Hi, is there a way to disable/exclude Microsoft Patch Vulnerabilities from an authenticated scan? I tried to disable it via Option Profiles - Vulnerability Detection (Custom) but I am not sure which of the Vulnerability Search Lists it falls under.
Hi, is there a way to disable/exclude Microsoft Patch Vulnerabilities from an authenticated scan? I tried to disable it via Option Profiles - Vulnerability Detection (Custom) but I am not sure which of the Vulnerability Search Lists it falls under.
I would like to understand the use case for excluding patchable vulnerabilities from an authenticated scan. Can you explain? If you prefer not to post on the community, please feel free to send me a direct message. Thank you.
Cheers,
Debra,
Only one I can think of is to focus on those vulnerabilities that are configuration driven for hardening a "Golden" Image. The detection of vulnerabilities resolved by configuration could be a trigger for a new Golden Image process if a group has that; just my .002 of a cent.
David
To exclude specific vulns, start by creating a search list - KnowledgeBase > Search Lists > New > Dynamic List
If you're using a pre-defined Search List and want to know what QID's are included, use the Quick Actions menu and click Info.
Next, create an Option Profile that excludes this search list.
Run a scan using this Option Profile.
- Shyam