Agent-Based Scanning

The agent-based scan provides a comprehensive analysis of cryptographic usage across application code, system configurations, and network interfaces to assess Post-Quantum Cryptography (PQC) readiness.

Under agent-based scanning, AppViewX supports the following scan types:
  • Code Scan
    The AppViewX Code Scan agent analyzes application source code and dependencies to identify:
    • Cryptographic Algorithms in use (e.g., RSA, ECC, AES)
    • Embedded / Hardcoded Certificates within the codebase
    • Cryptographic Libraries and their versions
    • Third-party Dependencies that introduce cryptographic functionality
    • This helps uncover quantum-vulnerable implementations and hidden cryptographic usage within the application stack.
  • Configuration Scan
    The AppViewX Configuration Scan Agent scans system configurations, endpoints, and network-exposed services to identify:
    • Cryptographic Libraries associated with each service
    • Cipher Suites supported and enabled across endpoints and network services
    • Security Protocols (e.g., TLS,SSL versions) used in communication channels
    • Certificates Bound to Applications and Services
    • Network-Exposed Certificates presented by services over the network
    The agent also supports the following advanced capabilities:
    • Certificate Deep Dive: Analyze certificates using a provided file path, including certificate chain, metadata, and cryptographic properties
    • Network Scan: Inspect live services and endpoints to detect exposed cryptographic configurations, including ciphers, protocols, and certificates in active use