skyboxsecurity.com
© 2018 Skybox Security, Inc. All rights reserved.
0
Skybox Intelligence Feed Description and SLA
Skybox Security
Intelligence Feed
March 2018
© 2018 Skybox Security, Inc. All rights reserved.
Description and SLA
skyboxsecurity.com
© 2018 Skybox Security, Inc. All rights reserved.
1
Skybox Intelligence Feed Description and SLA
About the Skybox intelligence feed
The Skybox™ Security intelligence feed currently contains more than 70,000 vulnerabilities. The
intelligence feed is a result of information collected from leading public and private security data
sources, and is built as a superset of vulnerabilities. As a state-of-the-art vulnerability data service,
it is CVE-compliant and implements CVSS v3 standards.
How it Works
Skybox Security has assembled a dedicated team focused on threat intelligence and vulnerability research. The Skybox™ Research Lab continuously tracks multiple data sources to detect new
alerts as well as changes in already reported alerts (e.g., report on new exploits). The Lab uses a
vast set of automated tools to collect and consolidate information, as well as human analysis and detailed modeling to ensure accuracy. Such work also ensures the information required for the
analytical engines of Skybox products is complete.
Data Sources
The Skybox intelligence feed is a result of information correlated from dozens of leading public and private security feeds and hundreds of independent researchers. In addition, our analysis extends
into the dark web, allowing us to tag vulnerabilities with up-to-date exploitability information including the specific vulnerabilities being used in malware and exploit kits. The intelligence feed
fully supports vulnerabilities published by the advisories and scanners covered in this document.
We also include references to IPS signatures and other sources by cross-referencing with a CVE ID.
skyboxsecurity.com
© 2018 Skybox Security, Inc. All rights reserved.
2
Skybox Intelligence Feed Description and SLA
Data sources in use are:
*Scanners supported as cross-references with CVE ID
**Supplementary information only, no cross reference support
Merging from Multiple Sources
The Skybox intelligence feed contains a superset of vulnerabilities from all the supported sources. The intelligence feed is CVE compliant, and the CVE number is used to cross-reference between the
various sources. In addition, the intelligence feed contains vulnerabilities from various other data
sources, even if those sources do not have a CVE reference.
This approach allows an organization to consolidate information from multiple scanners or
management/patch systems to the Skybox platform, creating a single, normalized view of
vulnerabiilities. Once imported into Skybox, this view yields a comprehensive risk matrix analytics.
Vulnerability Information
The Skybox intelligence feed is a central repository for all relevant information about
vulnerabilities.
The following information is available for every vulnerability:
ADVISORIES SCANNERS THREAT
INTELLIGENCE IPS
OTHER
SOURCES
Adobe BeyondTrust
Retina* AlienVault OTX** Cisco Sourcefire
CERT,
ICS-CERT**
Apple McAfee
Foundstone Exploit-DB
Fortinet
FortiGuard
Flexera
Secunia**
Cisco PSIRT Qualys Cloud
Platform
IBM X-Force
Exchange** HP TippingPoint Mitre CVE
Microsoft Rapid7 Nexpose Symantec A-Z** McAfee IPS NIST's NVD
Oracle Tenable Nessus Palo Alto
Networks
Rapid7
Metasploit**
Red Hat Tripwire IP360 Symantec
SecurityFocus
Siemens
Zero-day
vulnerabilities
for published
incidents**
skyboxsecurity.com
© 2018 Skybox Security, Inc. All rights reserved.
3
Skybox Intelligence Feed Description and SLA
• A textual description of the vulnerability
• Vulnerability IDs from all available sources, including CVE (if it exists)
• Affected products and affected versions, including framework dependencies
• Published solutions, remediation and workaround information, including a reference to the
official solution in the advisory (patch ID or fixed version)
• Severity vectors (CVSS v3 compliant)
• Vulnerability effect and attack precondition
• Exploit difficulty and authentication requirements
• References to public sources, for additional information
• Exploitability level
skyboxsecurity.com
© 2018 Skybox Security, Inc. All rights reserved.
