SCANLESS VULNERABILITY ASSESSMENT

The scanless assessment feature utilizes data repositories such as patch and asset management systems to discover vulnerabilities on assets even in "unscannable" network zones and on network devices. It also automatically collects, normalizes and merges results from third-party scanners, filling in blind spots and creating a centralized, always-up-to-date vulnerability repository. On-demand vulnerability assessment gives you the power to detect and respond to emerging threats and zero-day vulnerabilities not in days, but hours — even minutes.

RISK-BASED VULNERABILITY PRIORITIZATION

Vulnerability Control uses the context of network topology, security controls, asset importance, exploit availability and more to quickly identify your vulnerabilities most likely to be used in an attack. Exposed and exploitable vulnerabilities on critical assets are highlighted as a top priority and receive the highest Skybox risk scores, focusing remediation efforts where it matters most.

REMEDIATION PLANNING TO TACKLE IMMINENT THREATS

Vulnerability Control alerts you to available patches and prioritizes those patches based on their impact to risk reduction. It also notifies you of available IPS signatures that would thwart potential attacks on the vulnerable asset. Thanks to its insight to network topology and security controls, Skybox can also help identify network-based changes — to ACLs and configurations — that will mitigate risk when patches aren't deployed.

It’s about being able to focus our efforts on the right things, for the right reasons, in the shortest amount of time.