Documentation Index

Fetch the complete documentation index at: https://help.nucleussec.com/llms.txt

Use this file to discover all available pages before exploring further.

Shadowserver

  • 1 minute(s) read
Prev Next

Overview

Shadowserver is a nonprofit organization dedicated to enhancing cybersecurity across the internet by providing valuable threat intelligence and data collection services. It operates as a global resource for tracking and mitigating cyber threats, such as botnets, malware, and other malicious activities (specifically vulnerability exploitation). Shadowserver collects and analyzes data from various sources, then shares this information with network operators, companies, and governments to help them identify and respond to security threats more effectively.

Nucleus provides a subscription to Shadowserver embedded directly into the Nucleus console as part of the Nucleus Advantage subscription. This means that you can use Shadowserver fields when working in vulnerability management workflows, such as:

  • Prioritizing vulnerabilities based on active exploitation of those vulnerabilities

  • Creating custom risk levels

  • Setting SLAs

  • and more!

Advantage Subscription

The Shadowserver exploitation data provided in-console is only available to clients who subscribe to the Nucleus Advantage subscription.

In Platform: Where to find

Shadowserver can be found in multiple locations within the app as part of an integrated experience.

1. CVE’s page

On the Vulnerabilities > CVEs page, you can leverage ShadowServer fields in various columns for sorting and analysis of all your CVEs that exist in your environment.

  • You can also click Manage Columns to select more Shadowserver fields to choose from!

2. CVE Details Page

From the CVEs page, you can click into a vulnerability and see the associated threat intelligence with it. This includes an exploitation map of where this vulnerability has been observed as exploited

3. Active Vulns > Vulnerability Intelligence

From the Vulnerabilities > Active > Vulnerability Details page, you can see all findings from your scanning tools, normalized into one location. You can drill into the vulnerability intelligence related to these findings from here as well, along with other sources of vulnerability intelligence:

For additional questions, please reach out to your success team or the support team at [email protected].