Liberty91 Documentation
The Threat Library
The Threat Library
  • Getting started with the Threat Library
  • Threat Clusters
  • Threat Actors
  • Malware
  • Vulnerabilities
  • Keywords
Powered by GitBook
On this page
  • What is a vulnerability card?
  • How to create a vulnerability card
  • Aliases
  • What is on a vulnerability card?

Vulnerabilities

PreviousMalwareNextKeywords

Last updated 1 year ago

What is a vulnerability card?

Vulnerabilities are the weaknesses in systems, exploited by , often using . Tracking vulnerabilities is useful, especially if they are in systems and assets you are managing, because it helps prioritize vulnerability management programs. If you can easily track, for example, which vulnerabilities are actively exploited right now, in the wild, then that may help you provide some direction to what to patch first, and what can wait.

How to create a vulnerability card

Creating Vulnerabilities in the workbench

  • Go to the in the sidebar ()

  • Scroll down to 'Vulnerabilities'

  • Type in the name or code of the Vulnerability you want to create, click on 'create'

  • Wait a minute or two: Liberty91 is looking for relevant reporting and generating a custom description for your new Vulnerability

  • Don't forget to tune its

Creating a Vulnerability in the Vulnerability Overview

  2. The top-left card is green, and shows a plus-sign. Type in the name of your new vulnerability and click 'create'.

  3. Wait a minute or two: Liberty91 is looking for relevant reporting and generating a custom description for your new Vulnerability

Creating a Threat Actor based on a Suggestion

Sometimes, Liberty91 will suggest new Threat Actors, Malware of Vulnerabilities for in your Threat Library. These are based on events in your dashboards. When you see one that you'd like to keep tracking, just click on it and Liberty91 will collect the relevant reporting and generate a relevant and accurate description for you.

  1. Find the 'Suggested Vulnerabilities' in an Event Card. They are on the side, under the Analysis and the Threat Library Links that already exist.

  2. Click on the Vulnerability you want to create a card for and track

  3. Wait a minute or two: Liberty91 is looking for relevant reporting and generating a custom description for your new Threat Actor

Aliases

Vulnerabilities can go by codes, identifiers and nicknames. The vulnerability CVE-2024-4323 for example, is also known as 'Linguistic Lumberjack'. You don't want to create multiple Vulnerability Cards for the same thing, so having a Vulnerability Card named 'Linguistic Lumberjack' with Alias 'CVE-2024-4323' helps capture mentions of both, under the same card.

What is on a vulnerability card?

When you first create a vulnerability card, there will be nothing on it. That's because Liberty91 is still collecting relevant reporting and learning as much as it can about your new vulnerability.

But once Liberty91 has found relevant reports, it will create a custom, relevant and up-to-date analysis for you, telling you exactly what it is and how it applies to you. If you want to update this (perhaps because new reporting has come out), just click on 'update description'.

Additionally, any relevant reports are nicely categorized under the description:

Go to 'Vulnerabilities' under your Threat Library in the . You may have to scroll down a bit.

Don't forget to tune its

Don't forget to tune its

Threat Actors
malware
go there now with this link
creating a new vulnerability in the workbench is easy
simply provide a name or code in the green top-left box
Clicking on FunnySwitch (for example) would create a new threat card in your Threat Library
When you create a new vulnerability, there will be nothing to see initially
A custom, up-to-date and relevant analysis
all relevant reporting on this vulnerability
criticality
criticality
criticality
Workbench
sidebar