The first time you set up attack surface testing, Cortex XSIAM will prompt you to accept the terms of the End-User Licensing Agreement (EULA), which gives Cortex XSIAM permission to conduct attack surface testing scans. You must have a role that includes edit permission for Vulnerability Testing to accept the EULA. After accepting the EULA, you will be prompted to select whether to run tests against all relevant targets or a specific set of targets.
Note
To view or configure Attack Surface Testing your role must have Vulnerability Testing permission. To check your role-based permissions go to → → → , select a role, and find Vulnerability Testing on the Components tab under →
Navigate to → → .
On the Welcome to Vulnerability Testing page, click Next.
Read the End-User Licensing Agreement and click Accept Terms.
On the Set up Vulnerability Testing page, select one of the following options. In both cases all attack surface tests are enabled by default.
Run tests on all targets—This option enables Cortex XSIAM to run all relevant tests on all of your directly-discovered active services. If you select this option, Attack Surface Testing setup is complete.
Run tests on specific targets—This option opens the Vulnerability Testing page under Settings, so you can specify the targets on which Cortex XSIAM will run attack surface tests. See ???.
