What is the Quick Scan Report?

The Quick Scan Report service provides automated risk assessment reports which aim to assist your organisation in identifying and reducing potential cybersecurity risks linked to IT vulnerabilities visible from internet for your domain before they have a chance to cause damage.

Quick Scan Report is a free online service for organisations registered on the Safeonweb@work platform.

How can this be helpful for you?

  • Get an instant overview of your organisation cybersecurity posture, free of charge.
  • Report documents include a quick overview of your situation that can easily be shared with your management and stakeholders as well as documentation detailing each risk to facilitate their mitigation.
  • Reports include concrete and practical recommendations to address identified risks.
  • Reports include comprehensive categories, ratings and a color code easily understood by non-technical stakeholders and senior management.

How does it work?

Register your organisation on Safeonweb@work to activate your Quick Scan Report service and receive a free cybersecurity risk assessment report for your organisation.

This cybersecurity risk assessment report is based on data collected by CCB partners using non-intrusive techniques and threat signals gathered from trusted commercial, open-source, and proprietary sources. These threat signals are open and accessible from the public Internet, which means only non-intrusive techniques are used to gather information. Non-intrusive techniques never attempt to bypass any security controls an organisation has in place.

In concrete terms, once your organisation is registered on Safeonweb@work, you just need to enter your domain name and contact details, and activate the service to receive your reports via email.

The Quick Scan Report service provides an overview of the cybersecurity posture of your organisation by performing a non-intrusive scan of your domain and public-facing assets. It does not provide any information on possible infections on your network. This overview will allow you to organise a coherent action plan to mitigate risks and threats.

Register to activate your Quick Scan Report service

Quick Scan Report

Register your organisation on Safeonweb@work to activate your Quick Scan Report service and receive a report that will give you a overview of security vulnerabilities and improvement opportunities for your online assets. 

Register to activate Quick Scan Report

Practical information

Please note that the Safeonweb@work team does not provide any operational support regarding the content of the Quick Scan Reports or the actions to be taken. Due to the huge diversity of contexts, installations, infrastructures, software, threats, infections, etc., the Safeonweb@work team cannot commit to answering all questions arising from the use of Safeonweb@work services.

If you have any questions about the content of your Quick Scan Reports, please contact your IT staff or your IT service provider.

Because of the large volume of requests, the Safeonweb@work team is not able to verify every information received on potential vulnerabilities and infections which may occasionally impact data quality. All critical information should be independently verified.

Organisations are currently limited to 1 Quick Scan Report service per year.

With the Quick Scan Report service, your organisation will receive different documents:

  • A summary report with a one page overview document highlighting overall security ratings as well as risk count by severity. 
  • A detailed report with a detailed document providing rich context for each identified risk. Risks are grouped into one of five categories: website security, brand & reputation risk, network security, email security, and phishing & malware. Each identified risk is given a severity, name, risk type, and the number of domains impacted. By default, findings are sorted by severity, with the highest critical severity items at the top.
  • A list of risks in excel format, allowing you to easily assess and treat each risk individually.
  • A list of vulnerabilities in excel format, providing detailed information on each vulnerability identified by the scan.
  • A domain risk report containing an overview of the risk posture of all your subdomains.

Frequently Asked Questions

How can we help you?

  • What are the services of Safeonweb@work?

    Safeonweb@work offers several services to strengthen the level of cybersecurity of your company or organisation.

    Some services are reserved for organisations registered on the platform.

    Our services for registered organisations

    These services are reserved for organisations registered on the Safeonweb@work platform.

    Cyber Threat Alerts

    The Cyber Threat Alerts service provides early warning of threats to your network. Safeonweb@work sends a specific alert if a vulnerability or an infection has been reported to Safeonweb@work on the network you have registered in the platform.

    The CCB receives daily reports from its cybersecurity partners on infections and threats. Via Safeonweb@work, you can receive these notifications directly for your network and your domain. In concrete terms, once your organisation is registered on the platform, you just need to enter your network information (IP address(es) and domain name) and your contact details, and activate the service to be notified in case of the detection of a threat on your network. If a vulnerability or infection has been discovered, an e-mail with more details will be sent.

    You can unsubscribe at any time by logging into the platform and turning off notifications.

    Cyber Threat Alerts is a free online service for organisations registered on the Safeonweb@work platform.

    You can find more information in our terms and conditions of use.

    Please note that Safeonweb@work does not replace your antivirus software.

    Register to activate your Cyber Threat Alerts service

    Quick Scan Report

    The Quick Scan Report service allows you to receive a report that will give you a overview of your organisation's online assets.

