The 5 Generic security checks Black Cat runs
Black Cat SSPM evaluates 5 security policies against your Generic configuration on every scan, classifies each finding by risk, and provides remediation steps. Below is the full list, grouped by category.
proxy intel
Investigate the login source and enforce conditional access or IP allowlists to block residential proxy usage
Verify the datacenter IP is from an authorized VPN or cloud egress, and restrict access if not
Block the high-confidence proxy IP and require step-up authentication for the affected account immediately
Investigate failed login attempts from proxy IPs for credential stuffing or brute force activity and block the source
Investigate admin proxy login immediately and enforce step-up authentication for all admin accounts