Skip to content
SecPod  – Documentation
  • Docs Home
  • Categories
    • SanerNow CyberHygiene Platform
    • Products
    • Security Intelligence
    • Supported OSs and Platforms
    • How Tos
    • Release Notes
    • Knowledge Base
    • FAQs
  • Other Resources
  • About SecPod
  • Contact Support
  • Toggle website search
Search this website
Menu Close
  • Docs Home
  • Categories
    • SanerNow CyberHygiene Platform
    • Products
    • Security Intelligence
    • Supported OSs and Platforms
    • How Tos
    • Release Notes
    • Knowledge Base
    • FAQs
  • Other Resources
  • About SecPod
  • Contact Support
  • Toggle website search
  • Docs Home
  • Categories
    • SanerNow CyberHygiene Platform
    • Products
    • Security Intelligence
    • Supported OSs and Platforms
    • How Tos
    • Release Notes
    • Knowledge Base
    • FAQs
  • Other Resources
  • About SecPod
  • Contact Support

SanerNow CyberHygiene Platform

  • What’s New in SanerNow?
  • Getting Started with SanerNow
  • Pre-requisites for SanerNow Deployment
  • How does SanerNow’s deployment architecture work?
  • Platform Function Guides

Products

  • SanerNow AVM
    • Overview of SanerNow Advanced Vulnerability Management
  • Vulnerability Management
    • SanerNow Vulnerability Management User Guide
  • Patch Management
    • SanerNow Patch Management User Guide
  • Compliance Management
    • SanerNow Compliance Management User Guide
  • Asset Exposure
    • SanerNow Asset Exposure User Guide
  • Endpoint Management
    • SanerNow Endpoint Management User Guide
  • Posture Anomaly Management
    • Data Points IT teams can Fetch from SanerNow Continuous Posture Anomaly Management
    • Posture Anomaly Computation Rules
    • SanerNow Continuous Posture Anomaly Management Tool Product Guide
  • SanerNow Cyber Hygiene Score
    • SanerNow Cyber Hygiene Score User Guide
  • SanerNow Unified Dashboard
    • SanerNow Unified Dashboard User Guide

Release Notes

  • SanerNow Risk Prioritization Launch
  • Release Notes SanerNow 6.0
  • Release Notes SanerNow 5.3.1
  • Release Notes SanerNow 5.3
  • Release Notes SanerNow 5.2
  • Release Notes SanerNow 5.1
  • Release Notes SanerNow 5.0
  • Release Notes SanerNow 4.8.0.0
  • Release Notes SanerNow 4.7.0.0
  • Release Notes SanerNow 4.6.0.0
  • Release Notes SanerNow 4.5.0.0
  • Release Notes SanerNow 4.4.0.0
  • Release Notes SanerNow 4.3.0.0
  • Release Notes SanerNow 4.2.2.1
  • Release Notes SanerNow 4.2.2.0
  • Release Notes SanerNow 4.2.1.0
  • Release Notes SanerNow 4.2.0.0
  • Release Notes SanerNow 4.1.1.0
  • Release Notes SanerNow 4.0.0.5

FAQs

  • Technical FAQs

Security Intelligence

  • Overview of Security Content and Intelligence
  • Security Content Statistics
  • OVAL Definitions Platform Coverage
  • OVAL Definitions Class-wise Distribution
  • OVAL Definitions Family-wise Distribution
  • Application and OS Remediation Coverage
  • Compliance Benchmark Coverage
  • List of Vulnerability to Exploit/Malware Mapping covered in SanerNow
  • List of IoA (Indicators of Attack) covered in SanerNow

Supported OSs and Platforms

  • Supported Third-party Applications for Patching
  • Operating Systems and Platforms Supported

