Graphs and Attack Paths in Cloud Advisor

Cloud Advisor is a unified platform that analyzes all layers of cloud infrastructure, from cloud configuration and Kubernetes clusters to operating systems and software running on virtual machines and containers.

With a complete picture of what is happening in the cloud, Cloud Advisor not only identifies security issues with individual objects (e.g., “vulnerability found”) but also builds Attack Paths - complex combinations of vulnerabilities, settings and object properties that allow an attacker to gain initial access, take control of a resource and move horizontally to critical organizational data. Identifying Attack Paths allows you to detect and remediate the most crucial issues, such as “Critical vulnerability found on a publicly available virtual machine that stores access credentials to an object storage bucket in plaintext”.

By using a graph database to store cloud and risk information, the new version of Cloud Advisor enables visualization of potential Attack Paths in the form of graphs that show cloud and Kubernetes cluster resources, their network connectivity, privileges, security issues and relationships. This approach accelerates risk remediation and provides new opportunities to visualize what is happening in the infrastructure, making the work of IS and IT professionals easier.