หมายเหตุ
การเข้าถึงหน้านี้ต้องได้รับการอนุญาต คุณสามารถลอง ลงชื่อเข้าใช้หรือเปลี่ยนไดเรกทอรีได้
การเข้าถึงหน้านี้ต้องได้รับการอนุญาต คุณสามารถลองเปลี่ยนไดเรกทอรีได้
Microsoft Defender for Cloud integrates with Endor Labs to enhance vulnerability analysis by adding reachability-based Software Composition Analysis (SCA), helping security teams focus on open-source vulnerabilities that are exploitable within an application’s execution flow.
By correlating signals from source code repositories, build pipelines, and deployed workloads, Defender for Cloud provides visibility into exploitable vulnerabilities across the application lifecycle—from code development to runtime environments.
Reachable vulnerabilities and risk prioritization
Reachable vulnerabilities are security flaws in open-source packages that have a confirmed execution path within an application. Unlike vulnerabilities that exist in unused or inactive code paths, reachable vulnerabilities can be actively triggered and exploited, making them higher risk.
The Endor Labs integration identifies vulnerable security combinations, such as exploitable open-source dependencies used by internet-exposed workloads. This reachability context enables Defender for Cloud to prioritize vulnerabilities based on exploitability rather than severity alone.
Unified visibility across code and runtime
With this integration, Defender for Cloud correlates vulnerabilities identified in source repositories—such as Azure DevOps, GitHub, and GitLab—with workloads running across Azure, Amazon Web Services (AWS), and Google Cloud Platform (GCP). Security teams can trace attack paths from a vulnerable code commit through build and deployment pipelines to affected runtime resources.
Reachability analysis findings from Endor Labs surface directly in Defender for Cloud experiences, including:
- Security recommendations
- Attack path analysis
- Security explorer
This unified view helps central security teams understand how open-source risks propagate through their environments and where remediation efforts will have the greatest impact.
Benefits of integrating Endor Labs
Integrating Endor Labs with Microsoft Defender for Cloud enables you to:
- Prioritize remediation by focusing on vulnerabilities that are actively exploitable.
- Reduce noise from vulnerabilities that don’t pose immediate risk.
- Gain code-to-runtime visibility into how open-source dependencies affect deployed workloads.
- Identify high-risk vulnerabilities earlier in the development lifecycle.