Difference Between Agent-Based and Network-Based Internal Vulnerability Scanning

2022-06-16 04:06

Generally, when it comes to identifying and fixing vulnerabilities on your internal network, there are two competing approaches: network-based internal vulnerability scanning and agent-based internal vulnerability scanning.

Network-based internal vulnerability scanning is the more traditional approach, running internal network scans on a box known as a scanning 'appliance' that sits on your infrastructure.

Trying to go from scanning nothing to scanning everything could easily overwhelm a security team trying to implement internal scanning for the first time, not to mention the engineering departments responsible for the remediation effort.

One key advantage to network-based vulnerability scanning is that you can discover assets you didn't know you had. Not to be overlooked, asset management is a precursor to effective vulnerability management.

The winner: Agent-based scanning can overcome common problems that are not always obvious in advance, while relying on network scanning alone can lead to major gaps in coverage.

Step 3 - Your internal servers, switches and other infrastructure will be the third line of defence, and this is where internal network appliance-based scans can make a difference.

News URL

https://thehackernews.com/2022/06/difference-between-agent-based-and.html

#vulnerability