Vulnerability analysis identifies vulnerabilities in a network or system. The result of this procedure is a list of the main threats, generally listed by the seriousness or criticality of the business. Vulnerability analysis is broad and aims to detect as many risks as possible, without necessarily analyzing each of them thoroughly. Vulnerability analysis is generally performed using automated tools, such as security scanners. Among the tools are:
STWBrasils CyberSecurity team uses methods and tools to identify vulnerabilities in any type of platform, network, system or application.
At this stage, the vulnerability management methodology is applied, allowing the measurement of the real impact and the probability of exploiting a vulnerability.
Based on the analysis process, forms of correction or mitigation of vulnerabilities and their presented problems are informed, defining a vulnerability correction schedule that optimizes efforts and guarantees quick gains.