kaykumar
commented
2 years ago PacBot uses AWS and Azure APis.
The rest of the datasources like Qualys, they are used to enrich the data, for example: you have a problem if your machine is open to internet but you have a bigger one if that machine has a remotely exploitable vulnerability , this vulnerability dataset for assets is coming from Qualys, and used by rules to assess the compliance and security posture.
Hello Team, @Akashbhaskaran : Can you help on this also It was mentioned that PacBot has plugins to pull data from Qualys Vulnerability Assessment Platform, Bitbucket, TrendMicro Deep Security, Tripwire, Venafi Certificate Management, Redhat Satellite, Spacewalk, Active Directory and several other custom-built internal solutions.
So does PacBot rely of them to get assets or the rules? Does pacbot use AWS or Azure APIs