So, how is your documentation?
There you are, sat at your desk (AKA the kitchen table) when you get a message out-of-the-blue that the auditors are in, and they want to see the systems documentation straight-away. And the sinking-feeling begins. Argh!
Because no-matter the good intentions, everyone seems to have something more important to do than to make sure everything is documented properly, and it is kept up-to-date. So, the reality is that whenever it is needed, it is generally a last-minute rush to update the documentation (or create it from scratch, ahem).
This is where scarlet comes in. By using the Confluence integration (and soon, Sharepoint too) you can generate a full set of documentation for your organisation’s attack-surface, with literally only a few clicks. And best of all? Once the integration is setup, it will always be up-to-date from now-on. Phew!
All that is required is to create a new page in Confluence for the documentation, then generate an API token to access it, and then paste them into scarlet. You can literally be finished in 5 minutes.
So, what ends up in Confluence? scarlet will generate a comprehensive set of attack surface documentation, format it prettily, then insert it into the Confluence page. There will also be helpful notes about anything that doesn’t look optimal too, like firewall misconfigurations, expiring X.509 certificates etc. And how about if you want the documentation in multiple languages, for regional offices? Just pick the ones you wish (there are currently 10 languages supported, and more to come).
For each asset, you’ll get something a little like this:
Our goal is to make scarlet the first choice for a high-value, low-effort way to immediately improve your security. No more forgotten servers!™
But don’t take our word for it, why not just give it a try? There’s a free, unrestricted trial available, and you only need an email address to register. You could literally be up and running, and seeing the value in ten minutes.