Initial Access Intelligence

VulnCheck Initial Access Intelligence provides organizations the detection artifacts, such as Suricata signatures, YARA rules, PCAPs, and private exploit PoCs, to defend against initial access vulnerabilities, already exploited or likely to be soon.

GET /v3/index/initial-access?cve=CVE-2022-1040

    {
  "_benchmark": 0.047498,
  "_meta": {
    "timestamp": "2023-05-19T17:36:04.971177024Z",
    "index": "initial-access"
  },
  "data": [
    {
      "cve": "CVE-2022-1040",
      "inKEV": true,
      "_timestamp": "2023-05-02T16:20:54.641211Z",
      "artifacts": [
        {
          "greynoiseQueries": [
            "https://viz.greynoise.io/tag/sophos-sg-utm-remote-code-execution-attempt"
          ],
          "product": [
            "Firewall"
          ],
          "censysQueries": [
            "https://search.censys.io/search?resource=hosts&sort=RELEVANCE&per_page=25&virtual_hosts=EXCLUDE&q=services.http.response.body%3A%22Without+JavaScript+support+user+portal+will+not+work.%22+and+services.http.response.html_title%3A%22Sophos%22",
            "https://search.censys.io/search?resource=hosts&sort=RELEVANCE&per_page=25&virtual_hosts=EXCLUDE&q=services.http.response.body%3A%22Without+JavaScript+support+web+console+will+not+work.%22+and+services.http.response.html_title%3A%22Sophos%22"
          ],
          "dateAdded": "2022-09-15",
          "yara": false,
          "vendor": "Sophos",
          "artifactName": "Sophos Webconsole and User Portal Authentication Bypass",
          "versionScanner": true,
          "pcap": true,
          "snortRule": true,
          "suricataRule": true,
          "shodanQueries": [
            "https://www.shodan.io/search?query=title%3A%22Sophos%22+html%3A%22Without+JavaScript+support+user+portal+will+not+work.%22",
            "https://www.shodan.io/search?query=title%3A%22Sophos%22+html%3A%22Without+JavaScript+support+web+console+will+not+work.%22"
          ],
          "exploit": true
        }
      ]
    }
  ]
}

Why VulnCheck Initial Access Intelligence

Detection artifacts and private exploit PoCs, for initial access vulnerabilities, already exploited or likely to be soon.

Ready to get started?

Explore VulnCheck, a next-generation Cyber Threat Intelligence platform, which provides exploit and vulnerability intelligence directly into the tools, processes, programs, and systems that need it to outpace adversaries.