 |
VOOZH | about |
|
VOOZH | about |
Scanning is the second phase in the hacking methodology and plays an important role in identifying critical vulnerabilities within a system or organization. An effective scanning process helps by detecting weaknesses that can be patched before attackers have a chance to exploit them. However, do vulnerability scans cover all possible weaknesses? To minimize these gaps, different approaches to vulnerability scanning come into play.
Vulnerability scanning is the process of identification of potential security weaknesses which can be targeted by hackers for attacking the computer network system. Vulnerability scanning helps in learning about the weakness of computer network systems, which can then be worked upon for increasing their security.
Read more about Vulnerability Scanning.
A credentialed vulnerability scan is a type of scanning where the scanner uses login credentials to access a system and inspect it. With this type of scan, the penetration tester can test vulnerabilities from an insider’s perspective like a trusted user which help in revealing configuration issues, outdated software, or missing patches that may not be visible through a non-credentialed scan. A credentialed scan is also known as Internal Scan.
Credentialed scanning is important because it provides a more accurate view of a system's security posture. External scan could help understand what weaknesses lie from the perspective of an outsider, but may ignore the vulnerabilities that may arise due to insider threats. Therefore, by pairing up both types of scan, a system can be made fool-proof to any kind of attacks. Here's why it's important:
A credentialed scanning is not always performed and is less popular as compared to external scanning, here are a few situations where it should be opted for:
It's important for a person handling the credentialed scans to understand not just its benefits but also its limitations. This scan offers deeper visibility into system vulnerabilities but it also comes with limitations that can affect how and when it should be used. Here are the key limitations:
Credentialed and uncredentialed scans are two different approaches used for vulnerability scanning. Credentialed scanning involves using valid login credentials that allows the scanner to inspect deeper into the system, identifying vulnerabilities that are only visible once logged in. On the other hand, uncredentialed scanning scan from an external attacker's perspective, where no valid login credentials are used. This type of scan assesses the vulnerabilities visible from the outside. While credentialed scans provide a more thorough assessment, uncredentialed scans are useful in understanding the risks exposed to external threats.
Here are the key differences between both the approaches:
| Credentialed Scan | Uncredentialed Scan |
|---|---|
| Uses valid login credentials to access the system. | Does not require login credentials |
| Provides deeper insights into system settings, configurations, and files. | Focuses on vulnerabilities visible from the outside, such as open ports and public services. |
| Can uncover internal issues like outdated software, misconfigurations, or missing patches. | Identifies external vulnerabilities like exposed services or entry points for attackers. |
| Results are more accurate with fewer false positives. | May produce higher false positives due to limited visibility. |
In conclusion, credentialed vulnerability scanning is approach that provides an in-depth understanding of a system's vulnerabilities by scanning from an insider's perspective. Unlike external scans, credentialed scans can uncover hidden weaknesses, such as misconfigurations and outdated software. While credentialed scans has many advantages, they also come with challenges such as managing credentials and ensuring proper configuration. By using credentialed scans alongside external scans, organizations can create a stronger security posture.
