External Assets

External Scan - Wordpress(plugin versions), Jenkins etc. vulnerabilities detection

To increase the value of external asset vulnerability management or external scanning in general would be the ability to detect Wordpress plugins that are either outdated or have critical vulnerabilities. Same would go for Jenkins and other website components that threat actors can detect through scanning.

Insecure Open Ports indicator on Metrics Page

The Metrics page is misleading in that insecure, open ports are not listed as a vulnerability there so at a glance it appears there are no issues.

Powered by Canny