4
Skybox Intelligence Feed Description and SLA
Example SBV-51308:
INFORMATION EXAMPLE
VULNERABILITY
DESCRIPTION Oracle Java SE remote information disclosure vulnerability in JCE component
AFFECTED
PRODUCTS
Oracle JRE and JDK:
7 SE - 7 SE update 80
8 SE - 8 SE update 45
7 SE embedded - 7 SE embedded update 75
8 SE embedded - 8 SE embedded update 33
AFFECTED
PACKAGES
(FOR LINUX)
java-1.8.0-oracle-1.8.0.51-1jpp.2.el6_6.i686.rpm
java-1.8.0-oracle-devel-1.8.0.51-1jpp.2.el6_6.i686.rpm
java-1.8.0-oracle-javafx-1.8.0.51-1jpp.2.el6_6.i686.rpm
java-1.8.0-oracle-jdbc-1.8.0.51-1jpp.2.el6_6.i686.rpm
java-1.8.0-oracle-plugin-1.8.0.51-1jpp.2.el6_6.i686.rpm
java-1.8.0-oracle-src-1.8.0.51-1jpp.2.el6_6.i686.rpm
…
PUBLISHED
SOLUTIONS
Oracle has released a patch to address this issue in Oracle JRE. For more
information, please visit the advisory page:
http://www.oracle.com/technetwork/topics/security/cpujul2015-2367936.html
SEVERITY VECTORS
CVSS score: 5.0
AV:N/AC:L/Au:N/C:P/I:N/A:N
E:U/RL:OF/RC:C
EXTERNAL SOURCES
CVE-2015-2613
Oracle ID: cpujul2015-2367936
Foundstone IDs: 140865, 140870, 18671 …
Qualys IDs: 123729, 123730
Rapid7 IDs: jre-vuln-cve-2015-2613 …
nCircle IDs: 214431, 214456, 214741 …
Retina IDs: 47766, 47767, 47768, 47769 …
Nessus IDs: 84871, 84872, 85001, 85002…
EFFECT AND
PRECONDITION
Effect: Leakage
Precondition access: Remote
EXPLOIT DIFFICULTY AND
AUTHENTICATION
Authentication required: none
No exploit code was published
skyboxsecurity.com
© 2018 Skybox Security, Inc. All rights reserved.
5
Skybox Intelligence Feed Description and SLA
INFORMATION EXAMPLE
URLS
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2015-2613
http://www.oracle.com/technetwork/topics/security/cpujul2015-2367936.html
http://www.securityfocus.com/bid/75871
…
EXPLOITABILITY No Exploit
Exploits
Exploitability data regarding vulnerabilities and malware is an important aspect of vulnerability
prioritization. In addition to the exploitation information available from the CVSS temporal vector, exploited vulnerabilities in the intelligence feed also include exploitability level and information
about which malware or exploit kit can attack them.
• Vulnerabilities with a proof-of-concept exploit: a sample exploit code is available in open or
closed forums
• Vulnerabilities exploited in the wild: in targeted or distributed attack, related or not to a
specific malware or exploit kit
Products
The Skybox intelligence feed contains vulnerabilities published by the supported sources. These
vulnerabilities are associated with more than 8,000 products. The vulnerabilities are added to the intelligence feed according to the affected product’s priority. P1 is a list of critical or common
products, P2 holds a larger group of enterprise-grade products, and P3 holds the long tail of other
products.
P1 products (see Appendix A – P1 Product List) include the most important products of the
following vendors/types:
• Operating systems: Microsoft Windows, RedHat Linux, VMWare, Citrix, Mac OS X and Unix
• Network devices: routers, switches, firewalls and load balancers of the following vendors:
Cisco, Check Point, Juniper Networks, Big-IP and Juniper
• Databases: Oracle Database, Microsoft SQL Server and Oracle MySQL
• Web servers, application servers, mail servers and DNS servers
• Real-time running frameworks: Oracle Java, Microsoft .NET and PHP
• Antiviruses: McAfee and Symantec
• Popular workstation apps: web browsers, Microsoft Office, Adobe Flash Player, Adobe
Reader and Microsoft Lync
• Other popular enterprise-level software: SAP products, Samba, Splunk
skyboxsecurity.com
© 2018 Skybox Security, Inc. All rights reserved.
