Scans
Service Fingerprinting Scan
Service Fingerprinting Scan assesses security posture by signature matching of CVEs in installed packages and services, detecting common misconfigurations and scanning for exposed secrets.
What is checked:
- 1Known CVEs mapped to installed package and service versions.
- 2Common misconfigurations such as weak TLS ciphers, overly permissive storage, and default credentials.
- 3Secrets in code or configuration (API keys, private keys, tokens).
Detection process:
- 1Fingerprinting: Collect package and service version data from hosts and images.
- 2Vulnerability mapping: Match package/version to vulnerability databases and advisories.
- 3Misconfiguration checks: Run configuration audits and TLS/certificate checks.
- 4Secrets scanning: Run targeted detectors and regex checks on code and configuration artifacts.
- 5Each finding includes a clear description and evidence like file, package details or command output would be provided.
- 6Actionable remediation steps like upgrades, configuration change or credential rotation.
- 7Service Fingerprinting findings are fed into CyfroAI Engine for deep assessments with the other scans to enhance data correlation.