Skip to content

Vulnerability Scanner

Overview

Implementing use cases for vulnerability scanners to identify and mitigate security vulnerabilities within systems, networks, and applications.

Sample products

  • Tenable Nessus
  • Qualys QualysGuard

Use Case Categories

Category Description
Critical Vulnerability Identification Utilizing vulnerability scanner logs to identify and prioritize critical vulnerabilities within the infrastructure. This use case focuses on swift detection and assessment of high-risk vulnerabilities.

Core Use Cases

Alert Name Description
High-Risk Vulnerability Alerts Identifies and alerts on vulnerabilities assessed as high-risk to the organization.
Zero-Day Vulnerability Detection Detects vulnerabilities that are newly discovered and not yet patched (zero-days).
Unpatched Software Identification Flags software that is missing critical security patches.
End-of-Life Software Detection Identifies software that has reached its end-of-life and is no longer supported.

MITRE ATT&CK

Not Defined