CyTech AQUILA - Vulnerability Assessment and Management (Module)

Overview:

In AQUILA, the Vulnerability Assessment and Management (VAM) module is designed to help organizations identify, analyze, prioritize, and remediate security weaknesses across their IT infrastructure.

Key Features:

Dashboard - Provides an overview of the organization’s risk posture, showing vulnerability scores, scan status, severity levels, affected asset types, top CVEs, and most vulnerable assets.
Scan - It shows you all currently running scans with percentage to completion and number of severities.

Let’s proceed to navigate the Vulnerability Assessment and Management Module kindly follow the instructions below:

Step 1: Log in to CyTech – AQUILA. https://usdc.cytechint.io/

Step 2: In the left side panel, you can see the list of six (6) domains, kindly choose and click the Risk Management (Domain) -> Vulnerability Assessment and Management (Module) -> Dashboard (Sub Module)

"Dashboard (Sub-module)" - Vulnerability Assessment and Management (Module)

The Vulnerability Assessment & Management Dashboard in AQUILA provides a centralized view of all detected vulnerabilities. It shows the overall risk score, trends, severity distribution, and affected assets. Users can monitor scans, identify top vulnerabilities (CVEs), and track the most at-risk assets, enabling quicker prioritization and remediation.

Uses of Dashboard Sections (1–7)

Overall Vulnerability Score
- Displays the organization’s current security posture on a gauge meter.
- Helps quickly see if the environment is at minimal, moderate, or high risk.
Overall Vulnerability Score – Trend
- Shows how the vulnerability score changes over time.
- Useful for monitoring whether risks are being reduced after remediation.
Scan Summary (Running, Completed, Assets Scanned)
- Provides the status of vulnerability scans:
  - Running scans in progress
  - Completed scans finished
  - Total number of assets scanned
- Let's users track scanning activity at a glance.
Vulnerabilities by Severity
- Breaks down vulnerabilities into categories: Critical, High, Medium, Low, Informational.
- Helps prioritize remediation based on severity levels.
Vulnerabilities by Asset Type
- Organizes vulnerabilities according to the asset scanned:
  - Web Assets
  - Network Assets (coming soon)
  - Mobile Assets (coming soon)
- Useful for identifying which type of asset is most at risk.
Top CVEs Detected
- Lists the most critical Common Vulnerabilities and Exposures (CVEs) identified.
- Includes CVE ID, severity, CVSS score, reference, and number of affected assets.
- Helps focus attention on widely known and exploitable vulnerabilities.
Top Vulnerable Assets
- Highlights assets with the highest number of vulnerabilities.
- Shows asset name, average severity, average CVSS rating, and total vulnerabilities.
- Helps security teams prioritize which systems need urgent attention.

"Scan (Sub-module)" - Vulnerability Assessment and Management (Module)

The Running Scans page in AQUILA shows all ongoing vulnerability scans with progress and severity details. From here, users can search scans, launch new ones, and toggle to view completed scans. The client can also view their scan result by pressing the view button.

Search Bar or Search this Board " - is simply a filter/search tool for the scan list displayed in the main panel.

" New Scan " - The New Scan lets users choose the type of scan (Quick, Website, Network, or Mobile) depending on the asset being tested, each tailored to identify vulnerabilities and provide security insights.

If you need further assistance, kindly contact support@cytechint.com for prompt assistance and guidance.