- Access exclusive content
- Connect with peers
- Share your expertise
- Find support resources
This blog was written by Greg Heon and published on April 15, 2024.
As organizations’ attack surfaces continue to grow, we’ve seen that traditional vulnerability testing is insufficient to secure an organization’s externally-facing assets. Conventional vulnerability management (VM) tools lack a comprehensive inventory of known and unknown external assets. This means that external vulnerability testing is incomplete as well as manual and infrequent.
To address this challenge, Cortex Xpanse has introduced Attack Surface Testing (AST), which runs unintrusive, benign exploits with explicit user authorization to confirm vulnerabilities in an organization's services.
Unlike traditional vulnerability management tools, AST performs daily scans against an automatically updated list of external organization-owned assets for comprehensive coverage. Its sophisticated scanning methods prevent network congestion, and its targeted testing approach enables organizations to prioritize vulnerabilities more effectively.
Cortex Xpanse Attack Surface Testing can be configured to run on all Xpanse-discovered assets or customer-defined subsets. It conducts targeted tests based on service type, reducing the likelihood of service degradation due to testing and significantly improving scanning cadence and coverage. It can be easily configured from your Xpanse instance, without the need for any devices or agents. confirmed vulnerabilities do not open new alerts or incidents, and results are integrated with Xpanse’s best-in-class incident prioritization workflows to aid in efficient remediation using our Active Response Module.
Attack Surface Testing is a part of the Xpanse 2.5 release, which will become generally available to all customers starting April 14th, 2024. This release also includes additional features and capabilities to help you manage your attack surface more efficiently.
For a complete list of the new capabilities and features, please see the Cortex Xpanse 2.5 Release Notes.
Organizations can respond to threats at machine speed with comprehensive discovery, dynamic assessment, and automation-first remediation capabilities provided by Xpanse. Xpanse has helped several organizations to shrink and secure their constantly growing attack surface.
To learn more about attack surface management, please read Expander from Cortex Xpanse.
1 Go SSH Scanner,” GreyNoise, last accessed March 13, 2024.,
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Subject | Likes |
---|---|
3 Likes | |
2 Likes | |
1 Like | |
1 Like | |
1 Like |