Manage your network risks with Nipper our accurate firewall and network configuration audit tool
Nipper discovers vulnerabilities in firewalls, switches and routers, automatically prioritizing risks to your organization. Our virtual modelling reduces false positives and identifies exact fixes to help you stay secure.
Analyzing the configurations and interactions of your network infrastructure with the expertize of a skilled
penetration tester – Nipper’s unrivaled accuracy can save Network Administrators up to 3 hours per
audit, per device. Instead of spending time investigating false positives of non-compliance, Nipper enables you to
dedicate your valuable resources to analyzing and prioritizing fixes by providing:
Visibility of actual network vulnerabilities including existing false-negatives Significantly fewer false-positives to investigate Automated risk prioritization Precise remediation with exact technical fixes Flexible, configurable easy to read reports
Accurate reporting
Easy to read reports written in plain English
Machine consumable outputs for autonomous mitigation
Device support includes, but is not limited to, the following OS versions. If your device isn't listed below, please use Live Chat or get in touch to confirm if it is supported by Nipper.
Models
OS version
Cisco ASR (IOS XR)
Cisco Aironet (IOS)
AIR (no version specified)
Cisco Aironet Wireless AP (IOS)
Cisco Catalyst Switches (CatOS)
CatOS 4.4(1)
CatOS 5.5(15)
CatOS 12.1(14)EA1a
Cisco Catalyst Switches (IOS)
Cisco Catalyst Switches (NMP)
Cisco CRS (IOS XR)
Cisco Content Services Switches
CSS sg0810106
Cisco IDS/IPS
IDS 6.0(6)
Cisco Nexus
Up to NX-OS 9.3
Cisco Catalyst and Cisco Router (IOS)
Up to IOS 15.8
Cisco Routers (IOS XE)
IOS XE 16.5
IOS XE 16.9
Cisco Routers (IOS XR)
Cisco Security Appliance (ASA)
Up to ASA 9.14
Cisco ASA with FirePOWER Services
Cisco ASA Applicance Contexts
Cisco Security Appliance (FWSM)
Cisco Security Appliance (PIX)
PIX 6.3(5)
Cisco PIX Appliance Contexts
Cisco Wireless LAN
Device support includes, but is not limited to, the following OS versions. If your device isn't listed below, please use Live Chat or get in touch to confirm if it is supported by Nipper.
Models
OS version
Check Point IP Firewalls
R75.40
R77.20
R80.30
Check Point Firewall Management
Check Point Power-1 Firewalls
Check Point VPN-1 Firewalls
Check Point Appliance
Device support includes, but is not limited to, the following OS versions. If your device isn't listed below, please use Live Chat or get in touch to confirm if it is supported by Nipper.
Models
OS versions
Fortinet Fortigate Firewalls (UTM)
Up to FortiOS 5.6
FortiOS 6.0
FortiOS 6.2
FortiOS 6.4
Device support includes, but is not limited to, the following OS versions. If your device isn't listed below, please use Live Chat or get in touch to confirm if it is supported by Nipper.
Models
OS version
Palo Alto Firewalls
Up to and including PAN-OS 9.1
Palo Alto Panorama
Up to and including PAN-OS 9.1
Device support includes, but is not limited to, the following OS versions. If your device isn't listed below, please use Live Chat or get in touch to confirm if it is supported by Nipper.
Models
OS Version
Netfilter iptables Firewall
CentOS6.5
CentOS7
OpenSuse13.2
Device support includes, but is not limited to, the following OS versions. If your device isn't listed below, please use Live Chat or get in touch to confirm if it is supported by Nipper.
Models
OS version
3COM 4200 Series Switches
3COM 4400 Series Switches
SS3 6.13
3COM 4500 Series Switches
3COM 5500 Series Switches
SS4
3COM SuperStack 3 Firewalls
3COM TippingPoint IDS/IPS
If your device isn't listed below, please use Live Chat or get in touch to confirm if it is supported by Nipper.
Models
OS version
Alteon Switched Firewall (CP)
If your device isn't listed below, please use Live Chat or get in touch to confirm if it is supported by Nipper.
Models
OS version
Barracuda NetContinuum
If your device isn't listed below, please use Live Chat or get in touch to confirm if it is supported by Nipper.
