Vulnerability scanner

They are used in the identification and detection of vulnerabilities arising from mis-configurations or flawed programming within a network-based asset such as a firewall, router, web server, application server, etc.

Modern scanners are typically available as SaaS (Software as a Service); provided over the internet and delivered as a web application.

The modern vulnerability scanner often has the ability to customize vulnerability reports as well as the installed software, open ports, certificates and other host information that can be queried as part of its workflow.

Vulnerability scanners should be able to detect the risks in open-source dependencies.

[2] The CIS Critical Security Controls for Effective Cyber Defense designates continuous vulnerability scanning as a critical control for effective cyber defense.