How Tos

  • General
    • How to set alerts in SanerNow?
    • How to view, download and filter the audit logs?
    • How to enable SSO authentication policy in SanerNow?
    • How to designate saner agent to perform network scan?
    • How to create new mail settings in SanerNow?
    • How to Co-Brand with your logo?
    • How to fetch the details of the mandatory fields from the Okta account?
    • How to create MFA policy for Okta?
    • How to fetch the details of the mandatory fields from the PingID account?
    • How to create MFA policy for PingID?
    • How to fetch the details of the mandatory fields from the PingOne account?
    • How to create MFA policy for PingOne?
    • How to download and install Saner agent in Mac?
    • How to download and install Saner agent in Linux?
    • How to download and install the Saner agent in Windows?
    • How to update the expiry date of an existing subscription?
    • How to manage users and their preferences using role-based access?
    • How to create a new user in SanerNow?
    • How to onboard a new organization?
    • How to uninstall the Saner agent through SecPod Saner deployer?
    • How to deploy the Saner agent through SecPod Saner deployer?
    • How to install a Saner agent through the command line?
    • How to uninstall the Saner agent through command line?
    • How to create a new account in SanerNow?
    • How to sign-up with SanerNow?
  • Vulnerability Management
    • How to remediate vulnerabilities from vulnerability management dashboard?
    • How to manage excluded vulnerabilities in SanerNow?
    • How to exclude vulnerabilities in SanerNow VM tool
    • How to automate and schedule vulnerability scans?
  • Patch Management
    • How to manage excluded patches in SanerNow?
    • How to exclude patches in SanerNow PM tool
    • How to automate patch management in SanerNow?
    • How to roll back patches in SanerNow?
    • How to fix firmware in SanerNow?
    • How to apply missing patches in SanerNow?
    • How to check the status of patching activity?
    • How to apply the most critical patches in SanerNow?
  • Compliance Management
    • How to run a compliance scan?
    • How to custom create a security policy?
    • How to align with PCI security compliance management?
    • How to align with NIST 800-171 security compliance management?
    • How to align with NIST 800-53 security compliance management?
    • How to align with HIPAA security compliance management?
  • Asset Exposure
    • How to run an asset scan?
    • How to manage asset licenses?
    • How to blacklist and whitelist applications in SanerNow?
  • Endpoint Management
    • How to collect all shared resources on Windows systems?
    • How to collect all security events from Windows Events Log?
    • How to check password policy set in Windows systems?
    • How to check faulty Anti-Virus (AV) status in Windows systems?
    • How to check status of DEP in Windows systems?
    • How to check for Anti-Virus (AV) status in Windows systems?
    • How to check account lockout policy on Windows systems?
    • How to check if Bit-locker protection is OFF in Windows systems?
    • How to collect all storage devices connected to Windows systems?
    • How to collect all keyboard and pointing devices connected to Windows systems?
    • How to list all Groups in Windows systems?
    • How to list all inactive users on Windows systems?
    • How to list all guest accounts in Windows systems?
    • How to list all Administrator accounts on Windows systems?
    • How to list last-logon details of users on Windows systems?
    • How to identify all users in Windows systems?
    • How to collect all services that are currently running in Windows systems?
    • How to manually import devices into SanerNow?
    • How to investigate total RAM or CPU threshold (greater than or equal to 80%) in Windows systems?
    • How to collect operating systems information in Windows?
    • How to investigate disks running out of space (<100 MB) in Windows systems?
    • How to collect and investigate disk information on Windows systems?
    • How to collect BIOS information such as serial number, version, manufacturer in Windows systems?
    • How to check the status of Windows Update Server (WSUS/SCCM)?
    • How to collect all software patches that are hidden in the Windows Update server?
    • How to collect all installed patches in Windows systems?
    • How to collect all the important missing patches in Windows systems?
    • How to collect mounted disk information on Linux systems?
    • How to check wireless signal quality in Linux systems?
    • How to check wireless security in Linux systems?
    • How to check all firewall policies on Linux systems?
    • How to collect DNS information on Linux systems?
    • How to collect all Dynamic Host Configuration Protocol (DHCP) information on Linux systems?
    • How to collect ARP entries that are created when a hostname is resolved to an IP address and then to a MAC addressing in Linux?
    • How to check wireless signal quality in Windows systems?
    • How to check wireless security in Windows systems?
    • How to collect all open ports in Windows systems?
    • How to collect all network interfaces in Windows systems?
    • How to investigate DNS cache on Windows systems?
    • How to check all firewall policies on Windows systems?
    • How to collect DNS information on Windows systems?
    • How to collect all Dynamic Host Configuration Protocol (DHCP) information on Windows systems?
    • How to collect all the applications with an unknown publisher in Mac systems?
    • How to collect environment variables set in all operating systems?
    • How to collect all families of operating systems such as Windows, Unix, and macOS?
    • How to collect ARP entries that are created when a hostname is resolved to an IP address and then to a MAC addressing Windows?
    • How to collect all software licenses in Mac systems?
    • How to collect all the applications with an unknown publisher in Windows systems?
    • How to collect a list of applications that are started when you boot your computer?
    • How to identify potentially unwanted programs such as torrent downloaders or unnecessary toolbars running on Windows systems?
    • How to collect all software licenses in Windows systems?
    • How to collect all the applications with an unknown publisher in Linux systems?
    • How to perform system tuning?
    • How to enable/disable devices in SanerNow?
    • How to block blacklisted applications in SanerNow?
    • How to delete and quarantine a file?
    • How to deploy software in SanerNow?
    • How to enable and disable firewall settings in SanerNow?
    • How to start and stop the processes in SanerNow?
  • Continuous Posture Anomaly Management
    • How to create new response in PA tool?
    • How to build your own detection and response in PA tool?
    • How to whitelist an entire PA ID?
    • How to configure Posture Anomaly tool for custom detection?
    • How to fix Anomalies from PA dashboard?
    • How to fix anomalies from PA Summary page?
    • How to fix anomalies detected in your account from All Anomalies Page?
    • How to delete PA scan preferences?
    • How to schedule PA Scans on Daily, Weekly, and Monthly basis?
    • How to launch Posture Anomaly scans?
  • Reports
    • How to schedule for the report back up?
    • How to create a custom report in SanerNow?
    • How to configure mail settings to email Report PDF?
  • Home
  • Docs
  • Products
  • SanerNow Unified Dashboard
  • SanerNow Unified Dashboard User Guide