Models
OS version
Bay Networks Accelar Switches
Device support includes, but is not limited to, the following OS versions. If your device isn't listed below, please use Live Chat or get in touch to confirm if it is supported by Nipper.
Models
OS version
Blue Coat ProxySG
SGOS 5.2.2.5
Device support includes, but is not limited to, the following OS versions. If your device isn't listed below, please use Live Chat or get in touch to confirm if it is supported by Nipper.
Models
OS version
Brocade BigIron Switch
IronWare 04.1.01eTc1
Brocade FastIron Switch
IronWare 07.0.01bT7f1
Brocade NetIron Switch
Brocade ServerIron
Brocade ICX Switch (IronWare)
IronWare 07.4.00T311
If your device isn't listed below, please use Live Chat or get in touch to confirm if it is supported by Nipper.
Models
Crossbeam Firewalls (Check Point)
If your device isn't listed below, please use Live Chat or get in touch to confirm if it is supported by Nipper.
Models
OS version
CyberGuard Firewalls (SecureOS 6)
Device support includes, but is not limited to, the following OS versions. If your device isn't listed below, please use Live Chat or get in touch to confirm if it is supported by Nipper.
Models
OS version
Dell PowerConnect J EX-Series
Dell PowerConnect J SRX
Dell PowerConnect Switches
Dell SonicWALL NSA
Dell SonicWALL TZ
SonicOS 6.5.4.5-53n
Dell SuperMassive
Device support includes, but is not limited to, the following OS versions. If your device isn't listed below, please use Live Chat or get in touch to confirm if it is supported by Nipper.
Models
OS version
Extreme Alpine (ExtremeWare)
Extreme Alpine (XOS)
XOS
Extreme BlackDiamond (XOS)
Extreme Summit (ExtremeWare)
ExtremeWare 4.1.19-
ExtremeWare 7.7e.2.4
Extreme Summit (XOS)
Device support includes, but is not limited to, the following OS versions. If your device isn't listed below, please use Live Chat or get in touch to confirm if it is supported by Nipper.
Models
OS version
Foundry Networks BigIron Switch
IronWare 07.3.06T12
Foundry Networks FastIron Switch
Foundry Networks NetIron Switch
Foundry Networks ServerIron
Device support includes, but is not limited to, the following OS versions. If your device isn't listed below, please use Live Chat or get in touch to confirm if it is supported by Nipper.
Models
OS version
F5 BIG-IP
OS Version 10 & 11
If your device isn't listed below, please use Live Chat or get in touch to confirm if it is supported by Nipper.
Models
OS version
GTA Firewall Appliances
If your device isn't listed below, please use Live Chat or get in touch to confirm if it is supported by Nipper.
Models
OS version
H3C 3600 Series Switches
H3C 5500 Series Switches
Device support includes, but is not limited to, the following OS versions. If your device isn't listed below, please use Live Chat or get in touch to confirm if it is supported by Nipper.
Models
OS version
HP ComWare Routers
Comware 5.20
Comware 7.1.047
HP JetDirect Print Servers
JetDirect-Firmware L22.09
JetDirect-Firmware R25.09
JetDirect-Firmware V28.05
JetDirect-Firmware V28.63
JetDirect-Firmware V28.72
HP ProCurve Switches
Procurve E.11.10
Procurve F.05.69
Procurve R.11.72
Procurve R.11.107
Device support includes, but is not limited to, the following OS versions. If your device isn't listed below, please use Live Chat or get in touch to confirm if it is supported by Nipper.
Models
OS version
Huawei Quidway Switches (3COM)
VRP V100R001C20
Huawei Routers
Huawei CX Series Routers
Huawei Eudemon Series Firewalls
Huawei NE Series Routers
Device support includes, but is not limited to, the following OS versions. If your device isn't listed below, please use Live Chat or get in touch to confirm if it is supported by Nipper.
Models
OS version
IBM Proventia G Series
RHEL
IBM Proventia M Series
M-Firmware
Device support includes, but is not limited to, the following OS versions. If your device isn't listed below, please use Live Chat or get in touch to confirm if it is supported by Nipper.
