Logo

dev-resources.site

for different kinds of informations.

VMClarity: What Happens During a Scan?

Published at
4/18/2023
Categories
sbom
opensource
appsec
Author
shmcfarl
Main Article
https://dev.to/ciscoemerge/vmclarity-what-happens-during-a-scan-3g08
Categories
3 categories in total
sbom
open
opensource
open
appsec
open
Author
8 person written this
shmcfarl
open
VMClarity: What Happens During a Scan?

I recently posted on the VMClarity open source project and a couple of quick videos on what the project is about and how you can get started. If you missed that post, check it out here: VMClarity: Virtual Machine Security

A Reminder of how VMClarity Works

In the previous videos, I walked through the basics of how VMClarity works and the major components. As you recall, today, VMClarity is deployed in an AWS VPC. In that VPC, the VMClarity server is deployed as an AWS EC2 instance. You then configure VMClarity to scan specific 'scopes' inside of AWS. You can scan for all AWS EC2 instances your AWS account has access to or filter down that scope (recommended). The scan scope can filter on:

  • All AWS regions
  • AWS region
  • AWS region + VPC
  • AWS region + VPC + security group(s)
  • AWS region + instance tags (or within a specific VPC)

Once a VMClarity scan identifies the target assets (instances), it triggers an AWS snapshot of those assets, launches a new AWS EC2 instance, and attaches the snapshot to that instance. VMClarity then configures the scanner types (e.g., exploits, misconfigurations, malware, etc..) based on the scanner types you configured in the scanner configuration.

Behind the Scenes

In this post, I am sharing more information about what happens behind the scenes when VMClarity scans a 'target' asset (e.g., an AWS EC2 instance).

Here is a quick demo of accessing the VMClarity server instance and checking the real-time scanner virtual machine.

Learn More & Join the Community!

Learn more about VMClarity and join the community! https://github.com/openclarity/vmclarity

I will be back with more posts on understanding how VMClarity works, and how you can contribute to it!

You can also learn more about the other Clarity projects, such as (API security) and KubeClarity (K8s SBOM/Supply chain security) here:

And several blogs about both projects are here:
https://techblog.cisco.com/

Shannon McFarland is a Distinguished Engineer and open source advocate in Ciscoโ€™s Emerging Technology & Incubation organization. You can follow him on Twitter @eyepv6.

sbom Article's
30 articles in total
Favicon
Do You Need an SBOM?
Favicon
SBOM, Libs e Components
Favicon
Creating SBOMs with the Snyk CLI
Favicon
FOSDEM 2024 - Summary and Reflections
Favicon
Software Supply Chain Awareness at Scale
Favicon
DruBOM: An SBOM for Drupal
Favicon
Software Bill of Materials (SBOM) and Flutter Apps
Favicon
Flutter Takes a Leap Towards Enhanced Security with SLSA Compliance
Favicon
Convert with CycloneDX
Favicon
Generate SBOM
Favicon
SBOM - Software Bill of Materials
Favicon
Securing the Software Supply Chain: The Struggle Is (Still) Real ย 
Favicon
VMClarity: How to use the API
Favicon
VMClarity: What Happens During a Scan?
Favicon
VMClarity: Virtual Machine Security
Favicon
SBOM: understanding the facts and dispelling theย myths
Favicon
EO 14028: What you need to know about the new cybersecurity standards for software suppliers
Favicon
SBOM Explained: ๐Ÿ“š An Enterprise Guide to Security Risk Management
Favicon
Create SPDX with Yocto
Favicon
Outreachy: Experience with Adoptium
Favicon
Outreachy: Everyone Struggles
Favicon
A Step-by-step Guide to the SBOM Executive Order
Favicon
Deeper dive into SBOM
Favicon
Outreachy: Introducing myself with Eclipse Adoptium
Favicon
SBOM with Checkov
Favicon
SBOM with Anchore
Favicon
How to Automate the Software Bill of Materials (SBOM)
Favicon
SBOM with FOSSology
Favicon
SBOM with VulnerableCode.io
Favicon
What is SBOM

Featured ones:

Favicon
Open
abubakersiddique761
Favicon
Open
0x3d_site
Favicon
Open
0x2e_tech
Favicon
Open
0x4c-quest
Favicon
Open
gittech