Control Compliance Suite
Control Compliance Suite isn’t a vulnerability assessment product; however at any point in time you can have CCS run a query to identify exactly which versions of Bash you have on your various Linux and UNIX systems.
CCS customers can also take advantage of the auto-discovery capabilities to discover rogue assets as well as to find rogue assets and identify which Apache web services are installed by default, but not used. With this information, the customer can then utilize Critical Systems Protection or DCS: Server Advanced to invoke the IPS, application control, and sandboxing capabilities to harden their infrastructure.