Models
OS version
Juniper E Series Routers
JunOS 9.3R2.8
JunOS 10.0R3.10
JunOS 12.1R3.5
Juniper EX Series Switches
Juniper IDP Devices
Juniper ISG Firewalls
Juniper J Series Routers
Juniper M Series Routers
Juniper MX Series Routers
Juniper NetScreen Firewalls
Juniper SA SSL VPN (IVE)
Juniper SA SSL VPN (JunOS Pulse)
Juniper SRX Firewalls
Juniper SSG Firewalls (JunOS)
Juniper SSG Firewalls (ScreenOS)
Juniper T Series Routers
Device support includes, but is not limited to, the following OS versions. If your device isn't listed below, please use Live Chat or get in touch to confirm if it is supported by Nipper.
Models
OS version
McAfee Enterprise Firewall
SecureOS 8.3.2P07
McAfee Sidewinder
Device support includes, but is not limited to, the following OS versions. If your device isn't listed below, please use Live Chat or get in touch to confirm if it is supported by Nipper.
Models
OS version
Forcepoint Sidewinder
SecureOS 8.3.2P07
Device support includes, but is not limited to, the following OS versions. If your device isn't listed below, please use Live Chat or get in touch to confirm if it is supported by Nipper.
Models
OS version
Microsoft Forefront
MS Forefront 7.0.8108.200
Device support includes, but is not limited to, the following OS versions. If your device isn't listed below, please use Live Chat or get in touch to confirm if it is supported by Nipper.
Models
OS version
NETGEAR ProSafe FSM Switches
ProSafe Firmware 7.3.1.7
NETGEAR ProSafe FVS Firewalls
If your device isn't listed below, please use Live Chat or get in touch to confirm if it is supported by Nipper.
Models
OS version
Nokia IP Firewalls (Check Point)
Device support includes, but is not limited to, the following OS versions. If your device isn't listed below, please use Live Chat or get in touch to confirm if it is supported by Nipper.
Models
OS version
Nortel Contivity Routers
Nortel Ethernet Routing 8k Switch
Nortel Passport 8k Switches
Passport OS 3.5.1.0
Nortel Switching Firewalls (CP)
Nortel VPN Routers
If your device isn't listed below, please use Live Chat or get in touch to confirm if it is supported by Nipper.
Models
OS version
Ruggedcom RuggedSwitch
Device support includes, but is not limited to, the following OS versions. If your device isn't listed below, please use Live Chat or get in touch to confirm if it is supported by Nipper.
Models
OS version
Secure Computing (SecureOS 6)
Secure Computing (SecureOS 7)
Device support includes, but is not limited to, the following OS versions. If your device isn't listed below, please use Live Chat or get in touch to confirm if it is supported by Nipper.
Models
OS version
SonicWALL Firewall (SonicOS)
SonicWALL NSA (SonicOS Enhanced)
SonicWALL Pro (SonicOS)
SonicWALL Pro (SonicOS Enhanced)
SonicWALL TZ (SonicOS)
SonicOS 3.1.6.3-4s
SonicWALL TZ (SonicOS Enhanced)
SonicOS Enhanced 5.3.0.0-16o
SonicOS Enhanced 5.8.0.1-31o
SonicOS Enhanced 6.1.1.0-19n
SonicOS Enhanced 6.1.1.0-25n
SonicOS Enhanced 6.2.7.1-23n
Device support includes, but is not limited to, the following OS versions. If your device isn't listed below, please use Live Chat or get in touch to confirm if it is supported by Nipper.
Models
OS version
Sophos UTM
Sophos UTM 7.510 (Astaro)
Sophos UTM 9.003016
If your device isn't listed below, please use Live Chat or get in touch to confirm if it is supported by Nipper.
Models
OS Version
WatchGuard Firewall
WatchGuard XTM
WatchGuard M Series
Supported Devices
Device support includes, but is not limited to, the following OS versions. If your device isn't listed below, please use Live Chat or get in touch to confirm if it is supported by Nipper.
