Cortex Xpanse - User Guide - 1.0 - Cortex XPANSE - Cortex - Security Operations

Cortex Xpanse User Guide

Product
Cortex XPANSE
Version
1.0
Creation date
2022-08-25
Last date published
2024-03-14
End_of_Life
EoL
Category
User Guide
Abstract

Cortex Xpanse is an attack surface management platform that enables organizations to track and secure their internet-facing assets and infrastructure.

Cortex Xpanse is an attack surface management platform that collects and correlates active and passive information about every device and service connected to the public Internet. Using this information, Cortex Xpanse attributes assets to specific organizations, identifying weaknesses in your organization’s known infrastructure and helping you discover and protect previously unknown Internet-connected systems. Cortex Xpanse is agentless and SaaS-based, requiring zero hardware or software installation to provide you with a comprehensive view of all of your internet-connected assets. Cortex Xpanse provides four key modules that enable organizations to track and secure their internet-facing assets and infrastructure.

  • Assets—The Assets module provides an inventory of all internet assets that Expanse has attributed to an organization, including their IP ranges, certificates, domains, and cloud resources.

  • Services—The Services module provides an inventory of all software and services that are connected to the public-facing internet including observable details about software versions, configurations, and framework technologies.

  • Issues—The Issues module and the flexible Policy Engine identify security and configuration problems within an organization's Assets and Services, providing a workflow where analysts can investigate, prioritize, track their efforts to remediate outstanding problems, and independently confirm they have been corrected.

  • Dashboards—The Dashboards module provides reporting on the current and historical state of an organization's Assets, Services, and Issues, giving insight into trends and helping leaders identify key topics and business units to focus on to improve the security posture of their organization.