The Client

Our client is a major online higher education platform based in India. They offer advanced online learning programs and degrees from several reputed universities around the world. To facilitate this, they maintain a constantly changing web-based platform that more than 20,000 students access on a regular basis. 

The client’s development team was working on 4 separate applications simultaneously. Our security team began by performing vulnerability assessment and penetration testing (VAPT) on their platform, followed by security automation. We ran vulnerability scans on each of them, a total of 16 scans every week. When we sent the results to be processed by Orchestron, we found 16 open vulnerabilities. 

Orchestron’s correlation system organises each vulnerability according to its attributes, including false positive results. Our team immediately noticed that 12 of these 16 results were marked as false positives. One week later, we still found the same false positives on Orchestron’s dashboard.

75% of the client’s vulnerabilities were false positives. Without getting context for the vulnerabilities with Orchestron, the client’s small development team would have spent hours remediating vulnerabilities that were inconsequential.

Group 4001

4 applications being developed

Group 4002

16 new scan results every week

Group 4006

12 false positives discovered

What We Did About It

Once our team discovered that 75% of the scan results were false positives, it was a simple matter of ensuring they don’t show up in future scan results. We used Orchestron’s Hard Mark false positive feature to label those results as false positives. That way, when a new scan was performed, those same results wouldn’t show up again and clutter the vulnerability report.

The End Result

When they realised most of their vulnerabilities were false positives, the client got to work remediating the remaining open vulnerabilities. We were able to completely eliminate recurring false positive results from their reports, and reduced the number of vulnerabilities by 75%.

Group 4007

12 → 0
false positive results

Group 4008

16 → 4
correlated vulnerabilities

Group 4011

75% reduction in vulnerabilities

The client now develops 9 unique apps, all of which use Orchestron to correlate their vulnerabilities. By using Orchestron to organise their scan results, they’re able to streamline their pipeline and deploy new builds at an accelerated pace.