Documentation Index

Fetch the complete documentation index at: https://help.nucleussec.com/llms.txt

Use this file to discover all available pages before exploring further.

What is VIP?

  • 1 minute(s) read
Prev Next

The Vulnerability Intelligence Platform (VIP) provides Nucleus customers with full access to the entire database of vulnerability intelligence that we collect on an hourly basis, from over 15 open and commercial vulnerability intelligence feeds. By leveraging VIP you have the ability to monitor for new vulnerabilities and perform analysis prior to vulnerability scanning, enabling you to respond to vulnerabilities much faster than you do today.

VIP includes an aggregated set of vulnerability intelligence feeds and data out of the box including: Mandiant, NVD, EPSS, CISA KEV, Zero Day Initiative (ZDI) and more. VIP also comes with the ability to bring your own vulnerability intelligence feed. Plug the proper authorization to the feed into VIP, and it validates the access and collects the vulnerability data from the feed for you. 

If there is a vulnerability intelligence feed you work with today that isn't in the provided integrations, contact our team and we'd be happy to discuss how that feed can be integrated.

Use Cases

VIP provides tooling around the vulnerability intelligence data and feeds so that you can increase the efficiency of common VM processes across the entire organization. Various roles in an organization can benefit from VIP including: SOC analysts, VM analysts, remediation teams and  executives. Some sample use cases that VIP helps solve are:

  • Rapid vulnerability analysis: Use a single console rapidly to analyze and research all known CVEs in existence, without googling, searching through multiple databases, or reading vendor advisories.
  • Automated vulnerability monitoring:  Monitor and alert on the curated list of vulnerabilities that matter most to you organization (such as CISA KEV inclusion or exploitation activity in-the-wild) 
  • Vulnerability collaboration - Add custom analysis to vulnerabilities and share with others in your organization to stay aligned on remediation actions.
  • Future: Automated alerts on technologies: Subscribe to alerts of new vulnerabilities for specific software vendors, applications or products.
  • Future: Automated alerts on malware families and threat actors: Subscribe to alerts of new vulnerabilities used by specific malware families, campaigns, or threat actors.
  • Future: Predictive vulnerabilities:  Leverage the software list from the core platform to predict what vulnerabilities they might have before a vulnerability scan occurs.