Priority

Edit online

Randori is designed to help organizations zero-in on a prioritized list of their most risky assets. Overall risk classification is set as a Priorityscore.

Priority is calculated based on two key components:

  1. Attackability: the likelihood an asset will be targeted by an adversary

  2. Business Context: the impact that asset has on the organization and the known defenses currently in place

Randori automatically assesses the Attackability component, providing you the attacker's perspective on all discovered Targets through Temptation and Characteristics. The platform then provides workflow features inside the product to let you assign the the relevant Business Context, using Impact and Status. By combining the external Attackability, the relative business Impact, and the work Status of the Target into a unified scoring system, it is Randori's intent to provide you with a stack ranked list of the highest risk entities in-need of your attention. Targets will be assigned a High Priority, Medium Priority, or Low Priority score and you'll see the pages in the platform are sorted on this Priority Score by default.

Priority

While each linked page has more detail on that specific factor, here is a quick breakdown of the 4 factors or Priority and how scores in each affect the overall Priority Score.

Properties and Scoring

The following section details the influence of each property on Priority scores.

Randori Provided Properties

  • Temptation: The likelihood an adversary will be interested in initiating action on a particular Service. This is the base scscore used as a starting point for the overall Priority Score. Temptation falls into the following categories:

    • Critcal

    • High

    • Medium

    • Low

    • In Review

  • Characteristics: Interesting attributes about how a particular Service is installed (such as is it displaying the Default Page for the software, is there an Expired SSL Certificate, or is there an Old Copyright Date). Each characteristic on a Target will increase the overall Priority of that Target.

User Assigned Properties

  • Impact: The relative business value a Target has to your organization. You can assign Impact as follows:

    • NONE: No effect on Priority Score

    • LOW: Decreases Priority Score

    • MEDIUM: Slightly Increases Priority Score

    • HIGH: Increases Priority Score

  • Status: The current state of your review of that Target, factoring in your known controls and defenses around the Target. You can assign Status as follows:

    • NONE: No effect on Priority Score

    • NEEDS INVESTIGATION: Increases Priority Score

    • NEEDS RESOLUTION: Increases Priority Score

    • NEEDS REVIEW: Increases Priority Score

    • ACCEPTED: Decreases Priority Score

    • MITIGATED: Decreases Priority Score

API Interaction

Priority Scores exported from the platform or pulled from the API will be numerical values. Priority is measured on a scale of 0-200 as follows:

  • High: >29.98

  • Medium: >20 and <= 29.98

  • Low: <= 20