Overview / Dashboard

Owned by Ryan Seymour
Sept 25, 2023
17 min read

Below is a link to our YouTube Channel Series @ConnectSecureEducation which covers the ‘Overview’ module within CyberCNS. After the video link is our documentation. Let us know if you have any feedback, you can email to education@connectsecure.com

https://youtu.be/4F8_DCk4MjY

 

In this section we will cover the Company Level, Overview options. Keep in mind this module is also available in the global settings and will not show the same options.

 

Overview Functions

At the Overview module, the following functions can be performed:

  1. Updating of companies

  2. Deletion of companies

  3. Download company level agent installers (probe and lightweight agents)

  4. Start company level agent scan types (IE: Full, Vulnerability, Asset, SNMP, PII, Firewall, etc…)

  5. Dashboards

Next we will take through the options of each of the 5 functions listed above.

1. Update Company

You can update any of the CyberCNS companies by choose the ‘Update Company’ button.

Set the field values and choose Update when done.

2. Delete Company

You can delete a company from CyberCNS along with all data by choose the Delete button.

You will be prompted to confirm you are sure to proceed.

3. Download Company Probe/Agent

Tap the download Probe/Agent button to get the CyberCNS agent installer for the selected company.

Choose the Operating System and Agent Type to see the PowerShell script and Download options.

Once you make your selection you will see the install options.

4. Start Scan

You can use the Start Scan button to kick off any of the scan types supported, which include: Full, Asset, Vulnerability, Active Directory, SNMP, Lightweight Agent, and Firewall scans.

Dashboards

CyberCNS provides a set of dashboards using the datasets from various scans and discovered assets data. Below is table of contents highlighting each of the dashboards provided. You can build additional dashboards or edit the set provided with your installation.

Company Level Dashboard

  • Navigate to Company View

  • Select the Company from the drop-down to view the Dashboard related to that Company.

  • On the Company View, navigate to the Overview tab to view the Dashboard.

  • In the image depicted below, different options such as creating a New company, Updating a Company, Deleting a Company, downloading the agent using the Probe/Agent tab, and performing a scan by using a Start scan are available.

  • In case an Update option is selected, an update of the company information with details such as Name, Address, City, etc can be updated.

  • Fullscreen, Share, Clone, Reporting, Edit, Refresh, Show Dates, and Add Filter are the different actions available under all Dashboards.

  • When selecting to Share the dashboard, you will get two options, Embed code and Permalinks. Going forward you can select relevant options.

  • As shown in the image below, Clone the preexisting dashboard by giving the new name for the dashboard is possible.

  • By using Reporting option, generate the report and download the report in PDF or PNG format.

  • Also, the View reports option is available.

  • When the Edit option is selected, edit the dashboard with the options available as depicted in the below image are available.

  • With the Edit function, every widget on the dashboard can be edited.

  • Using the Show dates option, view the data within the selected date range.

  • Choose the date as per the requirement and click on Apply.

  • To add a filter to the dashboard, select the Add Filter option as depicted in the below image and select the filters required and click on Save.

Create custom dashboards with values

  • Dashboard Overview - Please refer to the below document on how to create custom dashboards with values.

Log4j Vulnerability Analysis

  • CyberCNS shows Log4j Vulnerability Analysis data on the dashboard.

There are different default dashboards available in CyberCNS as listed below:

AD User Audit

  • This data will be populated in case a lightweight agent is installed on Domain Controller. This agent reads this Audit data from Events generated on DC.

  • In the Active Directory User Audit section of the Dashboard, under the Users section can get the stats for the Event Stats, Account-Based Event Stats, User Stats, Users Password Change Attempts, Recently Created Users, Recently Deleted Users, Recently Enabled Users, Recently Disabled Users, Locked Out & Unlocked Users Stats, Enabled And Disabled Users, Unlocked Users, Locked Out Users, and Users Added To Distribution Groups.

Active Directory Computers Report

  • This section basically provides information about Active Directory in case the AD credentials are added under Probe agent discovery settings OR in case a lightweight agent is installed on Domain Controller.

  • In the Active Directory Computers Report section of the Dashboard, can get the data for the AD Computers Overview, Enabled Computers Ratio, Computers Risk Assessment, Enabled Computers details, Disabled Computers, Computers Not Logged in 30 days, Computers with password Not Required, Computers with Non-Expiring Passwords, Computers with Expired Passwords, and LockedOut Computers.

Active Directory GPO’s Report

  • In the Active Directory GPO’s Report section of the Dashboard, can get the data for the AD GPO’s Overview, Active Vs Inactive GPOs, Inactive GPO’s not linked with organizational units, and Active GPO’s not linked with organizational units.

