Building real Zero-Day analysis into your risk assessment

Security analysts are in a daily struggle to understand their risk profile, constantly working to capture the state of their attack surface, assess the total risk that it presents and prioritize their efforts to mitigate those risks.

Here at Exodus, we have a unique view of the world, having analyzed a great number of enterprise-focus applications, as well as having worked with numerous application vendors. Through our work, we have become convinced that in order to really understand your risk profile, it’s critical for you to also understand where you are most vulnerable. You must know which corners of your network house applications with vulnerabilities for which there are no current patches.

Addressing risks from zero days requires you to change your security practice to be faster than the rate of disclosure. It requires you to do research faster than MITRE or NVD and to correlate to assets based on imperfect data. Addressing Zero-Day risks also requires the centralization of decision making. If you’re looking at a vulnerability scan and making decisions about it, then looking at a second scanner and making those same decisions about it, and then a third engineer looks at a threat intel feed and raises his hand…you are in disarray. Conversely, if all of your intel and vulnerability data is in one place, you can make and measure decisions about overall risk.

With this in mind, we are excited to announce that we have teamed up with Kenna Security—a pioneer and leader in vulnerability management and risk assessment. The Kenna platform provides enterprises with a powerful view into their vulnerability profile, collected from vulnerability scanning tools, such as Qualys and Rapid7, and is further augmented by intelligence feeds.

We have been impressed with what the Kenna team has built, allowing customers a single interface through which they can quickly understand their risk and then prioritize their work to improve their profile. Exodus is working with Kenna to integrate our Zero-Day Metadata Access (ZMA) into their available intelligence feeds, enabling customers to understand whether their infrastructure supports applications with unpatched Zero-Day vulnerabilities. With this intelligence feed enabled, the Kenna platform will gain the advantage of Exodus’ detailed knowledge of unpatched vulnerabilities and utilize it to inform the customer’s risk profile.

Within the Kenna platform, identified applications that are susceptible to Exodus’ Zero-Day vulnerabilities will be displayed in their primary dashboard (as shown below), making it easy for users to realize that they are susceptible. If they do experience an application with a Zero-Day, users will be able to purchase extremely detailed reports and exploit details on the specific vulnerability from Exodus Intelligence.


As part of this relationship, for the first time in Zero-Day research – we’re starting a feedback loop. Using over 500,000,000 aggregated vulnerabilities, Kenna’s data will help inform Exodus which products are most important to enterprises and where to focus research efforts. This feedback will inform the vulnerability research process and help both companies to focus on understanding the vulnerabilities within the applications that matter most to our customers.

This joint solution will be delivered within the Kenna Security platform in Q3 of 2016. See true risk for the first time—with Kenna and Exodus Intelligence.

Visit Kenna at BlackHat booth 1661 for more information on our new partnership. Click here to learn more about Kenna Security and Exodus Intelligence.