With the release of Nipper, v3.11.0, we’re continuing to empower our customers to find and fix their exposure to the most critical threats in their network infrastructure with support for more devices and extended CIS Benchmark coverage.
This latest release reflects our commitment to our customer-driven product roadmap. We continue to expand support for the devices, environments, risk management frameworks, and regulatory challenges that matter most to you.
In this blog, we overview the new features and enhancements in Nipper, v3.11.0 and how they help organizations to harden their security foundations and streamline compliance.
Added support for the Huawei and Palo Alto firewalls
Driven by customer demand, Nipper v3.11.0 introduces support for Huawei USG firewalls (Version V600R024) as well as the latest manufacturer-recommended version of Palo Alto PanOS firewalls.
Nipper users can now run a range of reports (including our Best Practice Security based on over 200 automated penetration tests) against these devices, to identify the misconfigurations that could create attack paths or compliance gaps. Nipper prioritizes the findings based on risk, and provides clear, device-specific remediation guidance.
This deep analysis provides a comprehensive understanding of whether an individual device is configured securely, and the level of risk posed to the entire network where issues exist.
Using automated penetration testing techniques means Nipper solutions allow users to complete network security assessments up to 80% faster than using manual analysis – allowing network security teams to focus on remediation.
Extended CIS Benchmark reporting: Sophos, Check Point and Cisco
CIS Benchmarks provide baseline recommendations for securing network infrastructure including routers, switches and firewalls, with vendor-specific guidelines to help set up and manage devices.
In previous releases, we introduced CIS Benchmark reporting for Fortinet, Cisco, Juniper and Palo Alto network devices.
With Nipper v3.11.0, we’ve expanded our capabilities to include CIS Benchmark auditing for:
- Sophos v21 v1.0.0
- Check Point v1.1.0
- Additional versions of Cisco IOS XE device
You can now automatically check these devices against CIS Benchmarks. Running this alongside a Best Practice Security Audit provides a full view of potential attack paths.
CIS Benchmarks: why they matter
Developed by global cybersecurity experts and mapped to the CIS Critical Security Controls, CIS Benchmarks offer practical guidance for reducing attack surfaces across network devices.
They also align closely to security and regulatory frameworks including NIST, HIPAA and PCI DSS.
CIS Benchmark provide a flexible and continuously updated framework to help organizations manage governance and risks while maintaining compliance with industry and government regulations.
Find out more here: CIS Benchmarks®
Continual improvements
This release includes continual improvements and bug fixes to enhance performance and usability. Read our latest release notes to find out more.
What’s coming next for Nipper?
Looking ahead, we’re working on our next major release: Nipper v4. This will include support for Cisco Meraki devices. We’ll be sharing full details of this major release soon, so stay tuned!
Got a question or feedback?
If you have a question or any feedback about the new release, get in touch with our Support Team.
We value the insights and suggestions from our Nipper community. Your feedback is instrumental in shaping our product roadmap and helping us grow together.
About Nipper
Nipper solutions analyze network device configurations in the way APT groups do, to identify misconfigurations that could create attack paths.
This analysis offers unparalleled accuracy, finding critical vulnerabilities that other tools simply cannot see. Our solutions then prioritize the biggest risks to your business and provide device-specific remediation guidance, right down to specific command line prompts.
Whether your focus is taking pragmatic, risk-based security measures to minimize known vulnerabilities, ensuring compliance with industry security standards, or predicting and preventing future attacks, Nipper solutions provide the targeted insights you need.
No other security provider looks at the network, or at network devices, in the same way. That’s why no other tool finds the threats that Nipper solutions identify.
30+ U.S. federal agencies and 800+ organizations globally trust Nipper solutions to deliver auditor-ready reports while supporting air-gapped environments, sovereign cloud requirements, and complex regulated infrastructures.
