UpGuard CyberRisk provides third-party vendor risk and external cyber risk monitoring. The platform has two main modules: UpGuard BreachSight which monitors company external risk posture and Vendor Risk monitors and helps manages the risk posture of third party vendors.
Types of Assets Fetched
This adapter fetches the following types of assets:
- Devices
- Users
- Vulnerabilities
- SaaS Applications
- Domains & URLs
Parameters
-
UpGuard Domain (required, default: https://cyber-risk.upguard.com) - Specify the URL of the UpGuard CyberRisk API.
-
API Key (required) - Specify the API Key used for authentication.
-
Verify SSL - Select whether to verify the SSL certificate of the server against the CA database inside of Axonius. For more details, see SSL Trust & CA Settings.
-
HTTPS Proxy (optional) - Connect the adapter to a proxy instead of directly connecting it to the domain.
To learn more about common adapter connection parameters and buttons, see Adding a New Adapter Connection.
Advanced Settings
Advanced settings can either apply to all connections for this adapter, or to a specific connection. Refer to ​Advanced Configuration for Adapters.
- Enrich devices with risks info - Select this option to enrich the devices with risks data, using the endpoint UpGuard CyberRisk Active risks.
- Fetch Users - By default Axonius fetches users. Clear this option to not fetch users.
To learn more about Adapter Configuration tab advanced settings, see Adapter Advanced Settings.
API
Axonius uses the
Permissions
To query the 'breaches' API Endpoint, the UpGuard instance needs to have 'identity breaches' enabled as a feature.