Continuous Vulnerability Scanning
One-time scans are no longer sufficient to manage modern threats
AIS leverages OpenVAS - Open Vulnerability Assessment Scanner to perform automated, proactive, Network Vulnerability Tests(NVT) across a client's entire IT environment. The Greenbone Community Feed provides daily NVT updates as new vulnerabilities are discovered to enable quicker detection of zero-day threats. Combined with other NVT sources, this enables automated, real-time scanning for over 100,000 different vulnerabilities.
What it does:
What it does:
- Runs NVT scripts for each vulnerability against each network host to positively identify if the host is susceptible to specific threats.
- Vulnerability definition details are primarily based on Mitre CVE or Carnegie Mellon CERT databases.
How it works:
- Separate IT environment discovery tools identify client hostnames and IP addresses of on-premise, cloud, and SaaS resources.
- Internal network vulnerability scanning is possible via an existing AIS NMS deployment.
By default, NVT scripts that may cause outage by testing for disruptive vulnerabilities are disabled by default and can be configured to run during an established maintenance window or on-demand. Scan frequency and report generation is also configurable.
Last modified
July 7, 2021