| CPC H04L 63/1433 (2013.01) [G06F 9/44526 (2013.01)] | 18 Claims |
|
1. An asset scanning system comprising:
an asset database storing a plurality of asset entries, wherein each asset entry in the asset database is associated with an asset of a network;
an asset scanning engine in communication with the asset database, wherein the asset scanning engine is operable to:
generate a plugin using a software development kit, the plugin describing a vulnerability with respect to a service of an asset;
upload the plugin to a network-based scanning system;
determine that the plugin is valid or invalid by parsing the plugin;
in response to determining that the plugin is invalid, generating an alert including an indication of invalidity;
in response to determining that the plugin is valid, determining a set of assets for scanning;
determine assets of the sets of assets running the service described in the plugin;
in response to determining that the service is running on an asset, send a probe to the asset and record a response from the asset; and
determine a report of assets running the service comprising results of the probe.
|