-
Notifications
You must be signed in to change notification settings - Fork 766
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
Merge pull request #913 from Azure/gastori-branch-4.29.24
New Power BI report - Server and Containers Vulnerabilites Risk Score
- Loading branch information
Showing
2 changed files
with
12 additions
and
0 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,12 @@ | ||
## Enhancing Server and Container Risk Analysis in Power BI - Summary | ||
|
||
Microsoft Defender for Cloud offers robust vulnerability assessments for servers and container images. To enhance this assessment, we developed a Power BI model that incorporates additional factors like exploitability, vulnerability age, and contextual risk, such as the number of attack paths and risk factors. | ||
|
||
The model built in this Power BI follows a Deterministic Approach, meaning that conditions and weights used are fixed by the consumer but can be adjusted, providing flexibility in risk scoring. The integration of these factors allows for a more in-depth prioritization, creating a comprehensive risk score for each resource and enabling better-targeted remediation. | ||
|
||
Key factors in our model include CVE severity, exploit information, contextual resource risk, and attack path details. Scores are aggregated for multiple CVEs, and logarithmic scaling is used to prevent disproportionate weight for resources with numerous vulnerabilities. Additionally, percentiles are applied to dynamically classify risk levels, ensuring clarity and actionability in prioritizing critical assets. | ||
|
||
This enhanced Power BI solution supports additional insights into prioritization of remediation across server and container vulnerabilities, helping security teams efficiently improve their cloud security posture. | ||
|
||
|
||
|
Binary file added
BIN
+51.3 KB
PowerBI/ServerContainerVlnRiskScore/vm-containers-vuln-risk-analysis.v1.pbit
Binary file not shown.