Nautilus
creates an inventory of all IT assets (including servers, desktops, laptops, virtual
machines, containers, firewalls, switches, and printers) connected to a
network.
For each asset, it should also attempt to identify operational details
such as the operating system it runs and the software installed on it,
along with other attributes such as open ports and user accounts.
To let organizations monitor their networks, systems, and
applications for security vulnerabilities.
More still on its way
Most security teams utilize vulnerability scanners to bring to light security vulnerabilities in their computer systems, networks, applications and procedures. There are a plethora of vulnerability
scanning tools available, each offering a unique combination of capabilities.
Leading vulnerability scanners provide users with information about:
• Weaknesses in their environment
• Insights into degrees of risk from each vulnerability
• Recommendations on how to mitigate the vulnerability
Before purchasing a vulnerability scanning tool, it's important to understand exactly how scanning will contribute to your more broad vulnerability management and security posture strategy. Traditional
vulnerability scanning tools can play an important role in catching common CVEs if the scans are conducted frequently. Companies typically conduct vulnerability scans on their networks and devices
consistently because as their technology, software, etc. continue to
develop and undergo changes, there is a higher risk for threats to appear.