6
Skybox Intelligence Feed Description and SLA
P2 products (see Appendix B – P2 Product List) include additional common enterprise products
from the following vendors: Apache, Cisco, CA, Elasticsearch, EMC, HP, IBM, Oracle, Pivotal, TIBCO
and VMWare.
Please note that the lists are updated from time to time, to meet our customers’ needs.
The Skybox Intelligence Feed SLA
The intelligence feed is released by 11 a.m. Eastern Standard Time each day. The Skybox Server
can be configured to automatically update the data service from the internet on a scheduled basis.
The intelligence feed is released with vulnerability updates according to the following policy:
1. Vulnerabilities affecting P1 products: published within one business day from public
disclosure of vulnerabilities by the supported vendors or NVD
2. Vulnerabilities affecting P2 products: published within seven days from public disclosure
by NVD
3. Vulnerabilities affecting P3 products: published gradually, after disclosure by NVD
4. Exploitability: Published daily, to include proof-of-concept exploits and vulnerabilities
exploited in the wild and popular malware, within three days from public disclosure by the
supported data sources
Skybox Vulnerability Center
Skybox™ Vulnerability Center is a public website presenting our vulnerability information, including
basic search options and a notification service.
The Vulnerability Center includes the same vulnerabilities as our intelligence feed, although less
information is available per vulnerability.
The Vulnerability Center is updated after the intelligence feed is released, and its information is
included in the vulnerability service.
skyboxsecurity.com
© 2018 Skybox Security, Inc. All rights reserved.
7
Skybox Intelligence Feed Description and SLA
Appendix A – P1 Products List
VENDOR PRODUCT
Adobe
Acrobat
AIR
Flash Player
Reader
Shockwave Player
Apache Software Foundation
Apache
Struts
Tomcat
Apple
iOS
iTunes
MacOS X
Blue Coat Systems ProxySG
Check Point Software
Gaia OS
Security Gateway
VPN-1
Cisco
ASA
IOS
PIX
Citrix XenServer
F5 BigIP
FreeBSD FreeBSD
GNU GnuTLS
Google Chrome
HP HP-UX
IBM
AIX
HTTP Server
Lotus Domino
WebSphere Application Server
ISC BIND
skyboxsecurity.com
© 2018 Skybox Security, Inc. All rights reserved.
8
Skybox Intelligence Feed Description and SLA
VENDOR PRODUCT
Juniper Networks JUNOS
ScreenOS
Linux Linux Kernel
McAfee VirusScan Enterprise
Microsoft
.NET Framework
Active Directory
Edge
Excel
Exchange Server
IIS
Internet Explorer
Lync Server
Office
Outlook
PowerPoint
SQL Server
Windows 10
Windows 7
Windows 8
Windows Server 2003
Windows Server 2003 R2
Windows Server 2008
Windows Server 2008 R2
Windows Server 2012
Windows Server 2012 R2
Windows Server 2016
Windows Vista
Word
XML Core Services
Mozilla Firefox
OpenBSD OpenSSH
OpenLDAP OpenLDAP
OpenSSL OpenSSL
skyboxsecurity.com
© 2018 Skybox Security, Inc. All rights reserved.
9
Skybox Intelligence Feed Description and SLA
VENDOR PRODUCT
Oracle
JRE
MySQL
Oracle Application Server
Oracle Database
Oracle E-Business Suite (Oracle Applications)
Oracle HTTP Server
Server JRE
Solaris
Palo Alto Networks PAN-OS
PHP PHP
RealVNC RealVNC
VNC Server
RedHat
Enterprise Linux
Enterprise Linux Server
Enterprise Linux Server AUS
Enterprise Linux Virtualization
Enterprise Linux Workstation
Enterprise Virtualization (RHEV)
JBoss Enterprise Application Platform
JBoss Enterprise Web Server
Network Satellite Server
Red Hat Virtualization Host
Red Hat Virtualization Manager
Samba Samba
Skype Technologies Skype
Splunk Splunk
Sun Java System Application Server
SunOS
Sybase Adaptive Server Enterprise
skyboxsecurity.com
© 2018 Skybox Security, Inc. All rights reserved.