Models
OS version
Cisco ASR (IOS XR)
Cisco Aironet (IOS)
AIR (no version specified)
Cisco Aironet Wireless AP (IOS)
Cisco Catalyst Switches (CatOS)
CatOS 4.4(1)
CatOS 5.5(15)
CatOS 12.1(14)EA1a
Cisco Catalyst Switches (IOS)
Cisco Catalyst Switches (NMP)
Cisco CRS (IOS XR)
Cisco Content Services Switches
CSS sg0810106
Cisco IDS/IPS
IDS 6.0(6)
Cisco Nexus
Up to NX-OS 9.3
Cisco Catalyst and Cisco Router (IOS)
Up to IOS 15.8
Cisco Routers (IOS XE)
IOS XE 16.5
IOS XE 16.9
Cisco Routers (IOS XR)
Cisco Security Appliance (ASA)
Up to ASA 9.14
Cisco ASA with FirePOWER Services
Cisco ASA Applicance Contexts
Cisco Security Appliance (FWSM)
Cisco Security Appliance (PIX)
PIX 6.3(5)
Cisco PIX Appliance Contexts
Cisco Wireless LAN
Device support includes, but is not limited to, the following OS versions. If your device isn't listed below, please use Live Chat or get in touch to confirm if it is supported by Nipper.
Models
OS version
Check Point IP Firewalls
R75.40
R77.20
R80.30
Check Point Firewall Management
Check Point Power-1 Firewalls
Check Point VPN-1 Firewalls
Check Point Appliance
Device support includes, but is not limited to, the following OS versions. If your device isn't listed below, please use Live Chat or get in touch to confirm if it is supported by Nipper.
Models
OS versions
Fortinet Fortigate Firewalls (UTM)
Up to FortiOS 5.6
FortiOS 6.0
FortiOS 6.2
FortiOS 6.4
Device support includes, but is not limited to, the following OS versions. If your device isn't listed below, please use Live Chat or get in touch to confirm if it is supported by Nipper.
Models
OS version
Palo Alto Firewalls
Up to and including PAN-OS 9.1
Palo Alto Panorama
Up to and including PAN-OS 9.1
Device support includes, but is not limited to, the following OS versions. If your device isn't listed below, please use Live Chat or get in touch to confirm if it is supported by Nipper.
Models
OS Version
Netfilter iptables Firewall
CentOS6.5
CentOS7
OpenSuse13.2
Device support includes, but is not limited to, the following OS versions. If your device isn't listed below, please use Live Chat or get in touch to confirm if it is supported by Nipper.
Models
OS version
3COM 4200 Series Switches
3COM 4400 Series Switches
SS3 6.13
3COM 4500 Series Switches
3COM 5500 Series Switches
SS4
3COM SuperStack 3 Firewalls
3COM TippingPoint IDS/IPS
If your device isn't listed below, please use Live Chat or get in touch to confirm if it is supported by Nipper.
Models
OS version
Alteon Switched Firewall (CP)
If your device isn't listed below, please use Live Chat or get in touch to confirm if it is supported by Nipper.
Models
OS version
Barracuda NetContinuum
If your device isn't listed below, please use Live Chat or get in touch to confirm if it is supported by Nipper.
Models
OS version
Bay Networks Accelar Switches
Device support includes, but is not limited to, the following OS versions. If your device isn't listed below, please use Live Chat or get in touch to confirm if it is supported by Nipper.
Models
OS version
Blue Coat ProxySG
SGOS 5.2.2.5
Device support includes, but is not limited to, the following OS versions. If your device isn't listed below, please use Live Chat or get in touch to confirm if it is supported by Nipper.
Models
OS version
Brocade BigIron Switch
IronWare 04.1.01eTc1
Brocade FastIron Switch
IronWare 07.0.01bT7f1
Brocade NetIron Switch
Brocade ServerIron
Brocade ICX Switch (IronWare)
IronWare 07.4.00T311
If your device isn't listed below, please use Live Chat or get in touch to confirm if it is supported by Nipper.
Models
Crossbeam Firewalls (Check Point)
If your device isn't listed below, please use Live Chat or get in touch to confirm if it is supported by Nipper.
Models
OS version
CyberGuard Firewalls (SecureOS 6)
Device support includes, but is not limited to, the following OS versions. If your device isn't listed below, please use Live Chat or get in touch to confirm if it is supported by Nipper.
Models
OS version
Dell PowerConnect J EX-Series
Dell PowerConnect J SRX
Dell PowerConnect Switches
Dell SonicWALL NSA
Dell SonicWALL TZ
SonicOS 6.5.4.5-53n
Dell SuperMassive
Device support includes, but is not limited to, the following OS versions. If your device isn't listed below, please use Live Chat or get in touch to confirm if it is supported by Nipper.
