Security

How to Detect Vulnerabilities on Cisco Switch Catalyst 9300 and 2960-X?

cedSplunk2023
Observer

Network - vulnerabilities detected on switches not resolved over a month

Labels (1)
Tags (2)
0 Karma

cedSplunk2023
Observer

Hi @gcusello 

We used Cisco Switch Catalyst 9300 and 2960-X , i need to scan the vulnerabilities on these equipments , to know the version of Os , the ports open  and other vulnerabilities.

Best regards 

0 Karma

gcusello
SplunkTrust
SplunkTrust

Hi @cedSplunk2023,

I'was speaking of the system to identify vulnerabilities, not the target systems: are you using Nessus, Tenable or Qualys or which solution?

How did you indexed logs, which Add- On did you use?

Did you already indexed logs?

Ciao.

Giuseppe

0 Karma

gcusello
SplunkTrust
SplunkTrust

Hi @cedSplunk2023,

could you better describe your requirement?

  • used technology,
  • interesting fields,
  • values to identify vulnerability detected,
  • values to identify vulnerability resolved,

supponing that you already acquired the logs and you extracted fields using the Add-On.

Ciao.

Giuseppe

0 Karma
Get Updates on the Splunk Community!

Enterprise Security Content Update (ESCU) | New Releases

In January, the Splunk Threat Research Team had one release of new security content via the Splunk ES Content ...

Expert Tips from Splunk Professional Services, Ensuring Compliance, and More New ...

Splunk Lantern is a Splunk customer success center that provides advice from Splunk experts on valuable data ...

Observability Release Update: AI Assistant, AppD + Observability Cloud Integrations & ...

This month’s releases across the Splunk Observability portfolio deliver earlier detection and faster ...