Active Directory Groups Report

  • In the Active Directory Groups Report section of the Dashboard, can get the data for the AD Groups Overview, AD Groups Empty Vs not Empty - Ratio, Groups with No Members, Groups with Members, and Privileged Access Groups.

Active Directory Organizational Units Report

  • In the Active Directory Organizational Units Report section of the Dashboard can get the data for OU, OU’s Summary, Organizational Units, Users in Organizational Units, Groups in Organizational Units, Computers in Organizational Units, and GPO in Organizational Units.

Active Directory Users Report

  • In the Active Directory Users Report section of the Dashboard, can get the data for the AD Users Overview, Recent Log on Details, Users not logged in 30 days, Active Users Ratio, Users Risk Assessment, Enabled Users Details, Disabled Users Details, Users with Expired Passwords, Users with Non- Expiring Passwords, Users with Passwords Expiring Soon, Built-in Admins, Domain Admins and locked out Users.

Application Baseline Report Dashboard

  • In the Application Baseline Report section of the Dashboard, data for the Missing Mandatory Applications and Present Denied Applications are seen.

Application Vulnerabilities Detailed Dashboard

  • In the Application Vulnerabilities Detailed Dashboard section, can get the data for the Application Scan Detailed Table which lists Vulnerabilities and associated details.

Asset Detailed Dashboard

  • In The Asset Detailed Dashboard section, lists the data for the Asset as Asset Table.

Assets

  • In the Assets section of the Dashboard, can get the data for the Total Assets, Asset Risk Rating, Critical Risk Vulnerabilities, High-Risk Vulnerabilities, Operating System Breakdown, Breakdown By OS-Pie, Assets Table, Assets Shortage Encryption, and Newly Discovered Assets in the last 48 hours Details.

Company Assessment Report

  • In the Company Assessment Report section of the Dashboard, can get the data for Assets Summary, Vulnerability Summary, Active Directory Summary, Company Risk Score Grade, Latest Company Score, Company Score Calculation, Security Risk Assessment under Executive Summary, Asset Summary, under Your Asset Assessment can get Operating System Breakdown, Asset By Disk Usage, Dangers of Unsupported OS, under Endpoint Assessment can get Severity Summary, Application Vulnerability Summary, Vulnerability Summary By Operating System, Scans Endpoint Summary, under Active Directory Assessment Active Users Ratio, Enabled Vs Disabled computers, Password Policy Summary, User Risk Assessment, Active Vs Inactive GPO’s, AD Groups Empty Vs Non-Empty Ratio, Active Directory Best Practices For Users, and Active Directory Best Practices For User Accounts.

Compliance

  • In the Compliance section of the Dashboard, can get the data across different Agents for the selected company, and graphical representation of PCI-DSS Compliance, PCI-DSS Compliance Status, GDPR Compliance, GDPR Compliance Status, GPG-13 Compliance, GPG-13 Compliance Status, HIPAA Compliance, HIPAA Compliance Status, CIS Compliance, CIS Compliance Status, CIS_CSC Compliance, CIS_CSC Compliance Status, NIST 800-53 Compliance, NIST 800-53 Compliance Status, TSC Compliance, and TSC Compliance Status.

Consolidated Report

  • In the Consolidated Report section of the Dashboard, can get the data for Asset Summary, Vulnerability Summary, Active Directory Summary, Latest Company Score, Company Score Calculation, Operating System Breakdown, Top 10 Assets by Vulnerabilities, Network Scan Vulnerabilities Summary, Dangers of unsupported OS, Application Remediation Plan, Software Remediation Plan, Password Policy Summary, Active Directory Best Practices for Users Markdown, and Active Directory Best Practices for User Accounts.

Critical Vulnerabilities Detailed Dashboard

  • In the Critical Vulnerabilities Detailed Dashboard section, can get the data for the Critical Vulnerabilities detailed report.

Executive Summary

  • In the Executive Summary Dashboard section, can get the data for Total Assets, Critical Assets, High-Risk Assets, Max Vulnerability Score, Avg Vulnerability Score, Min Vulnerability Score, Attention Required Assets, Top 10 Assets by Vulnerabilities, Critical Risk Vulnerabilities, Top assets with high vulnerability risks, High-Risk Vulnerabilities, Medium Risk Vulnerabilities, Low-Risk Vulnerabilities, Newly Discovered Assets in last 48 hours, and Newly Discovered Assets in last 48 hours Details.