Models
OS version
Extreme Alpine (ExtremeWare)
Extreme Alpine (XOS)
XOS
Extreme BlackDiamond (XOS)
Extreme Summit (ExtremeWare)
ExtremeWare 4.1.19-
ExtremeWare 7.7e.2.4
Extreme Summit (XOS)
Device support includes, but is not limited to, the following OS versions. If your device isn't listed below, please use Live Chat or get in touch to confirm if it is supported by Nipper.
Models
OS version
Foundry Networks BigIron Switch
IronWare 07.3.06T12
Foundry Networks FastIron Switch
Foundry Networks NetIron Switch
Foundry Networks ServerIron
Device support includes, but is not limited to, the following OS versions. If your device isn't listed below, please use Live Chat or get in touch to confirm if it is supported by Nipper.
Models
OS version
F5 BIG-IP
OS Version 10 & 11
If your device isn't listed below, please use Live Chat or get in touch to confirm if it is supported by Nipper.
Models
OS version
GTA Firewall Appliances
If your device isn't listed below, please use Live Chat or get in touch to confirm if it is supported by Nipper.
Models
OS version
H3C 3600 Series Switches
H3C 5500 Series Switches
Device support includes, but is not limited to, the following OS versions. If your device isn't listed below, please use Live Chat or get in touch to confirm if it is supported by Nipper.
Models
OS version
HP ComWare Routers
Comware 5.20
Comware 7.1.047
HP JetDirect Print Servers
JetDirect-Firmware L22.09
JetDirect-Firmware R25.09
JetDirect-Firmware V28.05
JetDirect-Firmware V28.63
JetDirect-Firmware V28.72
HP ProCurve Switches
Procurve E.11.10
Procurve F.05.69
Procurve R.11.72
Procurve R.11.107
Device support includes, but is not limited to, the following OS versions. If your device isn't listed below, please use Live Chat or get in touch to confirm if it is supported by Nipper.
Models
OS version
Huawei Quidway Switches (3COM)
VRP V100R001C20
Huawei Routers
Huawei CX Series Routers
Huawei Eudemon Series Firewalls
Huawei NE Series Routers
Device support includes, but is not limited to, the following OS versions. If your device isn't listed below, please use Live Chat or get in touch to confirm if it is supported by Nipper.
Models
OS version
IBM Proventia G Series
RHEL
IBM Proventia M Series
M-Firmware
Device support includes, but is not limited to, the following OS versions. If your device isn't listed below, please use Live Chat or get in touch to confirm if it is supported by Nipper.
Models
OS version
Juniper E Series Routers
JunOS 9.3R2.8
JunOS 10.0R3.10
JunOS 12.1R3.5
Juniper EX Series Switches
Juniper IDP Devices
Juniper ISG Firewalls
Juniper J Series Routers
Juniper M Series Routers
Juniper MX Series Routers
Juniper NetScreen Firewalls
Juniper SA SSL VPN (IVE)
Juniper SA SSL VPN (JunOS Pulse)
Juniper SRX Firewalls
Juniper SSG Firewalls (JunOS)
Juniper SSG Firewalls (ScreenOS)
Juniper T Series Routers
Device support includes, but is not limited to, the following OS versions. If your device isn't listed below, please use Live Chat or get in touch to confirm if it is supported by Nipper.
Models
OS version
McAfee Enterprise Firewall
SecureOS 8.3.2P07
McAfee Sidewinder
Device support includes, but is not limited to, the following OS versions. If your device isn't listed below, please use Live Chat or get in touch to confirm if it is supported by Nipper.
Models
OS version
Forcepoint Sidewinder
SecureOS 8.3.2P07
Device support includes, but is not limited to, the following OS versions. If your device isn't listed below, please use Live Chat or get in touch to confirm if it is supported by Nipper.
Models
OS version
Microsoft Forefront
MS Forefront 7.0.8108.200
Device support includes, but is not limited to, the following OS versions. If your device isn't listed below, please use Live Chat or get in touch to confirm if it is supported by Nipper.
Models
OS version
NETGEAR ProSafe FSM Switches
ProSafe Firmware 7.3.1.7
NETGEAR ProSafe FVS Firewalls
If your device isn't listed below, please use Live Chat or get in touch to confirm if it is supported by Nipper.
