Skip to main content

Overview of the Exposure Analysis Exercise

The Forward Networks platform enhances the assessment of host vulnerabilities by integrating results from vulnerability scanners (see Exposure Analysis for supported EDR platforms) with additional risk attributes. This integration provides a more comprehensive context for risk assessment and prioritization of remediation efforts.

Estimated Completion Time

15 minutes

Exercise 1: Accessing the Exposure Analysis Application

  1. Access Exposure Application

Objective: Familiarize yourself with the Exposure Analysis application and understand the scope of vulnerability data available.

Exposure Analysis

  1. Navigate to Exposure Analysis: Go to Security -> Exposure in the Forward Networks platform.

  2. Overview Section: Expand the Overview section to view the number of vulnerable hosts identified by the scanning tool (supporting Rapid7 & Tenable), the number of hosts modeled by Forward Networks, and the number of hosts associated with a specific/configured Exposure point.

    Exposure Analysis

Exercise 2: Analyzing Vulnerability Data

Objective: Dive deeper into the vulnerability data for hosts at a specific Exposure point to understand the risks and prioritize actions.

Steps:

  1. Expand Vulnerability Report: In the Exposure Analysis application, expand the Vulnerability report section.
  2. Filter and Select Hosts: Use the filters at the top of the table to narrow down the list to targeted host Names/IPs, Vulnerable services, and Criticality. Select a specific host from the table for further analysis.

Exercise 3: Investigating Connectivity and Blast Radius

Objective: Explore the connectivity details and Blast Radius for a selected host to gauge the potential impact and inform remediation strategies.

Steps:

  1. Acquire Connectivity Details: Click on the magnifying glass icon on the right side of the table to access connectivity details for the selected host.
  2. Blast Radius Analysis: Also on the right side, find and click the link for Blast Radius to gain insights into the potential spread of vulnerabilities and identify next steps for mitigation.

Key Insights

  • Integrated Vulnerability Information: The Forward Networks platform integrates host vulnerability information with flow analysis features, offering a more nuanced risk assessment.
  • Actionable Insights: By associating additional risk attributes with hosts, the platform provides actionable insights that go beyond the basic results of vulnerability scans.
  • Enhanced Risk Assessment: The ability to analyze connectivity details and the Blast Radius of vulnerabilities enables a more effective prioritization of remediation efforts based on the potential impact.

Resources

Exposure Analysis