FAQ

Questions about scans

Does CloudSploit rate limit the API calls it makes?
Yes. CloudSploit uses rate limiting and backoff factors to ensure the data we receive from the cloud provider APIs is as accurate as possible. However, in r...
Sun, 10 Nov, 2019 at 11:41 AM
What details are included in CloudSploit's scan reports?
Each scan report includes a scan summary that outlines the overall findings by region, category and plugin (cloud security control), along with a scan score...
Sun, 10 Nov, 2019 at 11:42 AM
What do the result types mean in CloudSploit scans?
Each finding is assigned a result of either "PASS", "FAIL", "WARN", or "UNKNOWN". Passing results indicate that the ...
Sun, 10 Nov, 2019 at 11:42 AM
How do I fix "unknown" scan results?
Each unknown scan result includes a message explaining why the result could not be determined. In many cases, this is due to missing permissions that preven...
Sun, 10 Nov, 2019 at 11:42 AM
Can I share my scan report with a colleague?
Yes. You can add team members via the "Users & Groups" page. Ensure they have been added to the correct group, and they can then accept the in...
Sun, 10 Nov, 2019 at 11:43 AM
How can I rescan an IaaS account to test a remediated finding?
After applying a fix, the easiest way to verify it is to use the "Live Run" tool within CloudSploit. This tool allows you to select an IaaS accoun...
Sun, 10 Nov, 2019 at 11:43 AM
What is a new risk finding?
CloudSploit compares each scan result to the results of the scan prior. If the result has not previously been seen, it will be marked as a new risk. This al...
Sun, 10 Nov, 2019 at 11:43 AM
Can I receive emails when scan reports are run?
Yes. CloudSploit supports multiple scan report notification settings. You can elect to receive an email every time we run a scan (not recommended for accoun...
Sun, 10 Nov, 2019 at 11:43 AM
Can I setup my account to only receive emails when CloudSploit detects new risks?
Yes. In the scan "Report Deliveries" page of the CloudSploit Console, simply select "Send me new risks only". Alternatively, you can cus...
Sun, 10 Nov, 2019 at 11:44 AM
How often can on-demand scans be run?
On-demand scans can be triggered manually every 10 minutes. CloudSploit may rate limit this further depending on the number of API calls being made.
Sun, 10 Nov, 2019 at 11:44 AM