Carahsoft is pleased to offer Trustwave's DbProtect and AppDetectivePro products. AppDetectivePro, for auditors and IT advisors, and DbProtect, for the enterprise, deliver the industry's most comprehensive database security solution and empower organizations to assess, monitor and protect their most critical database assets in real time while simplifying audits, monitoring risk, and automating compliance requirements.

  • DbProtect

    DbProtect is a centrally managed enterprise solution for comprehensive database security process control. Based upon proven technology, the DbProtect platform integrates database asset management, vulnerability management, rights management, policy management, database activity monitoring and reporting, and analytics for a complete enterprise solution. DbProtect enables organizations with complex, heterogeneous environments to optimize database security, manage risk, and bolster regulatory compliance.

    • Collect - automates database discovery and collects data
    • Analyze - analyzes the data to highlight risks and vulnerabilities
    • Remediate - provides tools and instruction to remediate issues
    • Enforce - enforces security through precision monitoring
  • AppDetectivePro

    A network-based discovery and vulnerability assessment scanner, AppDetectivePro discovers database applications within your infrastructure and assesses their security strength. Backed by a proven security methodology and extensive knowledge of application-level vulnerabilities, AppDetectivePro locates, examines, reports, and fixes security holes and misconfigurations and identifies user rights and privilege levels. As a result, enterprises can proactively harden their database applications.

    • Discovery - scans and identifies all databases on any network
    • Vulnerability Assessment - identifies vulnerabilities and misconfigurations
    • User Rights Review - scans and identifies inappropriate user privileges


GSA Schedule Contracts

GSA Schedule 70

GSA Schedule 70 GSA Schedule No. GS-35F-0119Y Term: December 20, 2011- December 19, 2021

SEWP Contracts


Contract Number: Group A Small: NNG15SC03B Group D Other Than Small: NNG15SC27B Term: May 1, 2015 - April 30, 2020

Federal Contracts


Vendor(s): CoN Certified Term: March 2015-March 2020

State & Local Contracts

City of Seattle Contract

Contract #0000003265 Term: June 17, 2017


Contract # CMAS 3-12-70-2247E Term: through September 30, 2017

Fairfax County IT Hardware, Software, & Services

Virginia- Fairfax County CONTRACT EXPIRATION: October 4, 2020 (with 5 option years)

Ohio State Contract- 534354

Contract # 534354 Term: June 17, 2017

Orange County National IPA Co-Op

Through May 31, 2020 (with 2 option years)

Texas DIR-SDD-2035

Expiration Term: July 3, 2017


Contract Number: UVA1482501 Contract Term: May 2, 2014– June 17, 2017



Latest News

Trustwave today announced that its database security products received their Certificate of Networthiness (CoN) from the U.S. Army, approving their use in the Army Enterprise Infrastructure (AEI).


The Trustwave Web Application Firewall (WAF) provides the ability to identify vulnerabilities in web codes and applications in addition to the ability to virtually patch these vulnerabilities. Trustwave WAF also delivers the ability to monitor policy configurations of web servers, track, and control...

The Department of Homeland Security (DHS) Continuous Diagnostics and Mitigation (CDM) Tools and Continuous Monitoring program, is designed to assist U.S. Federal Government agencies in developing and deploying a comprehensive risk and security management solution.

Each scan engine is typically installed on a host with 8-16 GB RAM, 2-4 Precessor Cores 2.0 GHz+, 50 GB free disk space running Windows Serve 2003 or Windows Server 2008 or Window Server 2008 R2 or Windows Server 2012 64-bit Standard Editions or higher. in order to run authenticated vulnerability or...

DbProtect is a data security platform that uncovers database configuration mistakes, identification and access control issues, missing patches, or any toxic combination of settings that could lead to escalation of privileges attacks, data leakage, denial-of-service (DoS), or unauthorized modificatio...

Provide recipient with the knowledge of their Risk Exposures and Compliance posture for their databases, prioritize them and understand how a continuous process would improve an organization’s database security & compliance program’s effectiveness.

If cybercrime is a business, you can consider this report your guide to its business plan. Use it to learn more about what the criminals are doing now, what they may do in the future, and the steps you can take to keep them away.

When installing AppDetectivePRO you can configure it to install an embedded Microsoft SQL Server 2012 Express Edition that will be used specifically for the AppDetectivePRO installation or you can point it at an already installed Microsoft SQL Server instance on the host.

In 2012, the Office of Management and Budget identified continuous monitoring of federal IT networks as one of 14 CrossAgency Priority (CAP) goals, established in accordance with the Government Performance and Results Modernization Act. To support federal departments and agencies in meeting t...

AppDetectivePRO is a database and Big Data scanner that can immediately uncover configuration mistakes, identification and access control issues, missing patches, or any toxic combination of settings that could lead to escalation of privileges attacks, data leakage, denial-of-service (DoS), or unaut...