Managing Your Scanner Module
Our scanner component just received a powerful update. Our monthly extensions continually improve perimeter discovery and asset checks for security issues. However, you couldn't manage those extensions.
Now, you can configure extensions in the scanner settings. Choose which extensions are relevant to your infrastructure.
Extensions are grouped by CWE. As an example, group CWE-200 Information Exposure includes detects of security issues that may expose sensitive data to the attacker. You can turn on or off any extension. For instance, activate extension to discover Git or SVN repository that is open to the world. Or disable check for the MongoDB admin panel without any authentication.
To customize your navigation, filter extensions using their tags. If you want to quickly find everything related to Java, search for its associated CVE. You can search through extensions by tags relating to technology, vulnerability type, or CVE.