Upon completion of this article you will understand how to view vulnerability information within the NopSec platform.
Last Updated: 10/25/2023
Overview
There are 2 areas in the NopSec platform that contain vulnerability details.
As a quick reminder, Vulnerabilities within the NopSec platform are dependent on the specific scanners you've integrated as several provide a concept of a "plugin" or "vulnerability" which may be a roll up of several CVEs in one. Vuln Instances are the specific CVE for a Vulnerability seen on a specific Target. For more details read the Onboarding article on Vulnerability vs Vuln Instance.
The following steps will guide you through viewing asset details in the NopSec Platform:
Default Prioritize View:
- By default you will be taken to the “Prioritize” page when logging into the Nopsec Platform. The Prioritize page will provide a summary view of the most recent vulnerabilities ingested from your scanners. Column headers can be dragged and dropped to provide a more customized view of the data.
Group by Vulns View:
- At the top right of your console select “Vulns” next to the “Group By” option.
- Click on the “eye” icon to access the vulnerability details pop out page.
- Use the tabs within the page to view additional details to include:
- References - Additional links and information including deep links, known malware and exploitability data.
- Threat Intel - Additional threat intelligence references.
- Also notice that each vulnerability has a column for # of Targets and # of Vuln Instances. This shows you how prevalent this vulnerability is in your network.