Alert Logic Managed Detection and Response customers now have access to enhancements in the new Exposures Console in the Alert Logic console including:
- Consolidated Layout with Faster Loading Times
- Multiple Selections for Filters
- New CISA Known Exploited Filter
- Search on Specific Fields
- Export Exposure Instances
- Custom Dispose Date
The new Exposures Console can be found in the Alert Logic console under > Respond > Exposures (NEW). Read on to learn more about each enhancement.
NOTE: The previous Exposure Console and Exposures section in the Health Console will be decommissioned and remove from the Alert Logic Console in April 2026.
Consolidated Layout with Faster Loading Times
The experience for managing security vulnerabilities and health visibility issues has been simplified by providing access to Security or Health exposures from a single view.
You can now find the Recommendations for remediating the exposures in a separate view under > Respond > Recommendations (NEW).
The Column Settings for selecting, ordering and sorting columns allow the tabular grid layout to be customized to your preferences.
In addition, several API optimizations and pagination support have been introduced to ensure the page loads faster for large results of several hundred thousand exposure instances or more.
Multiple Selections for Filters
The new Exposures console supports the selection of multiple values for all filters including Category, Severity, Deployment, and more.
Also, you can now select multiple deployments to display additional Asset filters and focus your remediation validation efforts on vulnerabilities for specific assets.
For example, you can use the Host filter to immediately access the updated snapshot of security vulnerabilities for specific host(s) instead of waiting for the scan report to become available hours later.
New CISA Known Exploited Filter
The CISA Known Exploited Vulnerabilities (KEV) catalog determines if a vulnerability has a known attempted or successful exploit available. A filter and column for CISA Known Exploited has been added to the new Exposures page to better support remediation efforts by providing visibility into open vulnerabilities that have active exploitations.
Search on Specific Fields
The Search option provides the flexibility to specify which field to match the search text string against including Exposure Name, CVE, CVSS Vector or Published Date.
Export Exposure Instances
You can click the Download icon and select the Export all exposures option to download all rows in the table of the unfiltered Exposure list to a CSV file containing the columns that you selected.
Also, you can select the Export all exposure instances option to download all instances from the unfiltered Exposure list to a CSV file containing the same columns as the List of Vulnerabilities report. This option is disabled while Alert Logic is actively processing a previous request for the same account.
Depending on the number of total instances, it can take several minutes to generate this CSV file. You can retrieve the completed report when prompted in your browser or at a later time from the Reports Download page under > Validate > Reports > Downloads.
Additionally, you can navigate to the Details page of a specific exposure and click the Download icon to export selected columns for all instances of that exposure.
Custom Dispose Date
A custom expiration date can be specified for disposing vulnerabilities when the pre-defined time period selections (1 week, 1 month, 3 months, etc) do not align with your patch schedule or remediation efforts.
Additional Resources
Learn more about Exposures console with the following documentation:
Comments
0 comments
Article is closed for comments.