Models
OS version
Nokia IP Firewalls (Check Point)
Device support includes, but is not limited to, the following OS versions. If your device isn't listed below, please use Live Chat or get in touch to confirm if it is supported by Nipper.
Models
OS version
Nortel Contivity Routers
Nortel Ethernet Routing 8k Switch
Nortel Passport 8k Switches
Passport OS 3.5.1.0
Nortel Switching Firewalls (CP)
Nortel VPN Routers
If your device isn't listed below, please use Live Chat or get in touch to confirm if it is supported by Nipper.
Models
OS version
Ruggedcom RuggedSwitch
Device support includes, but is not limited to, the following OS versions. If your device isn't listed below, please use Live Chat or get in touch to confirm if it is supported by Nipper.
Models
OS version
Secure Computing (SecureOS 6)
Secure Computing (SecureOS 7)
Device support includes, but is not limited to, the following OS versions. If your device isn't listed below, please use Live Chat or get in touch to confirm if it is supported by Nipper.
Models
OS version
SonicWALL Firewall (SonicOS)
SonicWALL NSA (SonicOS Enhanced)
SonicWALL Pro (SonicOS)
SonicWALL Pro (SonicOS Enhanced)
SonicWALL TZ (SonicOS)
SonicOS 3.1.6.3-4s
SonicWALL TZ (SonicOS Enhanced)
SonicOS Enhanced 5.3.0.0-16o
SonicOS Enhanced 5.8.0.1-31o
SonicOS Enhanced 6.1.1.0-19n
SonicOS Enhanced 6.1.1.0-25n
SonicOS Enhanced 6.2.7.1-23n
Device support includes, but is not limited to, the following OS versions. If your device isn't listed below, please use Live Chat or get in touch to confirm if it is supported by Nipper.
Models
OS version
Sophos UTM
Sophos UTM 7.510 (Astaro)
Sophos UTM 9.003016
If your device isn't listed below, please use Live Chat or get in touch to confirm if it is supported by Nipper.
Organizations connecting to the DoD must demonstrate a robust process for checking and updating their networks’ security continuously. Automating your device audits with Nipper not only saves time and resources, it also provides an audit trail of reports to evidence STIGs compliance.
Nipper automates the accurate assessment of 89% of controls in the NIST 800-171 framework related to core network devices, saving Internal Auditors valuable time
when determining compliance, and integrates with SIEM/SOAR systems to give you a network-wide view of compliance.
Trusted by US government and federal contractors for proven accuracy, Nipper automates the assessment of 94% of NIST 800-53 core network controls, identifies precise vulnerabilities, and recommends remediation actions for each, saving security teams up to 3 hours per device audit.
ISAs and QSAs around the world rely on Nipper’s accuracy when assessing their most critical procedures. Nipper automates the assessment of 88% of PCI DSS testing procedures relating to core network devices, producing detailed reports including recommendations for fixing any security issues.
Titania is a certified Center for Internet Security (CIS) member, helping clients reach the highest levels of cyber security. Our Nipper solution is trusted by public and private sector clients to automate the assessment of their network security against CIS benchmarks.
Cyber Essentials is a government-backed, industry-supported certification, seen as the first line of defense in protecting against cybersecurity risks. Nipper can help your organization prepare for certification by auditing your network devices and providing detailed reports showing risks and remediation recommendations.
Nipper accurately assesses 42 CMMC security practices across 9 domains, providing an actionable report within minutes. Reports can be integrated into SIEMs and GRC systems, helping you track your compliance throughout the network.
Taking just minutes to set up and run, Nipper automates the assessment of 34 (94%) of the NIST 800-53 core network controls across 10 control families to accurately assess compliance with FISMA.
Assess performance against the CDM Asset Management Capability, detect precise risks and evidence compliance against 33 NIST 800-53 controls with Nipper. Reports can be integrated into SIEM/SOAR systems, giving you a network-wide view of compliance.
Nipper is easy to configure for FedRAMP assessments and delivers accurate and detailed reports including remedial recommendations, within minutes, saving cloud service providers significant time and resources when auditing network devices.