    By entering your domain name, the application will inspect, through a non-intrusive scan, your network information to identify potential vulnerabilities. We will produce a report that we will send to you by e-mail with the discovered vulnerabilities and recommendations for remediation.

    The Quick Scan Report is a free online service for organisations registered on the Safeonweb@work platform.

    You can find more information in our terms and conditions of use.

    Please note that Safeonweb@work does not replace your antivirus software.

    Register to activate your Quick Scan Report service
     

    Our services for all organisations

    These services are publicly available and free to all organisations without registration.

    Policy templates

    We provide you with a set of customizable and editable cybersecurity policy documents to facilitate the implementation of information security management within your organisation.

    Find our policy templates here

    Self-assessment

    Our self-assessment form allows you to evaluate your organisation's cybersecurity maturity level. After answering questions on cybersecurity topics, you will be able to measure your level of maturity, compare your level to that of similar organisations, and benefit from our practical recommendations in order to fill any gaps identified.

    Find our self-assessment form here

    Webinars

    Our webinars aim to raise awareness of key cyber threats by providing practical advice to organisations on how to protect themselves and their data.

    Find all our webinars here

  • How can this be useful for your organisation?

    Safeonweb@work aims to provide your organisation with tools to better arm yourself against cyber threats.

    By enabling you to identify threats and vulnerabilities on your network and domain, you can proactively implement the appropriate protective measures to drastically reduce the risk of cyber attacks.

    You can register your organisation and benefit from all our services for free.

    Also discover all our tips to improve your organisation's cybersecurity, available for free to all.

  • Do I need to pay for Safeonweb@work services?

    No, all Safeonweb@work services are completely free.

  • If I have questions about the content of my Cyber Threat Alerts report or Quick Scan Report, who can I contact?

    If you have any questions about the content of your Cyber Threat Alerts report or Quick Scan Report, please contact your IT staff or your IT service provider.

    Remember that these reports are confidential and should only be shared with members of your company or organization or contracted service providers.

    Due to the huge diversity of contexts, installations, infrastructures, software, threats, infections, etc., the Safeonweb@work team cannot commit itself to answering all questions arising from the use of Safeonweb@work services.

  • Why do I have to enter my network information?

    Entering at least one of your IP addresses is required to activate the Cyber Threat Alerts service.

    By entering your IP address, we can warn you of "threats". Threats" are alerts specific to your network. These alerts are delivered by different partners. Safeonweb@work does not scan your network.

    Entering at least one of your domain names is required to activate the Quick Scan Report service.

    By filling in your domain name, we can send you an analysis report of your internet-connected assets, potential vulnerabilities identified and recommended remediation measures.

    • Safeonweb@work will only use this information to send you specific alerts, not to scan your network.
    • You can currently register up to 5 IP addresses and up to 1 domain names.
    • You can disable a service at any time from the services home page.
    • Please note that you can only register a network if you are the owner or if you have received a written authorization from the owner to receive Safeonweb@work alerts.
    • By registering your network you declare that you have read and accepted the terms and conditions of use and the personal data processing policy.
  • How is the information of the Quick Scan Report obtained?

    This cybersecurity risk assessment report is based on data collected by CCB partners using non-intrusive techniques and threat signals gathered from trusted commercial, open-source, and proprietary sources. These threat signals are open and accessible from the public Internet, which means only non-intrusive techniques are used to gather information. Non-intrusive techniques never attempt to bypass any security controls an organisation has in place.

  • How long can it take to receive my Quick Scan Reports?

    Quick Scan Reports are sent within 72h. If you haven't received an email from us after this period, please contact us.

  • How many domains can I use for the Quick Scan Report?

    You can choose 1 domain per Quick Scan Report. Your Quick Scan Report will include observations for the linked sub-domains.

  • What are non-intrusive scanning techniques?

    Non-intrusive or passive scanning techniques use standardized and publicly accessible network-based protocols to query hosts. In contrast, intrusive or active scans often attempt to compromise a system and thereby highlight security vulnerabilities.

    Some attributes that can be scanned passively include for example Open ports, SSL/TLS certificates or DNS records. These three examples are non-intrusive, as the information is publicly accessible and there is no attempt to exploit the vulnerabilities found. While messages are sent to servers to trigger a response, these messages never try to take advantage of misconfigurations or simulate attacks. 

Other services

Safeonweb Browser Extension

The Safeonweb Browser Extension is an Internet browser extension that measures the level of trust you can have in the websites you visit.

Cyber Threat Alerts

The Cyber Threat Alerts service helps your organisation to investigate and mitigate potential cyber threats on your network by being notified of vulnerabilities and infections.