LogoLogo
APISupportDashboard
  • Welcome
  • Platform
    • Platform Overview
    • Getting Started Guide
    • Discovery
      • Domain Discovery
      • Network Discovery
      • Discovered Assets
    • Targets
      • Scan Policies
      • Add-on Services
      • Tags & Filtering
        • Default Tags
      • Managing Targets
      • Scan Configuration
    • Risk
    • Firewalls
      • Ports
      • HTTP Servers
      • DNS Records
    • Websites
      • Certificates
      • Scripts
      • Cookies
      • Headers
      • Forms
      • Links
      • Downloads
      • Traffic Hosts
      • Meta Tags
      • Pages
    • Technology
    • Issues
      • Vulnerability Management
      • Issue Settings
    • Reports
    • Compliance
    • Projects
      • Penetration Testing
      • Other Projects
    • Events
      • Event Rules
      • Event Types
    • Automations
      • Target Automations
      • Asset Automations
      • Target Issue Automations
  • Integrations
    • Discovery Integrations
      • Azure
      • Google Cloud
      • AWS
      • Cloudflare
      • Oracle Cloud Infrastructure
      • F5
      • GoDaddy
      • Wiz
      • HTTP
    • Workflow Integrations
      • Slack
      • Google Chat
      • Jira
      • PagerDuty
      • Splunk
      • AWS
      • Vanta
      • Microsoft Teams
      • ArmorCode
      • Zapier
        • Slack (via Zapier)
        • Jira (via Zapier)
        • Service Now (via Zapier)
    • Feeds
      • Using Feeds with Google Sheets
    • API
    • Webhooks
  • Account
    • Account Overview
      • Account Security
    • Users
      • Roles & Permissions
Powered by GitBook

© 2024 Halo Security

On this page
  • Organization Detection
  • Geolocation
  • Overview
  • Ports
  • HTTP Servers
  • DNS Records

Was this helpful?

  1. Platform

Firewalls

Network information about ports, HTTP servers, and DNS records.

PreviousRiskNextPorts

Last updated 1 year ago

Was this helpful?

Firewalls represent the external view of your network as seen through the firewall. This includes assets such as IP addresses, open ports, and HTTP response codes of web servers that were discovered.

The firewall scan is non-invasive and checks the state of every port on the target. It is included with the base target scan.

You will notice that the Summary and List views as well as most pages that involve targets have buttons that allow you to filter results or select individual targets to modify: such as scanning them immediately, updating their tags or settings, and modifying such as Application Scanning.

Organization Detection

The organization is found by accessing the Whois database for the IP address of the target.

Geolocation

After identifying the target’s IP address, we use public geolocation IP databases to determine its latitude and longitude. We use this data to display a map of where targets are located.

Overview

The Overview provides a single-pane view of key information associated with firewall assets discovered on the network. You’ll be able to quickly see findings related to:

  • Open ports that were found to be externally accessible. These correspond to software that is running on your assets that can be accessed by anyone.

  • The risk of open ports that have been discovered.

  • HTTP response codes from web servers that were detected.

  • A world view of where assets are geographically located.

  • Organizations and Products that were discovered, including common CDNs and hosting providers as well as the names of software that was identified on open ports.

Ports

Ports are network services that are accessible on your targets. Learn more at:

HTTP Servers

DNS Records

DNS records for all targets are also available. Learn more at:

Target Services
Ports
HTTP Servers
DNS Records