Qualys retrieves credentials from Secret Server and then performs the authenticated scan to detect inside vulnerabilities. Secret Server integrates with Qualys to act as a secure vault for the credentials used for authenticated scans. The solution is to store privileged account credentials in an on-premise vault, which controls access, changes their passwords regularly, and provides secure, audited access to your vulnerability scanning tool. What happens to these credentials after they are used, and what happens if they are not stored securely and an attacker gets ahold of them? Though authenticated scans are valuable, they require privileged accounts so the scanner can access the network. By finding and fixing internal security holes, you can prevent an attacker who breached your perimeter defenses from moving deeper within your network. They are able to simulate what a user of the system can actually do. Authenticated scans allow vulnerability scanners to use privileged credentials to dig deeper into a network and detect threats around weak passwords, malware, installed applications, and configuration issues. Although unauthenticated scans will show weaknesses in your perimeter, they will not show you what the attacker will exploit once breaching your perimeter: weaknesses within your network. Unauthenticated testing alone will not fully simulate targeted attacks on your application or system. Is performing unauthenticated scans enough? This gives companies the ability to see their network from the eyes of an attacker. These scans find basic weaknesses and detect issues within operating systems, open network ports, services listening on open ports, and data leaked by services. Thousands of IT organizations across the world use vulnerability scanners to perform unauthenticated scans and find threats within their network.
0 Comments
Leave a Reply. |