Vulnerability Assessment

Threat Stack's vulnerability assessment capabilities allow you to detect and remediate vulns across your entire cloud infrastructure.

The Threat Stack Approach

Prioritize Risk For Faster MTTR

A Threat Stack Cloud Security Platform® vulnerability assessment identifies vulns according to greatest risk, enabling you to quickly act on your most critical risk.

Control Your Vulnerability Attack Surface

Focus on what matters. The Threat Stack Cloud Security Platform detects installed packages that are vulnerable and exposing you to risk.

Complement Known Vulnerabilities with Unknown Risks

Threat Stack vulnerability assessments apply machine learning and behavioral detection rules to identify anomalous runtime activities from your users, adding valuable context that can help connect the dots between vulnerable packages and risky commands.

Gain Visibility Into Your Vulnerable Servers

A Threat Stack vulnerability assessment gives you a list of all your running servers and a summary of vulnerable packages on each. You can click on any server to see additional information about vulnerable packages with links to the NVD CVE entry and OS security notices.

Context to Focus on What Matters Most

Many solutions give you a list of vulnerabilities without context, forcing you to hand over a long list of fixes to your Development or Operations teams. In contrast, Threat Stack provides the context you need to help sort your vulnerabilities by CVE, attack vector, package, and severity, so your team can focus on the highest severity issues in a way that makes sense to them.

Coverage Across Your Threat Landscape

Threat Stack helps you prioritize fixes by showing you which vulnerable packages are on servers that are online. Threat Stack’s integration with Amazon EC2 allows you to group and filter your infrastructure based on key EC2 properties, like AMI ID and EC2 tags, so you can better prioritize risk in the context of your environment.

Identify the Attack Vector

To help you narrow down even further, Threat Stack can sort risk by attack vector, such as Local, Network, and Adjacent Network, providing you with context to help understand how the vulnerability could be exploited.

Sort by Severity

Finally, a Threat Stack vulnerability assessment can sort by the NVD-CVSS score — High, Medium, or Low — so you can see which vulnerabilities have the greatest risk associated with them.

Ready to secure your cloud?

Meet with us today.

Threat Stack is here to support you in achieving your goals for securing your entire cloud infrastructure and application stack. Schedule time with us today to explore how the Threat Stack Cloud Security Platform combines deep telemetry collection with rules, ML, and analytics for continuous cloud security monitoring.

Cloud Security Platform call-to-action