Already in service with all four arms of the DoD, Nipper detects precise security and compliance risks against the Risk Management Framework. Our software’s proven accuracy advantage saves security teams up to 3 hours per device audit.
Entities handling protected health information can accurately assess their environment against the HIPAA Security Rule with Nipper. Our software delivers detailed and actionable reports within minutes, helping you maintain robust data security safeguards.
Titania Nipper is proven to protect military agencies, helping security teams identify and address any exploitable vulnerabilities or areas of non-compliance in their networks. Nipper automates device audits, taking just minutes to produce accurate reports with remedial recommendations for any vulnerabilities found.
Titania Nipper is trusted by federal and government agencies around the world to protect critical infrastructure. Our software accurately detects vulnerabilities, prioritizes risks and identifies regulatory/compliance gaps, giving your team visibility of your security posture and compliance status across complex networks.
With large attack surfaces, mission-critical facilities and highly valuable data, financial and banking institutions are continually at risk of cyber-attacks. Titania Nipper is trusted in the finance sector for accuracy in assessing compliance with PCI DSS and identifying network vulnerabilities.
Telco businesses are pioneers of emerging technologies, meeting demands of consumers and businesses and with this comes greater responsibility in ensuring cyber security resilience. Many leading Telcos are choosing to protect their networks with Titania Nipper as our software is scalable and proven to protect critical infrastructure.
Trusted by the ‘Big Four’, Titania Nipper is the audit tool of choice for large and small consultancies around the world. Our software’s virtual modelling technology saves security teams 3 hours per device audit, accurately identifying vulnerabilities, prioritizing risks and recommending remediation actions.
Healthcare providers are expected to conduct regular reviews of networks that handle patient data and keep pace with updates in security regulations. To help organizations comply with standards like HIPAA, Titania Nipper automates accurate detection of vulnerabilities, significantly reducing time and resources needed for maintaining compliance.
RMF checks and compliance audits can be automated with Nipper, freeing up your team to focus on more strategic activities. Nipper can be run in offline mode for locked-down/air-gapped networks and generates detailed compliance reports that prioritize risks and recommend precise actions to fix any issues raised.
Assured by the accuracy of our virtual modelling technology, many vulnerability assessors are turning to Nipper to identify and prioritize vulnerabilities, saving up to 3 hours per device audit. Nipper reports can be branded with your logo to ensure a consistent experience for your client.
ISAs and QSAs around the world trust Nipper to automate the assessment of vulnerabilities and compliance against the PCI DSS standards, saving up to 3 hours per device audit. Our software accurately identifies and prioritizes risks and provides detailed remediation recommendations for each non-compliance issue found.
At the frontline of defense against network compromises and with an ever-increasing workload, NOCs are turning to Nipper to automate their device audits. Improve your mean time to detect misconfigurations and vulnerabilities in your core network devices and speed up remediation with Nipper’s detailed recommendations for each risk found.
Proven to significantly reduce the mean time to detect misconfigurations and vulnerabilities in network devices, Nipper is helping SOCs around the world build operational confidence in threat detection and management. Our software can be integrated into your SIEM/SOAR system, giving you a scalable, network-wide view of your security posture.
Trusted by MSSPs around the world, Nipper is proven to generate accurate, consistent and reliable reports, with the level of detail clients need to improve their security posture. Free up your time from configuration auditing and report writing by automating the whole process, so you can focus on the more value-add activities.
Nipper has a wealth of different report options to fit your auditing needs
Best Practice Security Audit
Perform a Best Practice Security Audit (combining multiple industry checks).
Use rating systems and mitigation advice to prioritize and plan your fixes.
Detailed configuration reporting
Including: filtering, routing protocols, administration services and more.
This report offers a quick, clear view of your device settings.
Audit against globally known vulnerabilities
Including US Government National Vulnerability Database (NVD) and NIST Common Vulnerability and Exposure (CVE) databases. Security issues in the public domain are easy to exploit; this report helps you quickly identify these risks.
The Center for Internet Security (CIS) benchmark reports
These reports can be run against Cisco ASA and IOS devices. The reports have been externally certified by CIS and verified as auditing against their baseline.
PCI DSS audits
PCI (Payment Card Industry) audits perform the automatable system checks and supports integrating this verified data with nonautomatable policy checks. Results offer: detailed advice, verifying passes and explaining failures so you can quickly become compliant.