SanerNow Unified Dashboard User Guide

Overview #

SanerNow has a new interactive dashboard – Unified Dashboard – that provides a whole new representation of end-to-end vulnerability management through a unified console. The Unified Dashboard paints a clear and concise picture of your organization’s security posture, covering Visibility, Detection, Prioritization, and Remediation all in one console.

Unified Dashboard aims to ease your navigation between SanerNow tools and provide the necessary insights and recommendations to keep your organization secure. And this consolidated data is available at an Organization level and Account level.

Unified Dashboard #

SanerNow Unified Dashboard provides information at the Organization and Account levels. The Organization level unified dashboard contains all the information of the Accounts within the organization. In comparison, an Account level Unified dashboard contains Account specific information.

The Unified Dashboard is divided into the following sections.

  1. Visibility
  2. Detection
  3. Prioritization
  4. Remediation

Visibility #

Device Universe #

The Device Universe section gives detailed information about the Assets in your Organization. At an Account level, the Device Universe section shows information about the Assets in an Account. For instance, the pie chart on the left side of the page represents the total number of devices in the Organization, classifying them depending on the family of operating systems they belong to and categorizing remote scanned devices as Network devices. At the same time, the Device Universe section gives a granular view by breaking down the Asset information as mentioned in the table below.

IconInformation Represented at Organization level / Account level
Shows the total number of active devices in the Organization / Account.
Shows the total number of inactive devices in the Organization / Account.
Shows the total number of newly added devices during the last one week in the Organization / Account.
Shows the total number of device groups in the Organization / Account.
Shows the total number of operating systems found in the Organization / Account.
Shows the total number of applications present in the Organization / Account.
Shows the total number of outdated applications present in the Organization / Account.
Shows the total number of blacklisted applications present in the Organization / Account.
Shows the total number of network subnets that exist in the Organization.
Shows the total number of user groups in the Organization / Account.
Important

For Blacklisted Applications to be visible in the Device Universe, the Organization should have an active subscription to the SanerNow Asset Exposure tool. Similarly, the Account should have an active subscription to SanerNow Asset Exposure to display blacklisted applications in the Account-level Device Universe section.

In addition to this, the Device Universe section at an Account level provides additional information. All you need to do is, click the number next to the icon in the Device Universe section, and a pop-up window showing all the details about the category is displayed.

You can download the details by clicking the CSV icon on the top right of the pop-up window.

Cyber Hygiene Score #

The Cyber Hygiene Score of the Organization is displayed to the right of the page. The Organization score is the weighted average of all the Accounts within the Organization. Clicking the metered icon takes you to the CHS Organization dashboard. Similarly, on an Account-level CHS dashboard, the account-specific CHS Score is displayed to the right of the page.

