Outpost24 Summary

The integration of Outpost24 with the Centraleyezer Vulnerability Management platform enhances the import and management of security findings related to web application and network vulnerabilities. This collaboration enables organizations to efficiently identify, prioritize, track, and remediate vulnerabilities, thereby improving their overall security posture and risk management.

Outpost24 Key Features

  • Data Import:

    • Import vulnerability findings from Outpost24 into Centraleyezer, either on-demand or via automated schedules.

    • Supported formats: XML.

  • Detailed Findings:

    • Centraleyezer provides comprehensive details on vulnerabilities detected by Outpost24 tools.

  • Risk Scoring:

    • Configurable severity values for Outpost24 findings, adjustable based on organizational risk policies.

  • Selective Data Import:

    • Supports filtering based on status, scan type, and severity for more precise data imports.

Considerations

  • The integration supports mapping one Outpost24 instance with one Centraleyezer instance.

  • Configuring a different Outpost24 instance in the plugin will overwrite previously imported data.

Requirements

  • System Requirements:

    • Centraleyezer Prerequisites: Latest version of the Centraleyezer Vulnerability Management Platform recommended.

    • Outpost24 Prerequisites: API access must be enabled with proper authentication and must support export of findings and API-based integration.

  • Permissions and Roles:

    • Centraleyezer: Requires System Admin or Application Security Manager permissions.

    • Outpost24: User access for vulnerability scan information.

    • Import mappings require admin-level permissions.

Release Notes

Version 1.0.0:

New mappings for findings from Outpost24 include:

    • Asset (IP)

    • Name

    • Description

    • Recommendation

    • CVSS

    • CVSS Vector

    • Criticality

    • CVE ID

    • Port

    • Protocol