Upfort's Cyber Risk Report is a Perimeter Report, which will detect any publicly discoverable vulnerabilities in the Insured domain. Any vulnerabilities detected will be presented in the Cyber Risk Report, along with remediation steps.
An insured may ask about a Penetration test, also known as an Intrusion test. Upfort's Risk Reports are not intrusion tests. Here are some key differences:
| Upfort Risk Report | Intrusion test | |
| Global view of public-facing concerns | Yes | Potentially |
| Vulnerabilities potentially exploited | No | Yes |
| Continuous monitoring | Yes | Not typically |
| Easy to read report | Yes | Not typically |
| Attempts to gain access to systems | No | Yes |
Where the Perimeter Report differs from an Intrusion test is that a Perimeter Report will not attempt to take the place of a malicious actor and exploit the detected vulnerabilities to asses the secondary responses of the Insured's system.
By performing a Perimeter Report rather than a Penetration test, Upfort can provide an accessible vulnerability overview in real time, without needing to set up test parameters with stakeholders from the Insured, which would be required with an Intrusion test.
Comments
0 comments
Please sign in to leave a comment.