Set up Attack Surface Testing - User Guide - 2 - Cortex XPANSE - Cortex - Security Operations

Cortex Xpanse Expander User Guide

Product
Cortex XPANSE
Version
2
Creation date
2024-08-29
Last date published
2024-11-12
Category
User Guide
Solution
Cloud

To set up Attack Surface Testing for the first time, complete the following tasks:

  1. Verify that you have edit permission for Vulnerability Testing.

    To check your permissions, go to SettingsConfigurationsAccess ManagementRoles, select the role. Select the Components tab, and find Vulnerability Testing under Incident ResponseDetections.

  2. Accept the End-User Licensing Agreement (EULA).

    The EULA gives Cortex Xpanse permission to conduct attack surface testing scans. You only need to accept the EULA once. After accepting the EULA the Vulnerability Testing Configuration page will open automatically so you can select the targets for testing.

  3. Select targets for attack surface testing.

    In this task, you'll select the directly-discovered services upon which Cortex Xpanse will run attack surface tests. After the initial set-up, you can update this set of targets anytime.

After you complete the set-up tasks, Cortex Xpanse will begin daily attack surface testing scans. You can perform the following post-setup tasks to access attack surface test results and change your attack surface testing configuration.

Accept the End-User Licensing Agreement (EULA)

  1. Navigate to RulesVulnerability Testing.

  2. On the Welcome to Vulnerability Testing page, click Next.

  3. Read the End-User Licensing Agreement and click Accept Terms.

After accepting the terms of the EULA, the Vulnerability Testing Configuration page will open where you can select the set of services to be tested.