Axonius Documentation
Start typing to search…

Axonius Static Analysis

Axonius Static Analysis identifies Common Vulnerabilities and Exposures (CVEs) within the installed software reported by adapters. To achieve this, Axonius leverages Common Platform Enumerations (CPEs) and the National Vulnerability Database (NVD). The process includes the following steps:

StaticDiagram
  1. Axonius maps every installed software on each device.
  2. Based on the data extracted from adapter reports, Axonius collects information on each installed software, normalizes and deduplicates the data, to extract the software's name, vendor and version.
  3. Axonius converts the normalized data into the calculated CPE of the installed software.
  4. Axonius sends the CPE to NVD to identify all CVEs associated with it.
  5. Based on the information received from NVD, Axonius lists all CVEs associated with the software installed on each device. Any CVE found in NVD that matches the generated CPE is reported as Static Analysis Findings in Axonius. Such assets have the Axonius Static Analysis icon under the Adapter Connection column.
  6. Vulnerability Instances assets are created based on the connection made between CVEs and Devices.
Device Count

Enabling Axonius Static Analysis

To enable Axonius Static Analysis in the system settings:

  1. From the System Settings page, select Enrichment.
  2. Enable Fetch software vulnerabilities from NVD DB.

Enriching Vulnerabilities Based on OS

Static Analysis can also fetch CVEs based on data received from operating systems.

📘

Note

Axonius supports fetching vulnerabilities only from operating systems that are supported by the Figure OS functionality.

To enable this fetch:

  1. Navigate to System Settings > Enrichment.
  2. Enable the following setting (disabled by default): Fetch OS vulnerabilities from NVD DB. (This product uses the NVD API but is not endorsed or certified by the NVD)

The Operating systems supported for this enrichment method are as follows:

  • Ubuntu
  • Red Hat
  • Amazon
  • Alma
  • Debian
  • Fedora
  • FreeBSD
  • Gentoo
  • Arch
  • Centos Stream
  • Centos
  • Rocky
  • openSUSE
  • SLES
  • Cumulus
  • iOS
  • Oracle Linux
  • Oracle Solaris
  • IBM AIX
  • IBM VIOS
  • macOS / OS X
  • Arista EOS
  • Android
  • Cisco
  • Fortinet
  • VMWare
  • PanOS
  • Juniper
  • HP
  • Adtran

Updated 5 days ago