Our real-time feed puts you on offense
Blacklight
A new way to prioritize
Your organization needs to know which fixes will minimize risk most effectively, so you can manage exposure while shipping code quickly.
That’s why we added Blacklight to the preZero platform. It’s a real-time threat feed that lets you see if the vulnerabilities in your code are actively exploited in the wild. If a vulnerability isn’t readily exploitable by an attacker, you may choose to de-prioritize fixing it in favor of other concerns.
A threat feed that lets security teams and developers play offense
Threat feeds are a common tool in any InfoSec program, feeding into a SIEM or SOAR and tasked with enriching data collected by various security tools deployed throughout the organization. This information helps teams understand attacks and react intelligently.
But what if you didn’t have to react after the fact? This is where Blacklight makes a difference.
Blacklight correlates with your scan results and shows you how each discovered vulnerability is being actively exploited in the wild. This lets you fix proactively before you even ship.
Using EPSS to measure exploitability
Ranging from 0 to 1, the Exploit Prediction Scoring System (EPSS) is an open model that uses machine learning to predict the likelihood of a CVE being exploited in the wild. This data is pulled from various public and private sources, including real world information from SIEM tools.
This helps our customers understand the severity of a vulnerability in a way that a simple enumeration of CVEs alone does not.
Blacklight results can be segmented based on your preferences. Selecting “Exploitable” will quickly show all results with an EPSS score, but you can also use more advanced sorting to specify an EPSS range you’d like to view.
Blacklight quiets the noise around fixes
Blacklight gives our customers another tool for prioritizing their security activities, which is always one of the biggest challenges for a security team.
This built-in threat feed, which can be filtered according to your needs, further reduces the noise and alert fatigue that can stop you from managing your risk and shipping code on time.