Vulnerability Trending with Scanning, Sniffing and Logging

by Cody Dumont
June 6, 2013

With the introduction of the Log Correlation Engine 4.2, vulnerabilities and systems can now be discovered through log analysis. This report leverages log analysis discovery along with Nessus scanning and continuous network monitoring with vulnerabilities from the Passive Vulnerability Scanner.

The first chapter displays a 25 day trend line showing the total number of systems scanned, actively and passively, as well as the systems discovered through event monitoring.

The second chapter displays a 25 day trend line showing the total medium, high, and critical severity vulnerabilities discovered via the Nessus scanner, Passive Vulnerability Scanner (PVS), and the Log Correlation Engine (LCE).

The third chapter lists the top 10 vulnerabilities, sorted by severity, found through each different type of vulnerability discovery technology. There is a table for the vulnerabilities discovered through scans, sniffing, and event logging.

This report can be used to prove that your organization has adequate monitoring and coverage for its vulnerability and security programs.

The corresponding dashboard can be located here:

Vulnerability Trending with Scanning, Sniffing and Logging Dashboard