NIS2, Are you on scope?
Belgium's new cybersecurity law enters into force. Check it out now.
What is the Quick Scan Report?
The Quick Scan Report service provides automated risk assessment reports which aim to assist your organisation in identifying and reducing potential cybersecurity risks linked to IT vulnerabilities visible from internet for your domain before they have a chance to cause damage.
Quick Scan Report is a free online service for organisations registered on the Safeonweb@work platform.
How can this be helpful for you?
- Get an instant overview of your organisation cybersecurity posture, free of charge.
- Report documents include a quick overview of your situation that can easily be shared with your management and stakeholders as well as documentation detailing each risk to facilitate their mitigation.
- Reports include concrete and practical recommendations to address identified risks.
- Reports include comprehensive categories, ratings and a color code easily understood by non-technical stakeholders and senior management.
How does it work?
Register your organisation on Safeonweb@work to activate your Quick Scan Report service and receive a free cybersecurity risk assessment report for your organisation.
This cybersecurity risk assessment report is based on data collected by CCB partners using non-intrusive techniques and threat signals gathered from trusted commercial, open-source, and proprietary sources. These threat signals are open and accessible from the public Internet, which means only non-intrusive techniques are used to gather information. Non-intrusive techniques never attempt to bypass any security controls an organisation has in place.
In concrete terms, once your organisation is registered on Safeonweb@work, you just need to enter your domain name and contact details, and activate the service to receive your reports via email.
The Quick Scan Report service provides an overview of the cybersecurity posture of your organisation by performing a non-intrusive scan of your domain and public-facing assets. It does not provide any information on possible infections on your network. This overview will allow you to organise a coherent action plan to mitigate risks and threats.
Quick Scan Report
Register your organisation on Safeonweb@work to activate your Quick Scan Report service and receive a report that will give you a overview of security vulnerabilities and improvement opportunities for your online assets.
Practical information
Please note that the Safeonweb@work team does not provide any operational support regarding the content of the Quick Scan Reports or the actions to be taken. Due to the huge diversity of contexts, installations, infrastructures, software, threats, infections, etc., the Safeonweb@work team cannot commit to answering all questions arising from the use of Safeonweb@work services.
If you have any questions about the content of your Quick Scan Reports, please contact your IT staff or your IT service provider.
Because of the large volume of requests, the Safeonweb@work team is not able to verify every information received on potential vulnerabilities and infections which may occasionally impact data quality. All critical information should be independently verified.
Currently each organisation benefits from one activation of Quick Scan Report every 3 months.
With the Quick Scan Report service, your organisation will receive different documents:
- A summary report with a one page overview document highlighting overall security ratings as well as risk count by severity.
- A detailed report with a detailed document providing rich context for each identified risk. Risks are grouped into one of five categories: website security, brand & reputation risk, network security, email security, and phishing & malware. Each identified risk is given a severity, name, risk type, and the number of domains impacted. By default, findings are sorted by severity, with the highest critical severity items at the top.
- A list of risks in excel format, allowing you to easily assess and treat each risk individually.
- A list of vulnerabilities in excel format, providing detailed information on each vulnerability identified by the scan.
- A domain risk report containing an overview of the risk posture of all your subdomains.
Frequently Asked Questions
How can we help you?
-
What are the services of Safeonweb@work?
Safeonweb@work offers several services to strengthen the level of cybersecurity of your company or organisation.
Some services are reserved for organisations registered on the platform.
Our services for registered organisations
These services are reserved for organisations registered on the Safeonweb@work platform.
Cyber Threat Alerts
The Cyber Threat Alerts service provides early warning of threats to your network. Safeonweb@work sends a specific alert if a vulnerability or an infection has been reported to Safeonweb@work on the network you have registered in the platform.
The CCB receives daily reports from its cybersecurity partners on infections and threats. Via Safeonweb@work, you can receive these notifications directly for your network and your domain. In concrete terms, once your organisation is registered on the platform, you just need to enter your network information (IP address(es) and domain name) and your contact details, and activate the service to be notified in case of the detection of a threat on your network. If a vulnerability or infection has been discovered, an e-mail with more details will be sent.
You can unsubscribe at any time by logging into the platform and turning off notifications.
Cyber Threat Alerts is a free online service for organisations registered on the Safeonweb@work platform.
You can find more information in our terms and conditions of use.
Please note that Safeonweb@work does not replace your antivirus software.