Executive Summary Report

  • In the Executive Summary Report Dashboard section, can get the data for Assets Summary, Vulnerability Summary, Active Directory Summary, Company Risk Score Grade, Latest Company Score, Company Score Calculation, Security Risk Assessment under Executive Summary, Asset Summary, under Your Asset Assessment can get Asset By Disk Usage, Operating System Breakdown, Manufacturer Asset Count, Dangers of Unsupported OS, under Endpoint Assessment can get Severity Summary, Application Vulnerability Summary, Vulnerability Summary By Operating System, Top 10 Assets by Vulnerabilities, Severity by Asset, Scans Endpoint Summary, under Active Directory Enabled Vs Disabled Users, Enabled Vs Disabled computers, Active Vs Inactive GPO’s, AD Groups Empty Vs not Empty - Ratio, Password Policy Summary, Active Directory Best Practices for Users Markdown, and Active Directory Best Practices For User Accounts.

External Scan Dashboard

  • In the Executive Summary Dashboard section, can get the data for External Scan Summary, External Scan Vulnerabilities, External Scan by Operating System.

Insecure Listening Ports Summary

  • In the Insecure Listening Ports Summary Dashboard section can get the data for Insecure Listening Ports.

Installed Programs

  • In the Installed Programs Dashboard section can get the data for Installed Software across assets for selected company.

Internal Basic Scan

  • In the Internal Basic Scan Dashboard section, can get the data for Application Scan Vulnerabilities by Assets and Top 5 Asset vulnerabilities.

Manufacturer by Assets Dashboard

  • In the Manufacturer by Assets Dashboard section, can get the data for Manufacturer by Assets.

Network Scan Vulnerability Report

  • In the Network Scan Vulnerability Report Dashboard section, can get the data for Network Scan Open Ports.

Network Vulnerabilities Detailed Dashboard

  • In the Network Vulnerabilities Detailed Dashboard section, can get the data for Network Scan Detailed Table.

OS by Assets Dashboard

  • In the OS by Assets Dashboard section, can get the data for OS by Assets.

Overview

  • In the Overview Dashboard section you can get the data for Top 10 Assets by Vulnerabilities, Vulnerabilities by Assets, Application Vulnerabilities Summary, Network Scan Vulnerabilities Summary, Assets based on Operating System, LightWeight Agent Info, Newly Discovered Assets in last 48 hours, Newly Discovered Assets in last 48 hours Details.

Password Policy Summary

  • In the Password Policy Summary Dashboard section, can get the data for the Password Policy Summary with Password Policy.

Port Level Vulnerability Report

  • In the Port Level Vulnerability Report Dashboard section, can get the data for Vulnerability Title Summary, Title Summary, Discovered Services, HTTP Missing Security Headers, SMB Vulnerabilities, SSL Certificate Info, and SSL/TLS Vulnerabilities.

Remediation Plan Summary

  • In the Remediation Plan Summary Dashboard section, data for Software Remediation Plan and Application Remediation Plan is captured.

Risk Score Card

  • In the Risk Score Card Dashboard section, can get the data for Risk by Scoring Criteria, Risk by Asset Score, Company Score Calculation, Company Risk Score Grade, and Company Risk Score Criteria.

Security Report Card

  • In the Security Report Card Dashboard section, can get the data for Security Report Card and Security Scoring Criteria: Anti-virus / Anti-spyware, Local Firewall, Insecure Listening Ports, Network Vulnerabilities.

Vulnerabilities Detailed Dashboard

  • In the Vulnerabilities Detailed Dashboard section can get the data for Critical Vulnerabilities Details By Assets, High Vulnerabilities Details By Assets, Medium Vulnerabilities Details By Assets, and Low Vulnerabilities Details By Assets.

Vulnerability Summary

  • In the Vulnerability Summary Dashboard section can get the data for Vulnerabilities by Assets, Top 10 Asset Vulnerabilities Critical, Top 10 Asset Vulnerabilities High, Top 10 Asset Vulnerabilities Medium, Top 10 Asset Vulnerabilities Low under Asset Wise Vulnerability Summary, Application Vulnerabilities Summary, and Network Scan Vulnerabilities Summary.

Vulnerability

  • This section is a mix of graphical and numerical representation consisting of Critical Risk Vulnerabilities, High-Risk Vulnerabilities, Medium Risk Vulnerabilities, Low-Risk Vulnerabilities, Top assets with high vulnerability risks, and Severity by Asset.

Global Level Dashboard

  • CyberCNS also provides a Global level dashboard i.e. across all companies.

  • Navigate to Global View> Overview.

  • This section has Log4j Vulnerability Analysis & Asset By Company dashboards.

  • Log4j Vulnerability Analysis dashboard will data showcasing log4j information per company.

  • Asset By Company dashboard will have data about Total companies, Total Assets, Total Assessments, Asset Summary-Global, Company Summary-Global, Assessment Summary- Global, Asset Table- Global & Newly Discovered Assets in last 48 hours Details.

 

  • This completes the documentation for Dashboard