Exposure Management
Administration
Administration is where an administrator sets up and maintains everything Exposure Management depends on: which scanner engines feed it, how their data stays current, how assets and findings get classified, and a handful of workspace-wide dashboard settings.
Everything under Administration is administrator-only. If you don't see this section, your account doesn't have administrator access.
What it's for
- Connect and maintain your data sources: choose which scanner engines feed ThreatWeaver, save their credentials, and control how often they sync.
- Run ThreatWeaver's built-in scanner: deploy and manage WeaverScan agents, credentials, policies, and detection overrides.
- Configure threat intelligence: choose which intelligence feeds sync, and review the AI-generated detection content built from them.
- Set classification and dashboard defaults: decide how assets and findings are categorized, and which findings count in dashboard totals.
The screens in it
Administration groups nine screens:
- Data Sources: choose which scanner engine(s) actively feed your Vulnerability Management views. See Data sources & connectivity.
- API Config: enter and test each scanner engine's API credentials. See API Config & API Sync.
- API Sync: set a sync schedule, sync on demand, verify your data, and rebuild dashboard snapshots. See API Config & API Sync.
- Import Scan History: bring in scans that ran before you connected an engine to ThreatWeaver. See Scanner connections & scan history import.
- WeaverScan: deploy and manage ThreatWeaver's built-in scan agents, credentials, policies, and per-check overrides. See WeaverScan.
- Intelligence: configure the threat-intelligence feeds ThreatWeaver syncs, and review AI-generated detection rules. See Intelligence.
- Classification Rules: the rules that sort assets into system-type categories and findings into OS vs. application layers. See Classification Rules.
- Dashboard Filters: the workspace-wide severity and state filter that decides which findings count in dashboard totals. See Setting dashboard filter defaults.
- Date Exclusions: exclude anomalous days of scan activity from dashboard trends and totals. See Excluding anomalous dates from dashboard calculations.
Where to go next
Data sources & connectivity
Choose which scanner engine(s) feed your exposure views.
API Config & API Sync
Connect a scanner engine and keep its data flowing.
WeaverScan
Deploy agents, credentials, policies, and detection overrides.
Intelligence
Configure threat-intelligence feeds and review AI-generated rules.
Classification Rules
Configure asset categories and finding layers.