JumpStart Threat Scanner

Updated Feb 20, 2024

JumpStart Threat Scanner

Note: This is only available to broker program users who do not subscribe to other Arctic Wolf services.

You can use the JumpStart Threat Scanner services to scan your public-facing IP addresses and domains for a targeted list of critical vulnerabilities.

JumpStart Threat Scanner is available as a 30-day trial or a paid subscription service.

Note: If you do not purchase an annual subscription when your JumpStart Threat Scanner trial ends, you are automatically downgraded to JumpStart Threat Scanner Lite, which supports one manual scan per day for a single domain or IP address.

Initial setup of JumpStart Threat Scanner

  1. Sign in to the Cyber JumpStart Portal.
  2. On the JumpStart Threat Scanner tile, click Open.
  3. When prompted, for each location that you want to scan, enter the IP address or domain.

    Note: Locations are shared with all users in an organization, so subsequent users will not be prompted to enter more locations. See Edit scan locations for more information.

Scan locations for vulnerabilities

  1. Sign in to the Cyber JumpStart Portal.

  2. On the JumpStart Threat Scanner tile, click Open.

  3. Click Run Scan.

    The Critical Vulnerabilities section displays a progress bar. When complete, the Critical Vulnerabilities section displays the scan results.

    Tip: When the scan is complete, you receive an email notification.

  4. If JumpStart Threat Scanner detects a vulnerability:

    1. Click to see more information about the detection.

    2. Click Get Help to contact a security expert.

    3. (Optional) Click View details to open a panel that contains the vulnerability history.

      Tip: Click Download History to download a CSV file of the vulnerability history.

Edit scan locations

  1. Sign in to the Cyber JumpStart Portal.

  2. On the JumpStart Threat Scanner tile, click Open.

  3. Click Edit Locations.

    Tip: You can also click in the Scan Results section.

  4. Add a domain:

    1. Click Add Domain.
    2. Click to confirm the domain.
  5. Add an IP address:

    1. Click Add IP Address.
    2. Click to confirm the IP address.
  6. To remove a domain or IP address, click for the entry.

View vulnerabilities

You can review the list of common vulnerabilities and exposures (CVEs) and common weakness enumeration (CWE) that Threat Scanner looks for. Threat actors are known to exploit these CVEs and CWEs.

  1. Sign in to the Cyber JumpStart Portal.

  2. On the JumpStart Threat Scanner tile, click Open.

  3. In the Scanned Vulnerabilities section, click .

    The list of vulnerabilities expands.

  4. To view the full list, click View All.

  5. To view details for a specific vulnerability, click Expand.

Upgrade your JumpStart Threat Scanner subscription

If you are using JumpStart Threat Scanner Lite, you can upgrade your subscription.

  1. Sign in to the Cyber JumpStart Portal.
  2. On the JumpStart Threat Scanner tile, click Upgrade.
  3. Complete the payment process.