If you were talking to someone whose organization is considering Tripwire IP360, what would you say?
How would you rate it and why? Any other tips or advice?
I would advise others who are looking at getting this solution, to make sure that it can scan all types of systems they have - if it's Linux or a mainframe or if it is a switch. So, they should ensure that they can scan it. Also, if they want to have web application scanning, I wouldn't recommend this solution. This is not one of its very strong points. So, on a scale from 1 to 10 where 1 is the worst and 10 is the best, I would put it at 7. Things that should improve, are real-time dashboards, a way to customize scanning (on custom-defined ports), more customization and more flexibility on the user side.
We use it identify vulnerabilities.
I would advise you to do your homework when considering this solution. I would definitely rate it a ten, it's one of the most mature solutions and is constantly evolving.