Stop Firewall Mistakes Before Attackers Find Them

We’ve seen employees allow all IP addresses through a firewall instead of adding only their own IP to an allowlist. When employees don’t fully understand how firewalls work, mistakes happen. Unfortunately, these mistakes often go unnoticed for long periods of time - while quietly exposing parts of your system to constant attacks.

There are a few ways to catch this before it turns into a serious problem.

You could have someone review your firewall rules every week. But a week can be more than enough time for an attacker to find an opening. So maybe you pay someone to check the rules every day instead. Now you’re paying someone to repeatedly review something that rarely changes.

Another option is to automate checks using a tool like Nmap. You’d set up a server, place it behind a firewall, and schedule daily scans of your network with a cron job. That’s already an improvement - but then what? Are you really going to review scan results every single day, even when nothing changes?

At NerdSec, we’ve run into this dilemma many times and decided it was time to solve it.

With NerdSec’s Nmap as a Service (NaaS), we continuously scan your network for exposed ports. If something unexpectedly opens, you get notified. We also provide report comparisons over time, along with a simple dashboard that clearly shows your exposure and changes in risk.

We’re currently looking for volunteers to help us test and shape this service before its public release. If you’re interested, email levi@nerdsec.io and we’ll get you set up.

And if you’re a non-technical reader with questions, feel free to reach out. We’re happy to help.