Version:

Version:

Version:

Version:


Table of Contents

Online Help

Attack Surface View

Attack Surface View filters through Asset View for cloud resources that not only have vulnerabilities but are also reachable via the internet.

Attack Surface View acquired its vulnerability findings through AWS Inspector rule - Network Reachability. Network Rechability checks for any network configuration that may be exposed to network intrusion.

AWS Network Reachability needs to be activated and setup to use the Attack Surface View feature. For more info, please see Activate Asset and Attack Surface View.

To access Attack Surface View, go to Resource from FortiCWP dashboard, click on Attack Surface View in the top right hand corner.

 

Navigate Attack Surface View

    Risk Score - Risk Score displays the overall risk of the cloud resource using statistical analysis provided by Fortinet over the vulnerability findings. You may sort the table based on the risk score. For more details on risk score, please see Appendix D - Risk Score Algorithm.

    Vulnerability- Vulnerability column shows a divided bar graph of the number of vulnerability findings per vulnerability level.( Critical, High, Medium, etc.)

  1. Click right arrow sign > of any cloud resource to display the Vulnerability and Internet-reachable tabs.
  2. The Vulnerability tab shows the  vulnerability findings of the cloud resource , you may sort the findings by Severity level.
  3. Click View Details to show description of the vulnerability finding and get recommendation on remediation provided by https://cve.mitre.org/.
  4. Click Internet-reachable tab to show all the processes and ports that are reachable from the internet, you may sort the findings by Severity level.
  5. Click View Details to show description of the internet reachable findings and get recommendation on remediation.

 

 

 

 

 

 

Attack Surface View

Attack Surface View filters through Asset View for cloud resources that not only have vulnerabilities but are also reachable via the internet.

Attack Surface View acquired its vulnerability findings through AWS Inspector rule - Network Reachability. Network Rechability checks for any network configuration that may be exposed to network intrusion.

AWS Network Reachability needs to be activated and setup to use the Attack Surface View feature. For more info, please see Activate Asset and Attack Surface View.

To access Attack Surface View, go to Resource from FortiCWP dashboard, click on Attack Surface View in the top right hand corner.

 

Navigate Attack Surface View

    Risk Score - Risk Score displays the overall risk of the cloud resource using statistical analysis provided by Fortinet over the vulnerability findings. You may sort the table based on the risk score. For more details on risk score, please see Appendix D - Risk Score Algorithm.

    Vulnerability- Vulnerability column shows a divided bar graph of the number of vulnerability findings per vulnerability level.( Critical, High, Medium, etc.)

  1. Click right arrow sign > of any cloud resource to display the Vulnerability and Internet-reachable tabs.
  2. The Vulnerability tab shows the  vulnerability findings of the cloud resource , you may sort the findings by Severity level.
  3. Click View Details to show description of the vulnerability finding and get recommendation on remediation provided by https://cve.mitre.org/.
  4. Click Internet-reachable tab to show all the processes and ports that are reachable from the internet, you may sort the findings by Severity level.
  5. Click View Details to show description of the internet reachable findings and get recommendation on remediation.