MSP Risk Intelligence

Feedback for MSP Risk Intelligence

MSP Risk Intelligence

Integration with Security Information Event Management (SIEM)

Several Customers/Prospects have suggested that MAX Risk Intelligence should generate log events (syslog) when scans detect certain issues. Would be nice if new "log" button could be added to reports along side the "exclude" button that could enable customer to generate syslog events or not when issues detected. For example: 1.) Vulnerabilities are detected 2.) Open ports are detected 3.) Software updates detected (inventory ...more »

Submitted by (@dean.trumbull)

MSP Risk Intelligence

Indicate via annotation that software images have changed

Several customers have requested that Inventory Scan Report Indicate via annotation that software images have changed since last scan. It's suggested that the current and previous hash value (MD5, SHA1, SHA256) of the software images (O/S, application, etc.) be compared and that some annotation be added when changes occur. It would also be useful to print the current and previous hash values be printed when they don't ...more »

Submitted by (@dean.trumbull)

MSP Risk Intelligence

Report output to XML format

Would like scan results to be exported to .xml format so we can generate our own custom reports. Currently, output is only available as CSV format, and that doesn't included the matched data. What I'd like to see is everything that is included when viewing the report for a single scan online. See file attached for screen capture. The online report shows the type of regex string (with the name of the regex included), and ...more »

Submitted by (@pdedes)

MSP Risk Intelligence

Remove Vulnerability Reporting from Data Breach Report Results

When I load a vulnerability report on a target machine I see only that report. When I load a breach report I see BOTH reports. It is a given that right now, and according to most MSP policies, every Vulnerability report ever generated is going to fail. None of us EVER install updates the day they come out because that's the pathway to being a beta-bug-tester. So why they even have that report is beyond me, but be that ...more »

Submitted by (@twistednetworx)

MSP Risk Intelligence

Customer-Facing Risk Analysis Reports Critical!

Let me start off by saying congratulations on creating one of the most useful tools I've seen hit the MSP space in a long time. The RI tool is awesome and I'm sure it'll only get better as the bugs get ironed out and feedback gets factored in. In the spirit of useful feedback, let me posit this: The RI reporting is beautiful. It's useful (to engineers). It's easy to work with (for engineers). It's freaking awesome! ...more »

Submitted by (@twistednetworx)

MSP Risk Intelligence

Layout the algorithm specifics for targeting PCI information

We need to know what the software is scanning for in order to be able to accurately tell if we're getting a false positive in the PCI Breach Report. For example, I got a false positive today in a report stating that service@paypal.com emailed me the full card number in an email. Obviously that didn't happen. Something in that email matched up enough to trigger the algorithm, but I don't know what the settings are or ...more »

Submitted by (@twistednetworx)

MSP Risk Intelligence

Risk Intelligence - Whitelist

The only client I have run this on had files that were flagged as containing credit card information when, in fact, they were files that were compressed and had random numbers that matched the length of credit card numbers. I could easily ohave produced a report showing progress on their system if I could have eliminated the false positives. As it stands, the report still shows problems. The dashboard policy or the specific ...more »

Submitted by (@shieldedge)

MSP Risk Intelligence

Batch download of individual Risk Intelligence reports

As an MSP, I'd like to be able to perform a batch download of the individualized device reports in PDF format to provide their area of risk in mass format.

 

Currently there is a report that combines all of the data from the devices or the ability to create a report which has links to all of the individual PDFs but this does not suit our needs when performing scans for large customers.

Submitted by (@dionjones)