10
Skybox Intelligence Feed Description and SLA
VENDOR PRODUCT
Symantec
Endpoint Protection
Endpoint Protection Manager
Norton Antivirus
TIBCO Enterprise Message Service
Rendezvous
VMWare
NSX-V
VMware ESX Server
VMware ESXi Server
XenProject Xen
skyboxsecurity.com
© 2018 Skybox Security, Inc. All rights reserved.
11
Skybox Intelligence Feed Description and SLA
Appendix B – P2 Products List
VENDOR PRODUCT
7-Zip 7-Zip
ABBYY Recognition Server
Adobe Flash Media Server
LiveCycle
Ajv Ajv
Ansible Ansible
Apache ProxySG Cordova
PDFBox
Apache Software Foundation
ActiveMQ
APR
Axis
Axis2
Cassandra
Commons Collections
Hadoop
Log4j
Apple CUPS
AppSense Management Suite
Aprelium Technologies Abyss Web Server
Arcserve Arcserve RHA
ArcSight SmartConnector
Arista EOS
skyboxsecurity.com
© 2018 Skybox Security, Inc. All rights reserved.
12
Skybox Intelligence Feed Description and SLA
VENDOR PRODUCT
Aspect
CXP Developer
CXP Server
Unified IP
Atlassian Confluence
JIRA
Avaya
9600 Series IP Deskphones
Aura Application Enablement Services
Aura Experience Portal
Call Management System (CMS)
Communication Manager (CM)
IP hard phones
IP Soft Phone
Proactive Contact
Axway SecureTransport
BeyondTrust PowerBroker
BMC Software
Atrium CMDB
BMC Patrol
Performance Assurance
bTrade TDCommunity Manager
Business Objects Crystal Reports
CA Technologies CA Directory
Canon imageRUNNER
iR Printer
CentOS CentOS
skyboxsecurity.com
© 2018 Skybox Security, Inc. All rights reserved.
13
Skybox Intelligence Feed Description and SLA
VENDOR PRODUCT
Check Point Software
Endpoint Security
FireWall-1
Pointsec PC
Cisco
500 Series Content Engines
7300 Series Content Engines
AnyConnect VPN Client
AnyRes Live
Cache Engine/Content Engine
CAT OS
Catalyst
Integrated Management Controller
Intelligent Contact Management Enterprise
IOS-XR
IP Communicator
Jabber for iPhone and iPad
Jabber for Windows
License Manager
MDS
MDS 9000 Series
NAC Guest Server
NetFlow Collection Engine
Nexus
NX-OS
Prime Infrastructure
Prime License Manager
Sourcefire 3D System
TelePresence C Series
TelePresence Conductor
Telepresence Integrator C Series
TelePresence Multipoint Switch (CTMS)
TelePresence Server
TelePresence Supervisor MSE
TelePresence System
TelePresence TC Software
skyboxsecurity.com
© 2018 Skybox Security, Inc. All rights reserved.
14
Skybox Intelligence Feed Description and SLA
TelePresence Video Communication Server
Unified Communications Manager (CUCM)
Unified Customer Voice Portal (CVP)
Unified IP Phone
Unified Presence Server (CUPS)
Unity Connection
WebEx Extension
Webex Meetings Player
Webex Network Recording Player
WebEx Productivity Tools
Wireless LAN Controller
Citibank Citi Mobile
Citrix
Director
ICA Client for Linux
NetScaler
NetScaler Gateway
Presentation Server
Provisioning Services
XenApp
XenDesktop
CloudBees Jenkins
Cloudera CDH
Manager
CollabNet Subversion
Computer Associates
BrightStor ARCServe Backup
SiteMinder Policy Server
SiteMinder Web Agent
CyberArk Privileged Account Security Solution
Cyrus SASL
skyboxsecurity.com
© 2018 Skybox Security, Inc. All rights reserved.
