Skip to content
VigilGuard Logo VigilGuard
Contact Us
EASM Platform VendorGuard ITRM Platform

5GPlus

5GPlus

Section titled “5GPlus”

4 automated security scanners

6G Security

Section titled “6G Security”

Purpose: The 6G Security Scanner is designed to comprehensively assess the security posture of a domain and IP range by evaluating various aspects such as DNS records, HTTP responses, TLS configurations, open ports, and APIs. This tool aims to identify potential vulnerabilities in 6G infrastructure that could be exploited by malicious actors.

What It Detects:

  • Insecure DNS Records: The scanner checks for missing or improperly configured DNS security records like TXT, MX, NS, CAA, and DMARC records, which are crucial for maintaining the integrity and security of network communications.
  • Weak HTTP Security Headers: It ensures that critical security headers such as Strict-Transport-Security, Content-Security-Policy, X-Frame-Options, and X-Content-Type-Options are correctly configured to protect against common web vulnerabilities.
  • Vulnerable TLS/SSL Configurations: The scanner identifies outdated or insecure TLS configurations, including the use of deprecated versions like TLSv1.0 and TLSv1.1, as well as cipher suites that are vulnerable, such as those using RC4, DES, or algorithms based on MD5 hash functions.
  • Open Ports and Services: By probing for open ports and identifying running services, the scanner helps in detecting unauthorized services that could be exploited to gain access or launch further attacks.
  • API Vulnerabilities: The scanner checks APIs for common security issues like insecure endpoints, lack of authentication mechanisms, and potential data leakage points.

Inputs Required:

  • domain (string): This is the primary domain to be analyzed, which serves as the central point of reference for DNS record checking, HTTP header evaluation, TLS configuration assessment, port scanning, and API security checks.
  • ip_range (string): The IP range parameter specifies the network segment or individual IPs that are subject to port scanning and service fingerprinting to identify open ports and running services.

Business Impact: Evaluating the security posture of a domain and its associated networks is crucial for ensuring that critical infrastructure, such as 6G systems, operates with minimal vulnerabilities. This helps in mitigating risks associated with data breaches, unauthorized access attempts, and potential exploitation by malicious actors.

Risk Levels:

  • Critical: Findings include insecure DNS records or TLS configurations using outdated protocols/algorithms that are known to be vulnerable.
  • High: Weak HTTP security headers or presence of open ports without proper service identification could lead to high risks if exploited.
  • Medium: Issues such as deprecated TLS versions or misconfigured DNS settings might not directly compromise security but can indicate a need for improvement in configuration and management practices.
  • Low: Informational findings may include minor deviations from recommended configurations, which while not critical, are still advisable to address for enhanced security posture.
  • Info: These are generally non-critical findings that provide insights into the current state of network and application security without immediate risk.

Example Findings:

  1. Insecure DNS configuration with a TXT record containing v=spf1 +all indicates an inability to enforce sender policy framework, which could lead to unauthorized email spoofing attacks.
  2. A TLS configuration using RC4 cipher suite poses significant risks as this algorithm is considered insecure and vulnerable to various cryptographic attacks.

Edge Computing Security

Section titled “Edge Computing Security”

Purpose: The Edge Computing Security Scanner is designed to identify and assess potential vulnerabilities in edge node hardening and distributed security practices. By probing DNS, HTTP, TLS, ports, and APIs, it aims to ensure robustness against threats and safeguard the integrity of edge computing environments.

What It Detects:

  • Security Headers Analysis: Checks for critical security headers such as Strict-Transport-Security, Content-Security-Policy, X-Frame-Options, and X-Content-Type-Options to enhance web application security.
  • TLS/SSL Inspection: Identifies outdated or insecure TLS versions (e.g., TLSv1.0, TLSv1.1) and weak cipher suites like RC4, DES, and MD5 that can be exploited by attackers.
  • DNS Record Validation: Validates SPF records for proper configuration, checks DMARC policies to ensure they are set to none, quarantine, or reject, and verifies DKIM records for email security.
  • Port Scanning and Service Fingerprinting: Scans common ports to identify open services and attempts to fingerprint the running services on these ports, revealing potential exposure points.
  • API Security Evaluation: Analyzes API endpoints for security headers and checks for proper authentication mechanisms and rate limiting to prevent unauthorized access and data leakage.