Register to activate your Cyber Threat Alerts service
Quick Scan Report
The Quick Scan Report service allows you to receive a report that will give you a overview of your organisation's online assets.
By entering your domain name, the application will inspect, through a non-intrusive scan, your network information to identify potential vulnerabilities. We will produce a report that we will send to you by e-mail with the discovered vulnerabilities and recommendations for remediation.
The Quick Scan Report is a free online service for organisations registered on the Safeonweb@work platform.
You can find more information in our terms and conditions of use.
Please note that Safeonweb@work does not replace your antivirus software.
Register to activate your Quick Scan Report service
Our services for all organisations
These services are publicly available and free to all organisations without registration.
Policy templates
We provide you with a set of customizable and editable cybersecurity policy documents to facilitate the implementation of information security management within your organisation.
Find our policy templates here
Self-assessment
Our self-assessment form allows you to evaluate your organisation's cybersecurity maturity level. After answering questions on cybersecurity topics, you will be able to measure your level of maturity, compare your level to that of similar organisations, and benefit from our practical recommendations in order to fill any gaps identified.
Find our self-assessment form here
Webinars
Our webinars aim to raise awareness of key cyber threats by providing practical advice to organisations on how to protect themselves and their data.
-
How can this be useful for your organisation?
Safeonweb@work aims to provide your organisation with tools to better arm yourself against cyber threats.
By enabling you to identify threats and vulnerabilities on your network and domain, you can proactively implement the appropriate protective measures to drastically reduce the risk of cyber attacks.
You can register your organisation and benefit from all our services for free.
Also discover all our tips to improve your organisation's cybersecurity, available for free to all.
-
Do I need to pay for Safeonweb@work services?
No, all Safeonweb@work services are completely free.
-
If I have questions about the content of my Cyber Threat Alerts report or Quick Scan Report, who can I contact?
If you have any questions about the content of your Cyber Threat Alerts report or Quick Scan Report, please contact your IT staff or your IT service provider.
Remember that these reports are confidential and should only be shared with members of your company or organization or contracted service providers.
Due to the huge diversity of contexts, installations, infrastructures, software, threats, infections, etc., the Safeonweb@work team cannot commit itself to answering all questions arising from the use of Safeonweb@work services.
-
Why do I have to enter my network information?
Entering at least one of your IP addresses is required to activate the Cyber Threat Alerts service.
By entering your IP address, we can warn you of "threats". Threats" are alerts specific to your network. These alerts are delivered by different partners. Safeonweb@work does not scan your network.
Entering at least one of your domain names is required to activate the Quick Scan Report service.
By filling in your domain name, we can send you an analysis report of your internet-connected assets, potential vulnerabilities identified and recommended remediation measures.
- Safeonweb@work will only use this information to send you specific alerts, not to scan your network.
- You can disable a service at any time from the services home page.
- Please note that you can only register a network if you are the owner or if you have received a written authorization from the owner to receive Safeonweb@work alerts.
- By registering your network you declare that you have read and accepted the terms and conditions of use and the personal data processing policy.
-
How is the information of the Quick Scan Report obtained?
This cybersecurity risk assessment report is based on data collected by CCB partners using non-intrusive techniques and threat signals gathered from trusted commercial, open-source, and proprietary sources. These threat signals are open and accessible from the public Internet, which means only non-intrusive techniques are used to gather information. Non-intrusive techniques never attempt to bypass any security controls an organisation has in place.
-
How long can it take to receive my Quick Scan Reports?
Quick Scan Reports are sent within 72h. If you haven't received an email from us after this period, please contact us.
-
How many domains can I use for the Quick Scan Report?
You can choose 1 domain per Quick Scan Report. Your Quick Scan Report will include observations for the linked sub-domains.
-
What are non-intrusive scanning techniques?
Non-intrusive or passive scanning techniques use standardized and publicly accessible network-based protocols to query hosts. In contrast, intrusive or active scans often attempt to compromise a system and thereby highlight security vulnerabilities.
Some attributes that can be scanned passively include for example Open ports, SSL/TLS certificates or DNS records. These three examples are non-intrusive, as the information is publicly accessible and there is no attempt to exploit the vulnerabilities found. While messages are sent to servers to trigger a response, these messages never try to take advantage of misconfigurations or simulate attacks.
-
Why isn't my domain name accepted?
If the website at the address of your domain name does not respond for various reasons, it will be considered non-existent and cannot be registered on our platform.