15
Skybox Intelligence Feed Description and SLA
VENDOR PRODUCT
DB Networks DBN-6300
Debian Linux
Decru DataFort FC-Series
DataFort S-Series
Dell Inc. Wyse
Dropbear SSH Server
Drupal Drupal
Elasticsearch
Elasticsearch
Kibana
Logstash
Logstash Forwarder
EMC
Avamar Virtual Edition (AVE)
Celerra
CLARiiON
Dart
Data Domain OS
Data Protection Advisor
Documentum D2
Legato Networker
Networker
PowerPath
Replication Manager
RSA Adaptive Authentication
RSA Archer GRC
RSA Security Analytics
RSA Web Threat Detection
ScaleIO
Secure Remote Support
Unisphere
Unisphere for VMAX
ViPR SRM
VMAX
VNX
VNX2
XtremIO
skyboxsecurity.com
© 2018 Skybox Security, Inc. All rights reserved.
16
Skybox Intelligence Feed Description and SLA
VENDOR PRODUCT
Entrust
Authority GSS-API Toolkit for C
Entelligence Security Provider
Entrust Authority Security Manager
Erlang Run-Time System Application (ERTS)
ESRI
ArcGIS ArcMap
ArcGIS for Desktop
ArcGIS Pro
Ethan Galstad Nagios
FICO Debt Manager
Flexera Software AdminStudio
Fluke Networks Netflow Tracker
FortiNet FortiClient
FortiDB
Fuji Xerox Printing Systems
Galera Cluster Galera Cluster for MySQL
Ganglia Ganglia
Gemalto
SafeNet Luna SA
SafeNet ProtectServer
SafeWord
SafeWord PremierAccess
Genesys Conversation Manager
Customer Interaction Management
GIT GIT
skyboxsecurity.com
© 2018 Skybox Security, Inc. All rights reserved.
17
Skybox Intelligence Feed Description and SLA
VENDOR PRODUCT
GitHub Git LFS
GNU Bash
Golang Go
Good Good for Enterprise
GoodTech Systems
Good Access for Android
Good Access for iOS
Good Dynamics
Good Mobile Messaging server for Exchange
Google Nexus
GraphicsMagick GraphicsMagick
H2O H2O
HAProxy HAProxy
Hitachi Command Suite
HP / HPE / Micro Focus
Arcsight Connector Appliance
ArcSight ESM
ArcSight Management Center
Asset Manager
BladeSystem c-Class Virtual Connect (VC)
Connect IT
Database and Middleware Automation
DDMI
Device Connect
Integrated Lights-Out (iLO)
JetAdmin
JetAdvantage Management Connector
JetAdvantage Security Manager
Network Automation
OpenView Storage Data Protector
Performance Center
ProLiant Server
Version Control Agent
WebInspect
skyboxsecurity.com
© 2018 Skybox Security, Inc. All rights reserved.
18
Skybox Intelligence Feed Description and SLA
VENDOR PRODUCT
IBM
Advanced Developer Portal
AppScan Source for Analysis
BigFix Inventory
BigFix Platform
Cognos Analytics
Cognos Business Intelligence Server
Cognos Enterprise
Cognos PowerPlay Enterprise Server
Connect Direct
Content Manager OnDemand
DataStage
DB2
DB2 Universal Database
Director Agent
General Parallel File System (GPFS)
GPFS Storage Server
HACMP
HMC
Hyper-Scale Manager
i5/OS
IBM I
ILOG CPLEX Optimization Studio
Informix
InfoSphere Data Architect
InfoSphere Master Data Management
Java
Lotus Notes
MVS
Platform Symphony
Rational AppScan Standard
Rational Team Concert
Security AppScan Enterprise
Security AppScan Source
Security Guardium
Security Guardium Database Activity Monitor
SolidDB
Spectrum Accelerate
Spectrum Control
Sterling B2B Integrator
Sterling Connect:Direct
Tealeaf Customer Experience
Tivoli Application Dependency Discovery
Manager
Tivoli Asset Discovery for Distributed
skyboxsecurity.com
© 2018 Skybox Security, Inc. All rights reserved.
