Search:

Contact Sales:  US: +1.888.266.6361  International: +1.703.581.6361

You are here : Comodo HackerGuardian > HackerGuardian Support

Scan Manager

To start a scan click Scan Manager in the options menu. The following screen appears.

The 'Scan Manager' section shows the list of user stored devices. The the following information could be visible:

Section Specific Controls - 'Scan Manager'
Menu Element Element Type Description
Name Text field Displays the device name (a friendly name which was given by administrator when creating the device).
Content Text field Displays all the associated domains (e.g. www.domain.com) or IP addresses that administrator specified for the device. Tip: Point the mouse over the name to view all the associated domains or IP addresses.
NOTE: If you specified only IP address (without domain name), it is displayed in the field. If you entered domain name as well - it is shown instead of IP.
PCI Compliance Text field Displays the result of last PCI compliance scan for the device, it can be: Compliant, Not Compliant.
PCI Scan Enabled Check-box Enables administrator to disable the PCI scan temporarily. (This option is available if the administrator has a PCI scan compliancy license).
HackerProof Enabled Check-box Enables administrator to disable the HackerProof Scan temporarily. (This option is available if the administrator has a daily scan (HackerProof) license).
SiteInspector Enabled Check-box Enables administrator to disable the SiteInspector Scan temporarily. (This option is available if the administrator has a daily scan (HackerProof) license).
HackerProof Status Text field Shows the  validation status of the domain. After first applying  this will say 'Awaiting Validation'. Once we have validated the domain, it will change to 'OK'.
Edit Control Enables administrator to edit the device details.
Delete Control Enables administrator to delete the device.
Add Device Control Enables administrator to create a device. ('Add Device' dialog appears).
Start SiteInspector Scan Control Enables administrator to start SiteInspector scan on the selected devices.
Start PCI Scan Control Enables administrator to start PCI compliance scan on the selected devices.
Start Custom Scan Control Enables administrator to start vulnerability scan (an on-demand scan with their plug-in configuration) on the selected devices.
Logout Control Enables administrator to logout from Hackerguardian interface.

To start any of available scans, administrator need to add a device for scanning.

Devices

In order to run a PCI (or/and HackerProof/SiteInspector) scan, you must first create a Device

A HackerGuardian 'Device' is an umbrella term that describes a grouping of IP addresses and/or domains that are to be used as the target for a PCI, HackerProof or SiteInspector scan. HackerGuardian ‘Devices’ can be used to ‘mirror’ a real life device. For example, a single machine in your organization’s infrastructure may have multiple IP addresses (and domains) which host different services. The PCI DSS guidelines state that all these IP addresses and services must be scanned. By associating multiple IP addresses and domains to a single HackerGuardian 'Device', you can simulate your real-life device and scan it for PCI compliance in one pass. All customers must create a 'device' before PCI, HackerProof or SiteInspector scanning can commence.

  • PCI Customers. When creating a device, HackerGuardian requires that you specify all the IP addresses belonging to your target server, host or other device.
  • HackerProof ( or/and SiteInspector) Customers. When creating a HackerGuardian device you need to specify the domain name of the website which you would like to display the HackerProof logo on.

Once a PCI device has been created, it will become available for selection in the 'Scan Manager' area.

Next - Important Notes | How to create a new device.

Important Notes

We recommend that you create separate devices for each type of scan. I.e. separate devices for HackerProof and PCI scans. You can use the same domains/IP addresses across multiple devices.

If you create PCI only devices (only PCI compliance scans will be run for these device):

  • You must have at least one Hackerproof (daily) scan license.
  • You can scan one domain per daily (HackerProof) license.
  • At least one domain that you wish to be daily scanned must be added to a HackerProof only device (but the actual scan will take place on the IP address that this domain resolves to).
  • A device only associated with an IP cannot be daily scanned and gain HackerProof status.
  • Domain ownership must be validated by Comodo before scanning is allowed to commence.

If you create PCI + HackerProof Devices (both daily and PCI compliance scans will be run for these devices):

  • You must have at least one PCI scan compliancy license and HackerProof (daily) scan license.
  • At least one domain that you wish to be daily and PCI scanned must be added to a PCI + HackerProof device (but the actual scans will take place on the IP address that this domain resolves to).
    The IP address that the domain resolves to will be scanned daily and, if pass, they receive the Hackerproof trustmark for the domain.
  • You can optionally add more IP addresses to this device.
    The additional IP address(es) that were added by user can be scanned for PCI compliance. To gain PCI compliance for this device, all IP addresses must pass the PCI compliance scan.
  • A device only associated with an IP cannot be daily scanned and gain HackerProof status.
  • Domain ownership must be validated by Comodo before scanning is allowed to commence.

