Skip to main content

Monitor Your Infrastructure Security

Mondoo provides continuous security monitoring of the assets in your digital infrastructure. In the Mondoo Console, you can always see up-to-date scan results for all the assets registered with your account.

The Organization Overview, Dashboard, and Security Overview in the Mondoo Console provide many ways to monitor your overall infrastructure security. From these pages, you can drill down into the security of individual assets, and even how they score on different checks in a policy.

Assess your security posture

The Dashboard of a space gives you a quick understanding of your security posture. To access a space's dashboard:

  1. In the Mondoo Console, navigate to the organization containing the space you want to view.

    Monitor organization security in the Mondoo Console

    The Organization Overview shows trends in your security scores and important vulnerability information.

  2. In the side navigation bar, select Spaces.

    Spaces in the Mondoo Console

  3. To view security for a space, select the box representing the space.

    Space dashboard in the Mondoo Console

    The Space Dashboard shows:

    • An interactive chart of all the assets in the space

    • A list of the most important vulnerabilities to fix (based on risks and affected assets)

    • A list of the most important security findings (such as configuration settings that put your organization at risk)

    To learn how Mondoo ranks the top vulnerabilities and findings, read Prioritize Security Findings.

  4. Use the interactive chart to explore the space:

    • The main, inside circle shows the distribution of types of assets in the space.

      Hover over a section to see the distribution of security scores in that section.

    • The outer circle shows subsections of assets in the space.

      Hover over a subsection to see the distribution of security scores in that subsection.

    • Select a section to zoom into the chart and see details of the section. To zoom back out, select the center of the chart.

    • To see a list of all assets in the current chart view, select VIEW AS LIST. From that list, you can select an asset to see its detailed security information.

      List of assets in Mondoo

Find an asset's security details in the Inventory view

Another way to access an asset's security details is via the Inventory view.

  1. In the Mondoo Console, navigate to the organization containing the space you want to view.

  2. In the side navigation bar, select Spaces.

    Monitor organization security in the Mondoo Console

  3. Select the box representing the space you want to drill into.

  4. In the left navigation, under Inventory, select All Assets.

  5. Filter the list of assets:

    • If there are multiple types of assets in the space, you can select a type to show only assets of that type. For example, select AWS to show only AWS assets. To stop filtering by integration type, select the integration type again.

    • To filter by account, namespace, or configuration keywords, type the word or part of the word in the search box.

      Filter assets in the Mondoo Console

    • To remove a filter, select the x next to the filter.

  6. To see details on an asset's most recent security scan, select the asset.

    View security detail in the Mondoo Console

Choose asset details to view

The tabs on the asset detail page show different details:

To see...Select this tab...
General security and configurationOverview
The policies that apply to the asset, plus how the asset scores on those policiesPolicies
All the checks in all the policies that apply to the asset, plus scores on those checksChecks
All queries that retrieve data on the asset, plus the results of those queriesQueries
Known vulnerabilities discovered on the assetVulnerabilities
Publicly announced advisories discovered on the assetAdvisories
Resources connected with the assetResources
Any exceptions that apply to the assetExceptions

How Mondoo scores policies

When Mondoo scans your assets, it produces a graded score to assess risk to your business. Mondoo scoring is based on policies that match the type of asset scanned. For example, there are policies for Windows, Linux, Kubernetes clusters, and so on. You choose which policies are enabled in a space. An asset can match multiple policies enabled in a space.

Mondoo scores policies from A (highly secure) to F (highly vulnerable to attack) based on percentage scores:

From...To...Letter score
80100A
6079B
3059C
1029D
09F

To learn more about scoring, read Change a Policy's Scoring System.