Good morning, I am currently reviewing and preparing to implement the Security Customer Actions recommended for our instance. One item in particular—Enable 3DES Deprecation for Password2 Fields—has been reviewed multiple times by our internal team as...
Has anybody integrated with the European Union Vulnerability Database (EUVD) as an alternate to the US NVD repository given its uncertain funding future?
Hi Community,I'm currently working on integrating Zscaler Web Access (ZWA) with ServiceNow and have a couple of questions around how ticket creation works out of the box and how to customize it.1. What is the default ticket type created when Zscaler ...
How do you not bring in autoscaling groups from wiz into servicenow ? we did not see an option to tweak the configuation in the configure option. Anyone have any ideas?
Hi Experts,I would like to understand if there is any OOB or recommended custom integration approach in ServiceNow Security Operations to identify phishing emails from a shared/group mailbox.Scenario:The security team maintains a single shared mailbo...
@chrismcdevi @tkrishna29 Vulnerable items in closed state are not re-open when the new detection is found against the same ci in Rapid7 integration. Even it matches the condition in "DetectionBase" script include to have the substate of "fixed" and...
Hello,I am having trouble executing exclusion rules.I followed the steps described in the official documentation to set up the rules.1. I defined the exclusion rule with the following criteria:Schwachstelle.Quellinstanz.Name=Tenable.sc and Schwachste...
Hi,I'm currently facing a challenge in Vulnerability Response:A customer would like extend Risk Ratings for the Vulnerable Item table. The way they have currently set this up seems to clash with how VR is meant to work out-of-the-box. Can someone she...
we're using NeuVector for Container/Pod Scanning for Vulnerabilities. Is there an OOTB Box Integration available? If not, has anybody already integrated it? (Enterprise Integration | SUSE® Security 5.4)
Hi,I need help in removing demo data form the VR modules. I know the key tables and their related logic but there are 166 tables and its very tadious job. Note : Servicenow platform should build an inteligence to prevent loading any demo data in the...
Is any other way to filter the endpoint alerts that come in so that security incidents are only created for certain alert types besides altering the scripts? Are there alert rules or something we can configure to get this to work without updating the...
Hello, We have configured Vulnerability Response and Tenable Integration with ServiceNow OOTB solution. There is a low-code Calculator that calculates priority based on conditions. We don't set "Critical" priority because of owner requirements. All w...
When AVIT is created from Invicti, the source severity was High. But then it shows user SecCommon System updated Risk Score and Risk Rating from High to Medium. When checked we could see changes in Vulnerability table sn_vul_app_vul_entry. It too sho...
Hi all,how is the risk rating field calculated in VR? any pointers on this please provide,Thanks in advance.
Hello Community,We are currently designing remediation task rules for Windows and RHEL OS patching in VR and are evaluating different grouping approaches (for example, by CVE, by asset, or by solution).We also have Vulnerability Solution Management e...
