Attack Surface View
Attack Surface View filters through Asset View for cloud resources not only have vulnerabilities but also reachable via the internet. Attack Surface View acquired its vulnerability findings through AWS Inspector rule - Network Reachability. Network Rechability checks for any network configuration that may be exposed to network intrusion.
AWS Network Reachability needed to be activated and setup to use the Attack Surface View feature. For more info, please see Activate Asset and Attack Surface View. |
To access Attack Surface View, go to Resource from FortiCWP dashboard, click on Attack Surface View in the top right hand corner.
Navigate Attack Surface View
- Click right arrow sign > of any cloud resource to display the Vulnerability and Internet-reachable tabs.
- The Vulnerability tab shows the vulnerability findings of the cloud resource , you may sort the findings by Severity level.
- Click View Details to show description of the vulnerability finding and get recommendation on remediation provided by https://cve.mitre.org/.
- Click Internet-reachable tab to show all the processes and ports that are reachable from the internet, you may sort the findings by Severity level.
- Click View Details to show description of the internet reachable findings and get recommendation on remediation.
Risk Score - Risk Score displays the overall risk of the cloud resource using statistical analysis provided by Fortinet over the vulnerability findings. You may sort the table based on the risk score.
Vulnerability- Vulnerability column shows a divided bar graph of the number of vulnerability findings per vulnerability level.( Critical, High, Medium, etc.)