Inputs Required:

  • domain (string): The primary domain to analyze (e.g., acme.com). This is essential for DNS record validation, TLS/SSL inspection, and security header analysis.
  • ip_range (string): The IP range to scan for open ports and services (e.g., 192.168.1.0/24). This input helps in port scanning and service fingerprinting to identify potential vulnerabilities and misconfigurations.

Business Impact: Ensuring robust security practices is crucial for the integrity and confidentiality of edge computing environments, reducing the risk of data breaches and unauthorized access that could lead to significant financial losses and reputational damage.

Risk Levels:

  • Critical: Conditions where outdated or insecure TLS versions are detected, weak cipher suites are used, or critical security headers are absent, posing a high risk of immediate exploitation by attackers.
  • High: Conditions involving the presence of weak DNS records (e.g., improperly configured SPF, DMARC, or DKIM) that can lead to unauthorized access and data leakage.
  • Medium: Conditions where some security practices are adequately implemented but there is room for improvement in terms of protocol upgrades or stronger authentication mechanisms.
  • Low: Informal findings indicating minor deviations from best practices that do not significantly impact the overall security posture but still warrant attention for continuous enhancement.
  • Info: Non-critical issues that provide limited actionable insights but are important to monitor for future enhancements and compliance audits.

Example Findings:

  1. A domain is found to be using TLSv1.0, which is vulnerable to attacks and should be upgraded to a more secure version of TLS.
  2. An API endpoint lacks proper authentication mechanisms, allowing unauthenticated access that could lead to unauthorized data manipulation or theft.

By adhering to these guidelines, the Edge Computing Security Scanner provides a comprehensive analysis of potential security risks in edge computing environments, helping organizations prioritize and address critical vulnerabilities effectively.

Network Slicing Security

Section titled “Network Slicing Security”

Purpose: The Network Slicing Security Scanner is designed to identify potential vulnerabilities and threats in 5GPlus networks by probing DNS, HTTP, TLS, ports, and APIs. Its primary goal is to detect unauthorized access across network slices and cross-slice attacks, ensuring the integrity and security of network slicing configurations.

What It Detects:

  • Slice Isolation Bypass Detection: The scanner identifies unauthorized access across slices using DNS queries and checks for misconfigured DNS records that could lead to such bypasses.
  • Cross-Slice Attack Identification: It analyzes HTTP requests for security headers, detects redirects, and identifies potential data leakage between network slices.
  • TLS/SSL Vulnerability Assessment: The scanner inspects TLS certificates for outdated protocols (e.g., TLSv1.0, TLSv1.1) and weak cipher suites that could be exploited in cross-slice attacks.
  • Port Scanning and Service Fingerprinting: It scans open ports within specified IP ranges to identify services running on them which may pose security risks.
  • API Security Evaluation: The scanner tests APIs for vulnerabilities such as insecure authentication, data leakage, or improper error handling, ensuring proper slice isolation across API interactions.

Inputs Required:

  • domain (string): Primary domain to analyze (e.g., acme.com) - This is necessary to probe DNS records and HTTP/HTTPS requests.
  • ip_range (string): IP range to scan for open ports and services (e.g., 192.168.1.0/24) - This helps in identifying potential vulnerabilities through port scanning and service fingerprinting across the specified network segment.

Business Impact: Ensuring robust security measures within 5GPlus networks is crucial for protecting sensitive data and maintaining operational integrity. The scanner’s ability to detect unauthorized access, cross-slice attacks, and misconfigurations in DNS and TLS settings directly impacts the overall security posture of these networks, reducing the risk of data breaches and service disruptions.