Detection #

The Detection grid categorizes the information provided by the SanerNow tools you subscribed to. The data is classified as follows:

  1. Category
  2. Risks
  3. Severity
  4. Trend
  5. Affected Devices
  6. Launch

The Detection grid on an Org level dashboard displays the below-mentioned information.

Category –  This section lists the name of the SanerNow tools the Organization has subscribed to.

Risks – This section lists the total risks found by the respective SanerNow tool in the Organization.

Severity – This section categorizes the risks found into Low, Medium, High, and Critical categories based on severity.

Trend – This section shows the risks found over the past 90 days in a trending graph.

Affected Devices – This section categorizes the total devices in the Organization into affected and unaffected.

Launch –  This section contains the launch icon. Clicking this icon takes you to the Account-specific Unified Dashboard.

For instance, if you’ve subscribed to the SanerNow VM tool, the Unified Dashboard will display all the vulnerabilities found in each of the Accounts present in the Organization.

The VM section table displays the following information Account-wise.

  1. Account –  This column displays the name of the Account present in the Organization.
  2. Total Risks – This column displays each Account’s total number of vulnerabilities.
  3. Critical – This column displays each Account’s total number of vulnerabilities under the Critical category.
  4. High – This column displays each Account’s total number of vulnerabilities under the High category.
  5. Medium – This column displays each Account’s total number of vulnerabilities under the Medium category.
  6. Low – This column displays each Account’s total number of vulnerabilities under the Low category.
  7. Affected Devices – This column displays the count of devices affected by the vulnerability in red. At the same time, the unaffected devices are shown in green.
  8. Launch – Clicking the launch icon takes you to the Unified Dashboard for the respective Account.

Similarly, other SanerNow tools, namely CM, PA, and PM, will appear in the Detection section, displaying misconfigurations, posture anomalies, and missing patches information detected in the Organization.

Important

The number of SanerNow tools that appear in the Detection section will vary depending on your Organization’s subscription.

The Detection grid on an Account level dashboard displays the same above information, but the scope remains confined to the Accounts within the Organization. For instance, clicking the Launch icon next to VM will take you to the dashboard for that particular Account.

Important

On the Account level Unified Dashboard, the Detection section will show all the SanerNow tools assigned to the Account by the Org Admin.

Prioritization #

The Prioritization grid contains two sections: Prioritized Risks funnel and Factors Influencing Risk Prioritization chart. The Prioritization grid remains the same for Organization and Account level Unified dashboards but will display Organization-specific information on an Organization level dashboard. And for an Account level dashboard, the information specific to the Accounts within the Organization is shown.

Prioritized Risks #

The Prioritized Risks funnel categorizes the risks found in your Organization as follows.

  • Track
  • Track*
  • Attend
  • Act

Track –  The risks under this category don’t require action now. You can continue to track and reassess the risks if new information becomes available – remediate Track risks within standard update timelines.

Track* – The risks under this category contain specific characteristics that may require closer monitoring for changes. Security teams must closely monitor these risks to track any new developments in this case – remediate Track* risks within standard update timelines.

Attend –  The risks under this category require attention from the Organization’s internal, supervisory-level individuals – remediate Attend risks within standard update timelines.

Act – The risks under this category require attention from the Organization’s internal, supervisory-level individuals – remediate Act risks as soon as possible.

Factors Influencing Risk Prioritization #

The Factors Influencing Risk Prioritization chart categorizes the risks found in the Organization into the following categories.

  1. Risk on Mission Critical Devices
  2. High Exploitation
  3. Automatable
  4. Total Technical Impact

Risk on Mission Critical Devices –  The risks under this category exists on critical devices and must be immediately acted upon.

High Exploitation – The risks under this category can be easily exploited by bad actors.

Automatable –  The risks under this category can be automated by bad actors to exploit the devices in the Organization.

Total Technical Impact – The risks under this category give bad actors total control over the behavior of the software or provide complete disclosure of all information on the systems.

Note
On an Organization level dashboard, the Prioritization grid will appear if your Organization has subscribed to the SanerNow Risk Prioritization tool. Similarly, at an Account level, SanerNow Risk Prioritization should be enabled for the Prioritization Grid to be visible on the Account level Unified Dashboard.