19
Skybox Intelligence Feed Description and SLA
Tivoli Directory Server
Tivoli Monitoring
Tivoli Netcool Impact
Tivoli Netcool/OMNIbus
Tivoli Provisioning Manager
Tivoli Storage Manager
TS3100 Tape Library
Virtual I/O Server
WebSphere DataPower
WebSphere Host On-Demand
WebSphere Message Broker
WebSphere MQ
WebSphere Portal Server
Websphere Process Server
z/OS
Igor Sysoev nginx
ImageMagick GraphicsMagick
ImageMagick
Index Engines Unified Discovery Platform
Intel Graphics Driver
IPC
Alliance MX System Center
MAX Enterprise Server
Nexus
TCS Web Services
Unigy
JasPer JasPer
Jetty Jetty
Jfrog Artifactory
jQuery jQuery
skyboxsecurity.com
© 2018 Skybox Security, Inc. All rights reserved.
20
Skybox Intelligence Feed Description and SLA
VENDOR PRODUCT
Juniper Networks
Infranet Controller 4000
NetScreen
Secure Services Gateway
SRX Series
Larry Wall Perl
Lexmark CX725 Series
LibTiff LibTiff
Lucent Technologies QIP Enterprise
MariaDB MariaDB
McAfee
Agent
Agent for Mac
Anti-Malware Scan Engine for Mac
Content Scanning Engine
Data Exchange Layer
ePolicy Orchestrator
Global Threat Intelligence Enterprise
GroupShield for Microsoft Exchange
Rogue System Detection
Security for Microsoft Exchange
VirusScan
VirusScan Command Line
Vulnerability Manager
skyboxsecurity.com
© 2018 Skybox Security, Inc. All rights reserved.
21
Skybox Intelligence Feed Description and SLA
VENDOR PRODUCT
Microsoft
Active Directory Certificate Services
Active Directory Federation Services
ASP.NET
Data Protection Manager
DirectX
Lync
Management OData IIS Extension
Media Player
Microsoft Identity Integration Server (MIIS)
Microsoft Operations Manager
Office Communicator
Office SharePoint Server
Office Web Apps Server
Online Responder
Project
Remote Desktop Connection Client
SharePoint Designer
SharePoint Services
Silverlight
Skype for Business
System Center Configuration Manager
System Center Operations Manager
VBScript
Visio
Visual Studio
Visual Studio Team Foundation Server
Windows XP
Mod_ssl Mod_ssl
mongoDB mongoDB
MontaVista Linux Professional Edition
NCR Self-Service ATM
Net-SNMP Net-SNMP
skyboxsecurity.com
© 2018 Skybox Security, Inc. All rights reserved.
22
Skybox Intelligence Feed Description and SLA
VENDOR PRODUCT
NetApp Data ONTAP
OnCommand System Manager
Nmap Nmap
Node.js Foundation Node.js
Nortel Networks Meridian
NTP NTP
Nuance SpeechAttendant
OpenJDK OpenJDK
Opensource DBD::Sybase
Oracle
Acme Packet
Business Process Management
Communications Operations Monitor
Communications Session Border Controller
Communications Session Delivery Management
Suite
Directory Server Enterprise Edition
Enterprise Manager Grid Control
Essbase Administration Services
Glassfish
GoldenGate
GoldenGate Veridata
Hyperion Smart View for Office
Identity Analytics
Integrated Lights Out Manager(ILOM)
Knowledge
Management Pack for Oracle GoldenGate
Oracle CRM
Oracle Fusion Middleware
Oracle Outside In Technology
PeopleSoft Enterprise
PeopleSoft Enterprise Customer Relationship
Manage
skyboxsecurity.com
© 2018 Skybox Security, Inc. All rights reserved.
