NeoCAT - Cloud Protection Platform

NeoCAT is a solution for continuous monitoring and mitigating security risks across cloud resources and services. Using agentless technology, it detects vulnerabilities in resource configurations, networks, privilege settings, and installed software. NeoCAT notifies users of vulnerabilities found in the cloud and generates a detailed report with a description of issues and troubleshooting instructions. About 400 unique security checks are available.

Benefits

• No extended cloud permissions required (only the viewer role).
• No need to install any agent.
• No transfer of data outside your cloud.

What’s new in version 1.7.5

• Improved the exclusion feature for checks and resources.
• Optimized the tables.
• Added the configuration export and import features.
• Added the Resources section with all cloud resources grouped by type and details of each of them.
• Added a way to select a template to show on the dashboard and in the Resoures section.
• Added the Vulnerabilities section (beta version) that lists vulnerabilities in all Docker images.
• Fixed cloud score update errors with resource exceptions.
• Added more information on checks.
• Security standards are now grouped and placed in a separate tab named Compliance.
• Added the Overview tab to the reports page with dashboards displaying scan results.
• Descriptions of checks on the reports page now contain a section with issue troubleshooting instructions and a description of possible vulnerability exploits.
• Updated a template file for exporting reports to PDF.
• Added the Resource Optimization recommendations section.
• Updated the sidebar.
• You can now make a rescan from a report page with the same parameters.
• Improved the design of reports and dashboards.
• Expanded and streamlined the list of fields when exporting a report to a CSV file.
• Admin users can now create pre-configured templates and share them.
• Time is now displayed according to the user’s time zone.
• You can now hide resources with no risks detected.
• You can now select the default template to display on the dashboard and in the inventory.
• Internally optimized the application with critical and minor bugs fixed.

1. In the management console, go to the cloud you wish to analyze.
2. Create a service account with the viewer role.
3. Get an SSH key pair to connect to a virtual machine (VM).
4. Create a VM from a public image:
   • Under Image/boot disk selection, go to the Cloud Marketplace tab and select NeoCAT — Cloud Protection Platform.
   • Under Network settings, in the Public address field, select No address to make a VM accessible from the internal network only.
   • Under Access:
     • In the Service account field, select the service account you created earlier.
     • Enter the username in the Login field.
     • Paste the contents of the public SSH key file in the SSH key field.
       Save the private IP address and ID of the VM.
5. Open http://<VM_private_IP_address>/ in your browser.
6. Use the following parameters for authorization:
   • Username: Admin
   • Password: <VM_ID>

Download the user guide here.

• Auditing cloud security
• Cloud security management
• Early detection and mitigation of cybersecurity risks
• Notifications about detected security issues
• Assessment of compliance with Yandex Cloud Security, 152-FZ, FSTEC, PCI-DSS, and CIS standards
• Cloud resource inventory and control
• Evaluating resource efficiency

Neoflex
Neoflex provides technical support to NeoCAT users in Yandex Cloud from 9 a.m. to 6 p.m. (UTC+3) on business days. You can contact support by email at yc@neoflex.ru.

Yandex Cloud
Yandex Cloud does not provide technical support for this product. If you have any issues, please refer to the developer’s information resources.