US Military STIG compliance
This audit was developed in conjunction with DoD IA user groups. Nipper is favored by many Government and Defense agencies because reports are detailed, verifiable and include remediation in line with STIG baselines. Reports can be generated offline for secure environments and scaled to audit any number of devices.
Compliance audit against SANS policy documents
The SANS Institute is a trusted industry body which also trains information security professionals. Their policy is a compliance benchmark to audit against in order to assess your security level.
Cisco PSIRT audits
The Cisco PSIRT audit analyses devices against Cisco’s community managed list of security advisories, reporting identified vulnerabilities, including Cisco’s Security Impact Rating (SIR) and the respective Common Vulnerability Scoring System (CVSS) base score for each vulnerability.
Nipper combines pen tester expertise and virtual modeling technology to accurately audit your network devices (firewalls, switches and routers), analyzing the configurations and interactions of your network infrastructure.
Impact assessments and prioritization of vulnerabilities within the reports will help you allocate resources, and the remediation advice and exact technical fixes provided help reduce mean time to remediation.
Find out in 2 minutes how Nipper can improve your security posture
Nipper 2.10 extends support up to and including PAN-OS 9.1
The latest release of Titania Nipper extends support up to PAN-OS 9 and 9.1, providing richer reports and assured accuracy for users auditing Palo Alto firewalls.
Yes, Nipper reports can be exported in a JSON format and integrated into your SIEM or SOAR system, allowing you to group, classify and prioritize vulnerabilities across your network.
You can now visualize your Nipper reports in Splunk
View all your audit reports in one dashboard with our Splunk integration. Get high-level information on your devices, as well as the ability to drill down for more detail. Download the Nipper app from Splunkbase here.
Are you using Elastic? You can now aggregate your audit reports in Elasticsearch!
Nipper’s accurate audit data – such as your detailed compliance posture against standards including DISA STIG, DHS CDM/NIST 800-53 and PCI – can now be injected into the Elastic Stack via JSON, where the combined solution provides greater scope to analyze and remediate large numbers of your machines on a daily basis. The Kibana dashboard then gives you the power to examine your security posture from different angles, filtering by categories of error and drilling down to precise detail about devices/models impacted and how to mitigate risks.
To learn how to aggregate your Nipper audit reports in Elasticsearch and explore the data in Kibana – download the guide here.
We update the resources within Nipper, ie the Common Vulnerabilities and Exposures (CVEs) list from the National Vulnerability Database (NVD), with each software release.
If you would like to update these at any other time, we provide a method for updating the CVEs whenever you need to, so that you can be certain the audit reports are as up-to-date as possible. A guide on how to do this can be found in the 'Help & Information' section on the home screen within Nipper.
Our licensing works on a per device (firewall, switch or router) basis by associating a device usage to an audited configuration. Once the device usage has been assigned to a device you will not be able to reallocate the usage, but you will be able to audit this device as many times as you need to for the entirety of your subscription.
If you have multiple year licenses the device usage will be reset every 12 months from the license creation date.
Of the 12 PCI DSS requirements, Nipper can automate requirements 1, 2, 6, 8, 10 and 11 (88% of the testing procedures relating to core network devices).
Yes, you can, installing and activating Nipper on multiple workstations allows users to access the license to audit devices across different teams, departments, or locations.
When activating Nipper on multiple workstations we suggest that you set the update check to happen on every use, to monitor the device usage accurately.
To change the update settings, go to the home screen of Nipper and click on 'Change Settings'. Select 'Maintenance' and amend as needed using the 'Check Interval' drop-down menu.
Scanners act as an attacker would, running attacks on devices and extrapolating weaknesses based on the results. They look at external data (results from attacks).
In contrast, Nipper analyses the configuration of firewalls, switches and routers ie. how devices will actually respond to any query or intelligent security scenario. Using virtual modeling technology, Nipper identifies any vulnerabilities in the settings and rule interactions and delivers a detailed and actionable report within minutes. Because our software analyses the actual configuration file, audits can be run with minimal contact with the device, therefore leaving a small footprint.
Using both scanners and Nipper will help you achieve a much higher level of security than using scanning tools alone.
Visibility of actual network vulnerabilities including existing false-negatives
