Skybox detects network devices' vulnerabilities without scanning


One of the very interesting use cases of Skybox Security modules - specifically Firewall Assurance and Network Assurance - is an ability to detect vulnerability simply by analysing collected configuration files.

In the recent article on Skybox Security blog page, Marina Kidron, a director of threat intelligence and leader of the Skybox Research Lab, explained how customers get benefit of early detection of critical Cisco vulnerabilities.


“The difficulty with the vulnerabilities on network devices is that such devices are made to resist reconnaissance activity as a safeguard against attackers attempting to probe the device. Unfortunately, active vulnerability scans are viewed as reconnaissance, and the device doesn’t give up any information as to the vulnerabilities it may host” — Marina Kidron


In our experience, the roll-out of Skybox Security Firewall and Network Assurance modules greatly improves not only visibility of the network design, compliance with security policies, but also risks associated with unpatched network devices. As it is not uncommon for organisations to run unpatched network devices and firewalls, the focus of operations security managers should be offloading vulnerability management of network devices to their owners - managers of network teams.

The best way, in our opinion, is to provide access for network teams to Skybox so they see discovered vulnerabilities and can schedule security fixes appropriately.

Contact us to find our more on how Skybox and Foresight Cyber can help your organization improve network security.

2 views

Foresight Cyber

71-75 Shelton Street 

Covent Garden

London

WC2H 9JQ

United Kingdom

+44 208 159 8942

info@foresightcyber.com

Legal

VAT: GB144735213 

Company number: 06871193 

D-U-N-S number: 211601017

UK ICO number: 00011202777

Privacy Policy

Social

  • LinkedIn
  • Twitter
  • YouTube
  • Vimeo

Copyright © 2009 -2020 Foresight Cyber Ltd. All rights reserved. Foresight Cyber are registered trademarks. Foresight Cyber Ltd is a company registered in England and Wales. Registered No: 06871193. Registered office: 71-75 Shelton Street, Covent Garden, London, WC2H 9JQ, United Kingdom