Zafran transforms traditional vulnerability management with unique insights into compensating security controls, runtime presence, and network reachability. Zafran enables organizations to more accurately quantify risk, prioritize mitigations effectively, improve communications, and streamline remediation.
The Zafran Threat Exposure Management Platform application enriches Vulnerable Items in ServiceNow with contextual data from Zafran findings, including Mitigative Factors, Internet-Facing Evidence, and a recalculated Applicable Risk Score.
- Asset Identification of Zafran assets in your CMDB using Vulnerability Scanner Identification ID patterns, IRE, and (optionally, disabled by default) IP lookup.
- Vulnerable Item Enrichment: Imports risk and mitigation information from Zafran into ServiceNow, and link it to your Vulnerable Items
Version 1.0.2
This patch adds the following minor enhancements:
- Hide mitigative factors marked as "obsolete"
- Rename the application to "Zafran Threat Exposure Management Platform"
Version 1.0.1
This patch adds the following minor enhancements:
- Asset Identification vulnerability integration has been updated from createOrUpdateCI to createOrUpdateCIEnhanced in the IdentificationEngine API which allows for additional options.
- System property x_zafse_zafran_vr.asset_id_skip_updating_source_last_discovered_to_now has been added to configure the behavior of the Asset Identification vulnerability integration. Once a match is identified, this flag indicates whether to skip updating the discovery_source and last_discovered fields in the Configuration Item [cmdb_ci] table. (Default: true)
- System property x_zafse_zafran_vr.asset_id_skip_updating_last_scan_to_now has been added to configure the behavior of the Asset Identification vulnerability integration. Once a match is identified, this flag indicates whether to skip updating the sys_object_source's last_scan time field. (Default: true)
- Zafran Installation and Configuration Guide has been enhanced with additional guidance on role assignment and details around the Zafran enrichment table architecture.
This patch also contains the following minor bugfixes:
- The "Last Seen" field on Zafran Findings, Mitigative Factors, and Internet-Facing Evidences was showing as "1969" instead of empty for empty values. This has been corrected in this patch.
Version 1.0.0
This is the initial release of the Zafran Risk & Mitigation for Vulnerability Response integration, compatible with ServiceNow versions Utah, Vancouver, and WashingtonDC.
The integration first identifies Zafran Assets in the ServiceNow CMDB, and then imports Zafran findings, including Mitigative Factors, Internet-Facing Evidence, and a recalculated Applicable Risk Score. This additional data is directly related to the Vulnerable Items records in ServiceNow, allowing the data to be displayed on the Vulnerable Item form.
- CMDB CI Class Models - 1.52.0
- Vulnerability Response - 20.0.2
- Data Lookup and Record Matching Support - 1.0.0