Rezilion Validate

Collects and sends runtime and memory data (from hosts, containers, and application interpreters) to the Rezilion Core.

• In CI – Deploy a Jenkins plugin
• In Orchestrated container environments (like Kubernetes – deploy a .yaml file to run DaemonSet
• In VMs/Hosts Environments – Collect runtime data using existing orchestration tools AWS SSM, Chef, Ansible, Salt (etc.)

No sensitive data is sent back to the Rezilion back-end. Collected data includes file paths, command-line arguments, hashes, and numerical representations of memory components.

Connects to commercial and open source scanners and sends the latest scan results to the Unison’s dynamic data lake (can also run locally in CI). Existing integrations include BlackDuck, JFrog (Xray), Tenable, Rapid7, Qualys, Snyk and others — new scanner integrations are being added as well, if you don’t see yours listed, ask us. 

Also, if you don’t yet have a scanner installed, Rezilion ships with open-source scanners like Trivy and OWASP Dependency-Check

Correlates Instrumentation data with the vulnerability scanners’ output using patented workload composition analysis in order to validate vulnerabilities and flag those that are unexploitable.

Validate maps identified vulnerabilities to all processes that are currently executing in the workload. Unison is constantly running, which means it updates exploitable vulnerabilities any time a change is made, or a new process runs for the first time.

• SaaS by-default (ISO 27001 Certified).