Last Updated: 2024-10-09
Purpose
This article describes how to set up a Cloud discovery scan.
Introduction
Cloud Discovery enables you to inventory cloud infrastructure—such as AWS instances—without relying on network-based scanning. Instead, it uses provided credentials to call cloud REST APIs and enumerate assets directly from the cloud provider’s system. This method avoids network impact, detects resources beyond perimeter reach, and ensures accurate discovery of dynamic environments.
A Cloud Discovery scan counts the instances in (AWS currently) cloud environments without using network traffic but with provided AWS credentials and querying the AWS REST APIs.
Setting up a Cloud Discovery Scan
Run the Cloud Discovery Scan
To configure a Cloud discovery scan:
-
Navigate to Configurations > Scan Configurations in the Main Menu.
-
Click on the
-
Select Cloud discovery.
-
Select Credentials from the drop-down menu.
-
Select Regions.
-
Choose a scanner.
-
Click the blue ADD button to save the configuration.
-
Select the Scan configuration and click on the scan now
-
View the scan status under Scans in the Main Menu.
-
View the discovered assets, Docker images under Assets > Assets as the list of assets with the filter 'source' set to Cloudsec and the type set to Docker Image.
.png?cb=89c08acab7205cb8ec344f229bab0039)
Related Articles
- Windows 10/Windows 2019 Server
- General Information about SMB/WinRM Scanning
- Windows 8.1
- Scan Blueprint
- How to Test SMB Authentication
- Docker Image Assessment
- Windows 2016 Server
- How to Scan AWS ECR Images
- Scanning-Less Scanning
- Scan Scheduling Errors
- Network Host Assessment
- Core Installation
- Windows 2008 R2 Server
- Scanning Range
- SMB Authentication from OUTSCAN/HIAB