hypervisor and virtual machines

Since 1998, Retina vulnerability management solutions have provided customers with threat and risk information in real business context. Over 10,000 customers worldwide employ Retina to efficiently mitigate existing exposures and effectively secure against future threats.

Read the complete Data Sheet!

Download Now