Remediation #

The Remediation grid contains two sections: Recommended Remediation for ACT Category and Remediation Actions.

Recommended Remediations for ACT Category #

This section displays the risks that fall under the ACT category – you need to remediate these risks immediately. ACT category risks from all the Accounts present in the Organization are shown here.

Note
The Recommended Remediations for Act Category depends on whether SanerNow Risk Prioritization is enabled at an Organization and Account level.

The Remediation grid on an Organization level Unified Dashboard with SanerNow Risk Prioritization looks similar to the screenshot below.

The following information about each Remediation on an Organization level Unified Dashboard is shown.

  1. The name of the vulnerable asset with relevant patch information.
  2. The name of the SanerNow tool used for remediation and the severity of the risk
  3. The name of the Account where the vulnerable asset exists.
  4. The name of the vendor providing the patch, its size, and the number of risks that will get remediated by applying the patch.

You can remediate the risks by clicking the Fix button. A pop-up window appears on the screen.

Fill in the task name and select a remediation schedule. You can choose the following scheduling options.

  1. Immediate
  2. After Scheduled Scan
  3. Custom date

Immediate – When you select the schedule as Immediate, the patch gets applied immediately.

After Scheduled Scan – When you select the schedule as After Scheduled Scan, the patch gets applied after SanerNow Agent performs the scheduled scan on the Account.

Custom Date –  When you select the schedule as Custom Date, you need to specify the Task Execution Date and the Task Start Window.

(Task start window is a time frame during which a task is allowed to start running. For example, a task might have a start window of 09:00 PM to 11:00 PM, which means the task can begin anytime within that time range. If the device is offline during the start time window, the Task is not executed and gets reported as Schedule Missed.)

Similarly, on an Account level Unified Dashboard, the Remediation grid with SanerNow Risk Prioritization enabled looks like this.

The following information about each Remediation on an Account level Unified Dashboard is shown.

  1. The name of the vulnerable asset with relevant patch information.
  2. The name of the SanerNow tool used for remediation and the severity of the risk
  3. Number of devices affected in the Account by the risk
  4. The name of the vendor providing the patch, its size, and the number of risks that will get remediated by applying the patch.

You can remediate the risks by clicking the Fix button, which takes you to the Account-specific dashboard for the SanerNow tool.

However, if Risk Prioritization is not enabled, the top 10 recommended remediations from SanerNow PM and CM tool are displayed.

Note
If Risk Prioritization is not enabled for the Account, the remediation tasks listed under Recommended Remediation depend on the following conditions.
a. If both SanerNow PM and CM tools are enabled, the top 10 recommended remediation tasks from SanerNow PM and CM tools get listed under Recommended Remediation section.
b. If just the SanerNow PM tool is enabled for the Account, then the top 10 recommended remediation tasks from the SanerNow PM tool are listed under the Recommended Remediation section.
c. If just the SanerNow CM tool is enabled for the Account, then the top 10 recommended remediation tasks from the SanerNow CM tool are listed under the Recommended Remediation section.

Similarly, the last ten remediation Actions performed in the Account gets listed under the Remediation Actions section.

Remediation Actions #

The Remediation Actions section displays all the remediation actions performed on the Accounts present in the Organization. You can see the Status of the Remediation Action – whether it is completed or is in the process of getting completed.

The following information about each remediation task listed under the Remediation Actions section is presented from left to right.

  1. The name of the SanerNow tool used to perform the Remediation Action.
  2. The name of the Account on which the remediation action was performed.
  3. The task name that was given to the remediation action.
  4. The status of the remediation action.

Similar information at an Account level is shown for the Remediation Actions section in the Account level Unified Dashboard.

What are your Feelings
Share This Article :
  • Twitter
  • LinkedIn
Updated on August 3, 2023
Table of Contents
  • Overview
  • Unified Dashboard
  • Visibility
    • Device Universe
  • Cyber Hygiene Score
  • Detection
  • Prioritization
    • Prioritized Risks
    • Factors Influencing Risk Prioritization
  • Remediation
  • Recommended Remediations for ACT Category
  • Remediation Actions
Copyright 2023 - SecPod. All Rights Reserved. Privacy Policy.