How to Create a New Device

  1. Switch to 'Scan Manager' area of the interface.
  2. Click on 'Add Device' button (as shown below).

  3. Fill out the form that appears:

    Add/Edit Device Form Parameters
    Form Element Element Type Description
    Device Name Text field Administrators can chose and enter a friendly name for the device.
    PCI Scan Enabled Check-box Checking this box means the PCI Scan will be available for the device.
    HackerProof Enabled Check-box Checking this box means the HackerProof Scan will be available for the device.
    SiteInspector Enabled Check-box Checking this box means the SiteInspector Scan will be available for the device.
    Add Domain Text field Enter the domain you wish to add for scanning and click 'Add' button next to it.
    Total domains: Text Shows the total number of available for adding domains (this depends on your license type).
    Free domains: Text Shows the total number of domains you can add (this depends on your license type).
    Status Control Shows the status of domain validation (option available only after adding a domain).
    Move Control Enables administrator to move the domain to other device (option available only after adding a domain).
    Remove Domain Control Enables administrator to remove the domain (option available only after adding a domain).
    NOTE: If an administrator removed domain and wish to add it again revalidation of the domain is required.
    Add IPs Text field Enter the IP addresses you wish to associate with the device and click 'Add' button next to it.
    Total IPs: Text Shows the total number of available for adding IP addresses (this depends on your license type).
    Free IPs: Text Shows the total number of IP addresses you can add (this depends on your license type).
    Save Control Allows the administrator to save and add the device to the 'Scan Manager' section.
    Cancel Control Allows the administrator to cancel adding of device.
    • Enter a friendly name for the device.
    • Check the box next to 'PCI Scan Enabled'.

    • Add Domain - enter domain name and click 'Add' button next to it.
      This field is optional for PCI scan - you can add only IP address for PCI compliance scan.

      Once the administrator added a domain, the managing options become available.

      To view status of domain validation click on 'Status' link next to domain name in the 'Add/Edit Devise' dialog. The status of the validation process is shown in pop-up window. (see screenshot below)

    • Add IPs - enter IP and click 'Add' button next to it. This field is necessary to be filled.
      You can add as many IP addresses as allowed by your PCI license. (Validation is not required!)

      Note: You must enter external IP addresses in these fields. HackerGuardian will not scan private IP addresses that refer to machines internal to your network. 

      Private IPs ranges are defined by RFC 1918 as:

      10.0.0.0 - 10.255.255.255  (10/8 prefix)
      172.16.0.0 - 172.31.255.255  (172.16/12 prefix)
      192.168.0.0 - 192.168.255.255 (192/168/16 prefix)

  4. After you have filled out all the applicable fields, click Save.

Devices Management

The 'Scan Manager' section of Hackerguardian interface provides administrator with possibility to perform full complex of device management. From here administrator can edit device's details, delete a device, move domain to another device or remove a domain from a device.

Moving Domain to Another Device

  • Switch to 'Scan Manager' section of Hackerguardian interface;
  • Click on 'Edit' button alongside the needed device in 'Controls' area;

  • Click 'Move' link next to the needed domain name:

  • Tick off the destination device in the pop-up dialog:

    Click 'Move' to continue, otherwise press 'Cancel' button.
  • Click 'Save' to finalize moving of the domain.

Removing Domain from a Device

  • Switch to 'Scan Manager' section of Hackerguardian interface;
  • Click on 'Edit' button alongside the needed device in 'Controls' area;

  • Click 'Remove Domain' button next to the needed domain name:

  • Confirm your wish to remove the domain in the pop-up dialog:

    Click 'OK' to continue, otherwise press 'Cancel' button.
  • Click 'Save' to finalize removing of the domain.

Start Scanning

Once the device is added, you can scan the target device. Note: The IP addresses that HackerGuardian scans originate from are 208.116.56.32/28 and 91.209.196.32/28. You may have to modify your firewall to allow scans from this range.

- PCI Compliance scan/On-demand vulnerability scan: make sure the box 'PCI Compliance Enabled' is checked.

Next click Start PCI Scan to begin PCI compliance scanning. To run an on-demand vulnerability scan, click the 'Start Custom Scan' button.

NOTE: If you didn't enable any scan, the following notification will appear:

If you have several devices and wish to run PCI compliance or on-demand scan only for one of them, the only action you should do is to uncheck the boxes 'PCI Compliance Enabled' for exception of not required devices.

There are not restrictions on the number of IP Addresses that may be selected when starting scans. Scans are queued if the number started is greater than the concurrent limit for the administrator.
The scans are taken off the queue when space exists to run them, so their concurrent limit is never exceeded. For example, if they are allowed to run 10 scans and start 50 then 40 are queued.

Scan Manager confirms the start of scanning and notifies the administrator after scan is completed.

Click 'Go to Report List' button to monitor scanning process.

You can stop the scan at any moment you wish. In order to do it just click on 'Stop Scanning' button of the left-side menu. (as shown above)

Confirm the action by clicking 'APPROVE' in the dialog that appears:

Click 'Cancel' to continue the scan.

The result of the scan you can view in 'View Reports' section.