Analyzing Assets

Stellar Cyber tracks assets in your system and analyzes their behavior to detect security events. Stellar Cyber can discover both IP and MAC addresses and associate them with hosts, and you can import your assets. Access this feature from the Investigate | Asset Analytics menu.

Assets Dashboard Tab

This is the default tab for the Assets | Asset Analytics page.

The graphs provide a convenient overview of the known assets.

  • Risk Distribution – The percentage of assets at each risk level

    The calculated asset risk score is an overall assessment of how likely the asset is going to be involved in a security breach. The asset risk score:

    • is calculated every 10 minutes
    • includes open security events from the last 24 hours (if you close an event, it is removed from the next calculation)
    • considers the vulnerability and importance level of assets
    • weights the presence of many different alert types more highly than large numbers of the same alert
  • Top 20 Vulnerable Assets – The most vulnerable assets, based on CVE records.

  • Top Active Unauthorized Assets – Active unauthorized assets

  • Asset Status – Number of active and inactive assets

  • Asset Approval – Number of approved and new (unapproved) assets

  • Asset Value – Percentage of assets at each level

  • Asset Type – Number of assets of each type

  • Asset Tags – Number of assets with each tag

  • Top 10 Asset Locations – Geographic distribution of assets

  • Top 20 Asset Vendors – Number of assets of each vendor (a VM is considered a vendor)

Asset Detail Tabs

Navigate to any of the other tabs to drill into specifics on the different asset types.