Attack Path

Tenable Identity Exposure offers several ways to visualize the potential vulnerability of a business asset through graphical representations.

  • Attack Path: Shows the possible paths that an attacker can take to compromise an asset from an entry point.

  • Blast Radius: Shows the possible lateral movements into the Active Directory from any asset.

  • Asset Exposure: Shows all paths that can potentially take control of an asset.

To display the Attack Path:

  1. In Tenable Identity Exposure, click Attack Path on the sidebar menu.

    The Attack Path pane appears.

  2. In the banner, click Attack Path.

  3. In the Starting point box, type the asset at the entry point.

  4. In the Arrival point box, type the asset at the end of the path.

  5. Click the icon.

    Tenable Identity Exposure displays the attack path between the two assets.

    Attack path between two assets

  6. Optionally, you can click on the icon to do the following:

    • Click the Zoom slider to adjust the magnification of the graphics.

    • Click the Show all node tooltips toggle to display information about the assets.

To display the Blast Radius:

  1. In Tenable Identity Exposure, click Attack Path on the sidebar menu.

    The Attack Path pane appears.

  2. In the banner, click Blast Radius.

  3. In the Search for an object box, type the name of an asset.

  4. Click the icon.

    Tenable Identity Exposure displays the lateral connections radiating from that asset:

    Blast radius from an asset

  5. Click on the icons on the arrows between the assets to display the relations between them.

    Blast Radius relationships between assets

To display the Asset Exposure:

  1. To display the Blast Radius:

  2. In Tenable Identity Exposure, click Attack Path on the sidebar menu.

    The Attack Path pane appears.

  3. In the banner, click Asset Exposure.

  4. In the Search for an object box, type the name of an asset.

  5. Click the icon.

    Tenable Identity Exposure displays the paths leading to the asset and the relations between the assets.

  6. Click on the icons on the arrows between the assets to display the relations between them.

    Asset exposure

To pin an attack path:

  1. Click on a node on the attack path that you want to highlight.

    Tenable Identity Exposure pins that attack path on the screen.

  2. To unpin the attack path, click the icon or another node on a different attack path.

See also