IASM Agent
The IASM Agent is deployed within your internal network to enhance your internal security posture. It performs the following tasks.
-
Asset discovery: Scans your network to map and identify all connected devices.
-
Port scan: Determines open ports on discovered assets, revealing potential points of access.
-
Service enumeration: Identifies services and their versions running on open ports, providing insights for targeted vulnerability assessments.
-
Web application enumeration: Details web applications in use, enabling tailored security checks.
-
Vulnerability detection on detected web applications: Scans known vulnerabilities specifically related to discovered web applications.
-
WordPress CMS security: Scans vulnerabilities commonly found in WordPress CMS.
FortiRecon currently scans TCP ports only. |
The IASM Agent transmits the collected data to the FortiRecon for centralized analysis and reporting. FortiRecon performs vulnerability assessment against detected services/technologies and is cross-referenced with the FortiRecon threat intelligence database to identify exposure to known, actively exploited attacks.