Skip to main content

Overview of Internal Network Scanning

HostedScan provides scalable and secure options to connect vulnerability scanners on internal networks to hostedscan.com for centralized management and reporting.

tip

This secure solution does not require any open ports, tunnels, or other access to your network.

How it works

To run vulnerability scans on an internal network, you will install trusted scanners that are widely used across the industry by millions of cybersecurity professionals along with a lightweight agent application on a single scanning server. The agent interfaces with the vulnerability scanners and connects to HostedScan to enable full command and control from your HostedScan dashboard.

info

Internal scanning requires a Premium or MSP account. If you have a Premium or MSP account, please contact us to enable internal scanning for your account.

HostedScan internal scanning diagram

Setup and run the HostedScan agent

Before starting, ensure that you have an account that allows Internal Scanning. See our pricing page for more information on internal scanning.

For detailed system requirements, see the Install Agent on Linux guide.

  1. Connect a new agent by clicking on Connect Agent on the targets page.
Connect a HostedScan agent
  1. Choose a name for the source network. You will initiate scans under this source network, and discovered targets will be grouped by it.
Name the Source
  1. Download the agent for Linux, and install the agent according to our Install Agent on Linux guide.
tip

Ensure that you copy the HostedScan agent registration key before closing the modal. The key is used to authenticate your installation of the agent to hostedscan.com.

Copy key
  1. At this point, HostedScan agent source network will show as Disconnected in the Sources table.
Start agent
  1. Start the HostedScan agent application by running the following commands on your scanning server:

You should see the source network transition from Disconnected to Connected in the HostedScan dashboard.

Run your first scan

  1. Click the Scan button for source network.
Agent Connected
  1. Enter the CIDR for this network
Start Scan
  1. Grab a coffee or read some emails while the scan runs. Depending on the number of IPs, and services running, scans may take hours or even a day to run.
Await Scan Results

Once completed, the following information is available in the HostedScan platform:

  • Scan reports - can be found on the on the scans page.
  • Discovered Targets - can be found on the targets page. You can use the filters to narrow to the source network.
  • Detected Risks - can be found on the risks page. You can use filters to narrow to the source network.