Vulnerability Scan

Definition

A vulnerability scan is an automated check of systems for known security vulnerabilities. Difference from pentest: scan reports, pentest exploits.

Scanners compare software versions against CVE databases. Tools: Nessus, OpenVAS, Qualys. Faster and cheaper than a pentest but less thorough. NIS2 and ISO 27001 require regular scanning.

Related terms

Pentest CVE MDR (Managed Detection & Response)
← Back to glossary