Risk Levels:

  • Critical: Conditions that could lead to immediate and severe consequences such as complete slice isolation bypass or exposure of sensitive data (e.g., unauthorized access across slices).
  • High: Conditions that pose significant risks but do not directly compromise security, requiring immediate attention for mitigation (e.g., misconfigured DNS records affecting slice boundaries).
  • Medium: Conditions that may lead to vulnerabilities if left unaddressed, potentially impacting service availability or integrity (e.g., outdated TLS protocols in critical services).
  • Low: Informal findings that do not directly affect security but could be indicative of broader configuration issues or mismanagement (e.g., minor HTTP headers lacking strict security measures).
  • Info: Non-critical observations such as informational DNS records that do not pose immediate risks but may indicate a need for further investigation in future audits.

Example Findings:

  1. A misconfigured DNS record allows unauthorized access to sensitive data across network slices, potentially leading to significant data breaches.
  2. An outdated TLS protocol version (e.g., TLSv1.0) in critical services could be exploited by attackers to intercept sensitive information during transmission.

Private 5G Network Security

Section titled “Private 5G Network Security”

Purpose: The Private 5G Network Security Scanner is designed to detect core network vulnerabilities and perform security assessments on private 5G networks. It aims to identify weaknesses in DNS, HTTP, TLS configurations, port availability, and API endpoints, ensuring the robustness of these networks against potential threats.

What It Detects:

  • DNS Record Vulnerabilities: Checks for insecure TXT records and verifies MX, NS, CAA, and DMARC records for misconfigurations or missing security settings.
  • HTTP Security Headers: Identifies missing or weak security headers such as Strict-Transport-Security, Content-Security-Policy, X-Frame-Options, and X-Content-Type-Options.
  • TLS/SSL Configuration Issues: Detects outdated TLS versions (TLSv1.0, TLSv1.1), weak cipher suites like RC4, DES, and MD5, and ensures proper certificate validation.
  • Port Scanning and Service Fingerprinting: Scans for open ports that may indicate vulnerabilities or unauthorized services. It also attempts to fingerprint services running on identified ports to assess potential security risks.
  • API Endpoint Security: Analyzes API endpoints for common security flaws such as improper authentication, insecure data handling, and lack of rate limiting.

Inputs Required:

  • domain (string): The domain to analyze (e.g., acme.com).
  • ip_range (string): The IP range to scan for open ports and services (e.g., 192.168.1.0/24).

Business Impact: This scanner is crucial for maintaining the security of private 5G networks, ensuring that they are robust against potential threats and vulnerabilities. Identifying and addressing DNS, HTTP, TLS, port scanning, and API endpoint issues can significantly enhance network resilience and protect sensitive data from unauthorized access.

Risk Levels:

  • Critical: Conditions where outdated or insecure TLS versions (TLSv1.0, TLSv1.1), weak cipher suites like RC4, DES, and MD5 are detected, or when critical DNS records such as SPF, DMARC, or DKIM configurations are found to be misconfigured or missing.
  • High: Conditions where HTTP security headers are either missing or configured weakly, indicating a high risk of data interception or manipulation.
  • Medium: Conditions where open ports on the network suggest potential vulnerabilities or unauthorized services, which could lead to unauthorized access or data leakage.
  • Low: Informal findings such as minor misconfigurations in DNS records or HTTP headers that do not pose significant security risks but are still recommended to be addressed for optimal performance and compliance.
  • Info: General informational outputs indicating the presence of secure configurations or no issues found, which provide a baseline understanding of the network’s current state without immediate action being required.

Example Findings:

  1. A DNS record contains an insecure TXT record that could be exploited for phishing attacks.
  2. An API endpoint lacks proper authentication mechanisms, allowing unauthenticated access to sensitive data.