View source IP addresses for Attack Surface Testing scans - Administrator Guide - Cortex XSIAM - Cortex - Security Operations

Cortex XSIAM Administrator Guide

Product
Cortex XSIAM
Creation date
2024-07-16
Last date published
2025-01-19
Category
Administrator Guide

To view the IP address range Cortex XSIAM uses for vulnerability tests, navigate to Detection &Threat IntelAttack SurfaceAttack Surface Testingand refer to the Source IP Addresses section. We recommend adding this range to your organization's security tooling allow lists to avoid unnecessary alerting; however, we do not recommend modifying the configuration of your perimeter security controls to allow this traffic to pass. The aim of Attack Surface Testing is to confirm the exploitability of vulnerabilities from an attacker perspective.