Please Add MAX Risk Intelligence to Navigator Bar for Quicker Login
MSP Risk Intelligence
Several customers / prospects have requested that there be some indication when a new open port is detected on PCI, Data Breach Risk, and Security Scans are run. This would be very helpful WRT incident response
Several Customers/Prospects have suggested that MAX Risk Intelligence should generate log events (syslog) when scans detect certain issues. Would be nice if new "log" button could be added to reports along side the "exclude" button that could enable customer to generate syslog events or not when issues detected. For example: 1.) Vulnerabilities are detected 2.) Open ports are detected 3.) Software updates detected (inventory ...more »
Several customers have requested that Inventory Scan Report Indicate via annotation that software images have changed since last scan. It's suggested that the current and previous hash value (MD5, SHA1, SHA256) of the software images (O/S, application, etc.) be compared and that some annotation be added when changes occur. It would also be useful to print the current and previous hash values be printed when they don't ...more »
Would like scan results to be exported to .xml format so we can generate our own custom reports. Currently, output is only available as CSV format, and that doesn't included the matched data. What I'd like to see is everything that is included when viewing the report for a single scan online. See file attached for screen capture. The online report shows the type of regex string (with the name of the regex included), and ...more »
The new integration is great but we need notification that a scan has failed. Currently I have customized the script to output to a text file when the scan fails and then I have a check that fails if the text file exists. It should be easy enough to implement this check when the feature is enabled.
When I load a vulnerability report on a target machine I see only that report. When I load a breach report I see BOTH reports. It is a given that right now, and according to most MSP policies, every Vulnerability report ever generated is going to fail. None of us EVER install updates the day they come out because that's the pathway to being a beta-bug-tester. So why they even have that report is beyond me, but be that ...more »
Let me start off by saying congratulations on creating one of the most useful tools I've seen hit the MSP space in a long time. The RI tool is awesome and I'm sure it'll only get better as the bugs get ironed out and feedback gets factored in. In the spirit of useful feedback, let me posit this: The RI reporting is beautiful. It's useful (to engineers). It's easy to work with (for engineers). It's freaking awesome! ...more »
We need to know what the software is scanning for in order to be able to accurately tell if we're getting a false positive in the PCI Breach Report. For example, I got a false positive today in a report stating that firstname.lastname@example.org emailed me the full card number in an email. Obviously that didn't happen. Something in that email matched up enough to trigger the algorithm, but I don't know what the settings are or ...more »
Add an Encrypt now button
When sensitive data or credit card information is found and after a Data Breach Risk / Pan & PCI scan users request to have an Encrypt now button for instant remediation and compliance.
The only client I have run this on had files that were flagged as containing credit card information when, in fact, they were files that were compressed and had random numbers that matched the length of credit card numbers. I could easily ohave produced a report showing progress on their system if I could have eliminated the false positives. As it stands, the report still shows problems. The dashboard policy or the specific ...more »
As an MSP, I'd like to be able to perform a batch download of the individualized device reports in PDF format to provide their area of risk in mass format.
Currently there is a report that combines all of the data from the devices or the ability to create a report which has links to all of the individual PDFs but this does not suit our needs when performing scans for large customers.