Publication Date – May 16, 2023
The tables below summarize the logic behind each risk vector and its findings, including:
- Risk vector weight
- Finding behavior
- Finding lifetime
- Default grade if no findings are observed
- Automatic scan length, or the amount of time it takes a scan to run on its own
- Manual scan length, or the amount of time it takes to complete a scan upon request
Links in the Risk Vector column navigate to a detailed description of how each risk vector is assessed.
Diligence Risk Vectors - 70.5%
| Risk Vector | Weight | Finding Behavior | Lifetime (days) | No Findings Grade | Automatic Scan | Manual Scan |
|---|---|---|---|---|---|---|
| SPF Domains | 1% | New finding replaces the previous one. |
60 |
F | 2 Weeks | 1 Day |
| DKIM Records | 1% | If the selector is the same and the record is changed, a new finding replaces the previous one. If the record is removed, it needs to undergo the lifetime. New selectors result in separate findings. | C | 30-50 Days | 2 Days | |
| TLS/SSL Certificates | 10% | Revoked certificates remain listed until the end of the lifetime. If a new certificate is generated, it results in a new finding. | C | 60 Days | 3 Days | |
| TLS/SSL Configurations | 15% | New finding replaces the previous one. | C | |||
| Web Application Headers | 5% | New finding replaces the previous one. | C | 60 Days | 4 Days | |
| Open Ports | 10% | TCP ports are immediately marked as closed and stop impacting within 10 days. UDP ports are marked as closed 60 days after the Last Seen date. | A | 30-60 Days | 3 Days | |
| Server Software | 2% | If the software is updated, a new finding is created for the new release. The previous version continues impacting until completing the lifetime. | A | 8 Days | 2-3 Days | |
| Insecure Systems | 2.5% | Without further activity, the finding stops updating. Its impact is removed after the lifetime. | A | Daily | Not Available | |
| Patching Cadence | 20% | If the vulnerability is fixed, the finding is marked as remediated. Its impact linearly decays until the end of the Lifetime. | 300 | A | 7-30 Days | |
| Desktop Software | 3% | If a new Browser/OS version is seen, a new finding is created. The previous version stops impacting if not seen until the end of the Lifetime. | 65 | N/A | 1 Week | Not Available |
| Mobile Software | 1% | |||||
| DNSSEC | N/A | New finding replaces the previous one. | 60 | C (Beta) | 2 Weeks | 1 Day |
| Mobile Application Security | N/A | New App version replaces the previous one. | 365 | N/A | 60 Days | 10 Days |
| Domain Squatting | N/A | Existing domains are impacted weekly. | N/A | N/A | 8 Days | Not Available |
Compromised Systems Risk Vectors - 27%
| Risk Vector | Weight | Finding Behavior | Lifetime (days) | No Findings Grade | Automatic Scan | Manual Scan |
|---|---|---|---|---|---|---|
| Botnet Infections | 27% | If the activity is not seen for 3 days, the finding stops updating. Its impact linearly declines until the end of the Lifetime. | 180 | A | Daily | Not Available |
| Spam Propagation | ||||||
| Malware Servers | ||||||
| Unsolicited Communications | ||||||
| Potentially Exploited |
User Behavior Risk Vectors - 2.5%
| Risk Vector | Weight | Finding Behavior | Lifetime (days) | No Findings Grade | Automatic Scan | Manual Scan |
|---|---|---|---|---|---|---|
| File Sharing | 2.5% | Each file represents a torrent shared through a unique IP. If the same IP downloads the same file at any further day, the Last Seen date updates. Different files and IPs result in separate findings. | 60 | A | Daily | Not Available |
| Exposed Credentials | N/A | Not Available | N/A | N/A |