FutureFeed allows you to import vulnerability scan results from any scanner and automatically create actions from those results. To import a vulnerability scan:
- Export vulnerability scan results from scanning tool.
- Many vulnerability scanning tools allow the scan results to be exported as Comma Separated Value, or CSV, files. FutureFeed supports importing CSV and XML files.
- Ensure data for each of the following fields (or at least those that your organization deems relevant) are included in the exported scan results:
- Asset ID - The name of the asset (device) that was scanned
- CVE - Common Vulnerabilities and Exposures, a unique ID assigned by the US-CERT.
- Host - IP address of the asset
- CVSS v3.0 Base Score - The Common Vulnerability Scoring System (CVSS) is an open framework for communicating the characteristics and severity of software vulnerabilities. CVSS consists of three metric groups: Base, Temporal, and Environmental. The Base metrics produce a score ranging from 0 to 10, which can then be modified by scoring the Temporal and Environmental metrics. Two common uses of CVSS are calculating the severity of vulnerabilities discovered on one's systems and as a factor in prioritization of vulnerability remediation activities. The National Vulnerability Database (NVD) provides CVSS scores for almost all known vulnerabilities.
- Protocol - The network protocol associated with the vulnerability that was discovered.
- Port - The network port on which the vulnerability was discovered.
- Name - The common name of the vulnerability.
- Synopsis - A short description of the vulnerability.
- Description - A more detailed description of the vulnerability.
- Solution - The solution published by the team reporting the vulnerability and/or the organization whose software and/or hardware is presenting the vulnerability.
- CVSS v3.0 Temporal Score - Metrics that change over time due to events external to the vulnerability, such as how often the vulnerability is being actively exploited.
- Click the Upload Scan button.
- Click the Upload data from file button.
- Navigate to your file, select the file, and click Open.
- Map the vulnerability scan fields to the FutureFeed fields (see this article for more details, include descriptions of the fields and their types).
Uploading vulnerability scan results regularly will allow you to track vulnerability trends and remediation efforts over time.
Popular vulnerability scanning tools include:
- Nessus by Tenable
- OpenVAS by Greenbone Security
- InsightVM (Nexpose) from Rapid7
Comments
0 comments
Please sign in to leave a comment.