Risk Criteria - SwordEye

Category	Risc Metric	Weight in the Category	General Weight	Severity
Reputation (5%)	Blacklist IP and Domain list	0,50	0,025	Medium
	Malware JS	0,40	0,02	Medium
	Potential Phishing Domains	0,10	0,005	Medium
Software Patching (25%)	High CVE	0,50	0,125	Critical
	Medium CVE	0,30	0,075	High
	Low CVE	0,10	0,025	Low
	End of Life Software	0,10	0,025	Medium
SSL (12%)	Weak SSL algorithm	0,325	0,039	Medium
	SSL expired	0,40	0,048	High
	SSL certificate expiring soon	0,20	0,024	Medium
	SSL Trust (Hostname)	0,075	0,009	Medium
Application Security (20%)	Direct HTTP access	0,10	0,02	Low
	HSTS not enforced	0,02	0,004	Low
	X-Frame-Options	0,02	0,004	Low
	X-Content-Type-Options	0,02	0,004	Low
	Content-Security-Policy	0,02	0,004	Low
	Referrer-Policy	0,02	0,004	Low
	Expect-CT	0,02	0,004	Low
	X-XSS-Protection	0,02	0,004	Low
	Cookies not secured	0,10	0,02	Low
	X-Powered-By	0,20	0,04	Low
	X-AspNet-Version	0,20	0,04	Low
	Server Header	0,11	0,022	Low
	HttpOnly cookies not used	0,05	0,01	Low
	Port Application Version Detect	0,05	0,01	Medium
	Web Application Version Detect	0,05	0,01	Medium
DNS Security (10%)	Predictable subdomains	0,55	0,055	Medium
	SPF not enabled	0,25	0,025	Low
	DMARC not enabled	0,20	0,02	Low
Domain Security (8%)	Domain expiring soon	0,20	0,016	Low
	Domain expired	0,40	0,032	Medium
	Common Contact Mail (gmail, hotmail vs.)	0,40	0,032	Low
Network Security (20%)	Database ports open	0,25	0,05	Critical
	File sharing ports open	0,20	0,04	Critical
	VOIP ports open	0,05	0,01	Medium
	Mail ports open	0,05	0,01	Low
	Critical ports open	0,30	0,06	High
	Remote ports open	0,15	0,03	High

Request a Demo

Request Demo for SwordEye Attack Surface
Monitoring