On the Health check tasks page, you can check the exposed ports, sensitive information and services, find potential vulnerabilities, weak passwords, cloud resource configuration risks and other security threats. Multiple health check modes are supported. The health check is integrated with Cloud Security Center, Cloud Workload Protection Platform and Tencent Container Security Service.
Full check
On the Overview - Security Center, the four modules, including "Security products", "Assets", "High risks" and "High-risk alerts", provide a one-stop solution for product trial, asset authorization, risk processing and alert disposal.
Solid protection
On the Solid protection page, click Quick scan to scan for urgent vulnerabilities on public IPs and domains.
Note:
Each account is granted a free quota of two urgent vulnerability scans.
2. On the Health check tasks page, click Create task.
3. In the pop-up window, configure the required parameters and click OK.
Parameter
Description
Task name
Enter a custom task name. You can query the task result later by using this name on the Risks page.
Mode
Basic: Quickly initiate scans for port risks, urgent vulnerabilities, and exposed risk services.
Standard: Scan for six types of risks, including port risks, vulnerabilities, weak passwords, configuration risks exposed risk services, and website content risks.
Advanced: Create an advanced health check task to customize the configurations of health check items. Users can manually enter or import files to add discrete ports for exposed port detection
Plan
Immediate: Start a health check immediately when there is a security issue or an apparent security threat.
Specified time: Start a health check at a specified time. It helps monitor the network security status, identify potential security issues early, and take preventive measures. Customers can determine when to run security health checks according to their business situation, security requirements, and security risks of the enterprise.
Scheduled check: Execute health checks at regular intervals. This allows you to comprehensively assess the network security status, screen potential security risks, and take corresponding measures. Customers can determine the interval to execute the check according to their security stantdands.
Included assets
Select assets to check as needed.
Check items
Based on port scanning, retrieve the information of open ports and services on the target system, and infer possible vulnerabilities, weak passwords, and exposed risk services. For example, if the target server has port 80 open (HTTP service), there may be a risk of web application vulnerabilities.
2. On the report download page, select the target report, and click Preview under Operation.
3. You can download one or more reports as needed.
Single report: Select the target report, and click Download under Operation.
Multiple reports: Select multiple reports and click Download report in the top-left corner.
Multi-account management
Each health check consumes both the health check quota and task quota. In Multi-account mode, the administrator or a delegated administrator can initiate health check tasks under a member account of the organization. In this case, the administrator can specify the consumer account of the health check quota, and the task quota is always consumed by the assigned task owner.
Editing tasks
Administrators, deligated administrators and members can edit tasks created by their own. Administrators can also edit tasks created by deligated administrators.
Deleting tasks
All tasks can be deleted by their creators. Administrators and delegated administrators can delete tasks created by the other role. Members can delete tasks created by administrators and delegated administrators under their accounts.
