Vulnerability Scanning
Vulnerability Scanning
Vulnerability scanning is the practice of using automated tools to identify known vulnerabilities in systems, applications, and networks.
Scanning tools compare the configuration of a system to a database of known vulnerabilities and generate a report of the findings. Scanning tools can be used to identify vulnerabilities in a wide range of systems, including operating systems, applications, and network devices. The results of a vulnerability scan can be used to prioritize remediation efforts and reduce the risk of exploitation by adversaries.
Vulnerability Discovery vs. Vulnerability Scanning
Vulnerability Discovery is the process of finding new vulnerabilities in software or hardware. This is distinct from Vulnerability Scanning, which is the process of using automated tools to find known vulnerabilities in software or hardware. Vulnerability scanning is a useful tool for finding known vulnerabilities in a system as part of a vulnerability management program, but it is not a substitute for vulnerability discovery.