Resources

Learn more about our Risk Criteria


Category Risc Metric Weight in the Category General Weight Severity
IconReputation (5%) Blacklist IP and Domain list 0,50 0,025
Medium
Malware JS 0,40 0,02
Medium
Potential Phishing Domains 0,10 0,005
Medium
IconSoftware Patching (25%) High CVE 0,50 0,125
Critical
Medium CVE 0,30 0,075
High
Low CVE 0,10 0,025
Low
End of Life Software 0,10 0,025
Medium
IconSSL (12%) Weak SSL algorithm 0,325 0,039
Medium
SSL expired 0,40 0,048
High
SSL certificate expiring soon 0,20 0,024
Medium
SSL Trust (Hostname) 0,075 0,009
Medium
IconApplication Security (20%) Direct HTTP access 0,10 0,02
Low
HSTS not enforced 0,02 0,004
Low
X-Frame-Options 0,02 0,004
Low
X-Content-Type-Options 0,02 0,004
Low
Content-Security-Policy 0,02 0,004
Low
Referrer-Policy 0,02 0,004
Low
Expect-CT 0,02 0,004
Low
X-XSS-Protection 0,02 0,004
Low
Cookies not secured 0,10 0,02
Low
X-Powered-By 0,20 0,04
Low
X-AspNet-Version 0,20 0,04
Low
Server Header 0,11 0,022
Low
HttpOnly cookies not used 0,05 0,01
Low
Port Application Version Detect 0,05 0,01
Medium
Web Application Version Detect 0,05 0,01
Medium
IconDNS Security (10%) Predictable subdomains 0,55 0,055
Medium
SPF not enabled 0,25 0,025
Low
DMARC not enabled 0,20 0,02
Low
IconDomain Security (8%) Domain expiring soon 0,20 0,016
Low
Domain expired 0,40 0,032
Medium
Common Contact Mail (gmail, hotmail vs.) 0,40 0,032
Low
IconNetwork Security (20%) Database ports open 0,25 0,05
Critical
File sharing ports open 0,20 0,04
Critical
VOIP ports open 0,05 0,01
Medium
Mail ports open 0,05 0,01
Low
Critical ports open 0,30 0,06
High
Remote ports open 0,15 0,03
High






Request a Demo

Request Demo for SwordEye Attack Surface
Monitoring

    Request a Demo