23
Skybox Intelligence Feed Description and SLA
PeopleSoft Enterprise FMS
PeopleSoft Enterprise HRMS Human Resources
PeopleSoft Enterprise Performance Management
PeopleSoft PeopleTools
PeopleSoft Portal
Secure Global Desktop
Tuxedo
VM Server for SPARC
Waveset
WebLogic Server
p7zip p7zip
Palo Alto Networks Palo Alto Firewall
Persistent Systems Radia Client Automation
Pexip Pexip Infinity
Pivotal
BOSH CLI
Cloud Foundry (PCF) Elastic Runtime
Cloud Foundry (PCF) Ops Manage
Cloud Foundry CLI
JMX Bridge (Ops Metrics)
MySQL for Pivotal Cloud Foundry
Operations Manager
RabbitMQ
RabbitMQ For PCF
Spring Cloud Services
Spring Framework
User Account and Authentication (UAA)
PKWare SecureZIP
PostgreSQL PostgreSQL
PrinterOn Embedded Agent for Samsung
skyboxsecurity.com
© 2018 Skybox Security, Inc. All rights reserved.
24
Skybox Intelligence Feed Description and SLA
VENDOR PRODUCT
privoxy privoxy
PulseSecure MAG Series
Pulse Connect Secure
Python Software Foundation Python
Quest Recovery Manager for Active Directory
Qumu Video Control Center
VideoNet Edge
RedHat
Cluster Suite
JBoss BPM Suite
Mailcap
OpenShift
OpenShift Enterprise
redis-store Redis Store
Reuters Reuters Messaging
RIM
Blackberry Desktop Manager
Blackberry Device Service
Blackberry Device Software
BlackBerry Enterprise Server
RIO Karma
Riverbed SteelCentral NetProfiler
SteelCentral NetShark
RSA Security
ACE/Server
Adaptive Authentication
Security Analytics
Web Threat Detection
Rsyslog Rsyslog
skyboxsecurity.com
© 2018 Skybox Security, Inc. All rights reserved.
25
Skybox Intelligence Feed Description and SLA
VENDOR PRODUCT
Ruby on Rails Ruby on Rails
SAP
BusinessObjects
BusinessObjects XI
Crystal Reports
NetWeaver
Sendmail Inc. Sentrion MP
Skybox Security Skybox
Skybox Manager Client Application
SourceForge Monkey HTTP Daemon
Spring Boot
Core
SQLite SQLite
SSH Communications Security
Tectia Client
Tectia Manager
Tectia Server
Sun ONE Directory Server
Solaris Cluster
Sybase
Adaptive Server
IQ
Open Server
OpenSwitch
Replication Server
SDK
Symantec
Data Loss Prevention Endpoint Agent
Encryption Management Server
Enterprise Security Manager
NetBackup
NetBackup Appliance
Storage Foundation for RHEL Linux
Symantec Data Insight
Symantec Storage Foundation for Windows
Symantec Veritas Cluster Server
Symantec Veritas NetBackup Operations
Manager
skyboxsecurity.com
© 2018 Skybox Security, Inc. All rights reserved.
26
Skybox Intelligence Feed Description and SLA
VENDOR PRODUCT
Tableau
Reader
Server
Tableau
Tandberg MXP
Tanium Client
Server
Tcpdump Tcpdump
TCPWave DNS Appliance
Tenable Network Security Nessus
TIBCO
ActiveMatrix BPM
Administrator
Enterprise Administrator
Runtime Agent
Spotfire S+
Spotfire Server
TMD Security Monitoring Tool
Todd Miller Sudo
Twisted Matrix Labs Twisted
Ubuntu Ubuntu Linux
UltraVNC UltraVNC
Unisys ClearPath MCP
Uplogix Control Center
Uplogix Envoy
skyboxsecurity.com
© 2018 Skybox Security, Inc. All rights reserved.
27
Skybox Intelligence Feed Description and SLA
VENDOR PRODUCT
Veritas Software Cluster Server
Volume Manager
VMWare
AirWatch On-Premise
Horizon View
Horizon View Client
vCenter Operations Manager
vCenter Server
vCenter Update Manager
vCloud Automation Cente (vCAC)
VirtualCenter
VMWare Tools
vRealize Operations Manager
vRealize Orchestrator
Wireshark Wireshark
WordPress ESB CSV-Import-Export Plugin
WordPress
Wyse Wyse ThinOS
Xerox
ColorQube
Phaser
WorkCentre
Yahoo Instant Messenger
Messenger
Yukihiro Matsumoto Ruby
zlib zlib