Get a Demo

Required fields are marked with an asterisk *
Skip to main content

Replace Kenna in 30 Days

Cisco recently announced the end of life of Kenna Security, with support ending in 2028. As a foundational component of many vulnerability management programs, Kenna’s retirement is prompting organizations to evolve to a modern CTEM program.

Zafran offers customers free Kenna migration services, which can be completed in as little as 30 days, with Zafran experts ensuring continuity across existing workflows, integrations, and business processes while planning for modernization and improvement.

“In just weeks, we migrated from Kenna to Zafran and immediately eliminated 90% of our CVSS critical vulnerabilities."

CISO, a major lending organization

The New Operating Model for Vulnerability Management

Apply your context and security defenses to reveal and take action against the biggest risks facing your business

Watch Video

Kenna replacement migration journey to Zafran

Kickoff

Set Program Goals

Alignment of program goals and establishment of joint partnership.

Integration
1st week

Connect Zafran to Sources

The initial configuration of the platform to vulnerability sources and compensating controls.

Access & Segmentation
2nd week

Platform Configuration & Segmentation

Configure Zafran with SSO, Associate assets with users based on segments and build custom dashboards for organizational KPIs.

Workflow & Ticketing
3rd and 4th week

Workflows development

Enable automated assignment and communication of exposures

Kickoff

Set Program Goals

Alignment of program goals and establishment of joint partnership

Integration
1st week

Connect Zafran to Sources

The initial configuration of the platform to vulnerability sources and compensating controls

Access & Segmentation
2nd week

Platform Configuration & Segmentation

Configure Zafran with SSO, Associate assets with users based on segments and build custom dashboards for organizational KPIs

Workflow & Ticketing
3rd and 4th week

Workflows development

Enable automated assignment and communication of exposures

Get Started
A diagram of a computer network with a red circle that says "zafra".

Discover

Continuously discover vulnerabilities across your hybrid cloud enterprise. No more partial pictures. No more data silos.

Zafran eliminates fragmented visibility by delivering continuous vulnerability detection and consolidating this with your existing vulnerability data into a single source of truth across all your attack surfaces.

  • Natively and continuously detect vulnerabilities with Zafran Discover - no new agents required
  • Agentlessly aggregate available scanner findings via API
  • Normalize, de-duplicate, and correlate vulnerabilities to assests
Watch the Video
A circle with four different colored circles in it.

Assess

Your context, your risk.

Zafran develops new information about your unique risk context, and uses this analysis to reveal the biggest risks facing your business.

  • Runtime presence of vulnerability
  • Internet exposure of IT assets at risk
  • Active exploitation of the vulnerability in the wild
  • Business criticality of IT assets at risk
  • Availability of security defenses already in your stack
Watch the webinar
A screenshot of a website showing a blue button that says "New Migration Action".

Mitigate

Reduce risk now, without waiting for patch windows.

Zafran shows you the way, using your existing security tools to rapidly mitigate risk at scale.

  • Maps vulnerabilities to compensating controls
  • Details step-by-step adjustments to tool policies or configuration for maximum effect
  • Significantly reduces the window of exposure
  • Removes remediation from the critical path of improved risk posture
Read Blog
A screenshot of a computer screen with a blue box that says Verify Close.

Remediate

In parallel to mitigation action, remediation addresses the root cause of the vulnerability and/or exposure.

Zafran minimizes noise, clarifies the path forward, and facilitates better collaboration and results.

  • Eliminate redundant ticketing
  • Optimize get-well action plans
  • Route remediation tasks reliably
  • Oversee remediation status without slowing anyone down
Learn More

Proactive Exposure HuntingTM

Zafran equips security to go on the offensive, to query the vulnerability data lake and proactively hunt for threats across the hybrid cloud enterprise.

  • Answer the inevitable question, “Are we exposed to…?”
  • Scope the degree of exposure and what to harden first
  • Reveal potential zero-day exposures through software component queries
  • Identify exposures associated with threat groups
Read: State of Exposure Management Report

Use Cases

Exposure Assessment & Remediation

Focus on vulnerabilities that are actually exploitables, fully contextualized with your compensating controls.

  • De-duplicate vulnerabilities from native and 3rd party scanners
  • Reduce 90% of noisy critical issues and achieve SLA relief
  • Quickly fix the 10% that matter, using high-impact, AI-optimized remediation action
Learn More

Proactive Exposure HuntingTM

Proactively find and mitigate exposure to 
high profile vulnerabilities, threat actors, and internet exposed assets

  • Reveal your exposure to high profile vulns and threat actors
  • Identify internet exposed assets across your hybrid environment
  • Deploy mitigations and fixes to proactively stop exploitation
Learn More

RemOps

Zafran minimizes noise, clarifies the path forward, and facilitates better collaboration and results.

  • Eliminate redundant ticketing
  • Optimize get-well action plans
  • Route remediation tasks reliably
  • Oversee remediation status without slowing anyone down
Learn More

Zafran Core Platform

Zafran + RemOps

Zafran + RemOps + Discover

Platform Capabilities

Ingest, normalize, de-duplicate 3rd party vulnerability data

Support on-prem, AppSec, public cloud data

Support EDR, Cloud, WAF, firewall

Integration with ticketing platforms (e.g., ServiceNow, Jira)

Vulnerability Assessment & Enrichment

Runtime presence

Internet exposure

Active threats in the wild

Impact of security defenses

Asset business criticality

Suggested Remediation Actions

Manual remediation management

Risk Mitigation

Detailed step-by-step mitigation action, using existing tools

Bulk mitigation actions

Reporting & Dashboards

Risk trends over time

Security tool effectiveness

Customizable dashboards and metrics

Proactive Exposure HuntingTM

Reveal exposure to high-profile vulnerabilities & threat actors

Identify internet-exposed assets across hybrid cloud environments

Find & fix control gaps on assets with critical vulnerabilities

Exposure Tracking of high-profile vulnerabilities

Remediation Operations

AI-optimized remediation action plans

Automated ticket creation policies

Automated assignment to the right task owner or team

Monitor remediation task status

Zafran Discover

Agentless scanning of managed devices

Windows and Linux hosting scanning

Endpoints, servers and running containers

Real time scanning

Cloud and on-prem assets

Get a Demo

Top Stories

Explore Resources
Whitepaper
Zafran Team

A Practical Guide: Evolving from VM to CTEM

Zafran Team
Read More
2025-08-08
Blog
Snir Havdala

Introducing Agentic Exposure Management

Snir Havdala
December 2, 2025
Read More
This is the default text value
A red background with a white logo that says Zafran.
On-demand
Author

Making the CTEM Shift: How to Build the Case, Start It and Scale It

November 13, 2025
Watch Now
Register Now
This is some text inside of a div block.

See Zafran in Action

Prioritize and fix what is truly exploitable using risk context from your existing security tools

Get a Demo
PlatformCareersResourcesTrust CenterCompany
© 2025 Zafran. All rights reserved.
Privacy PolicyTerms of Service
© 2025 Zafran. All rights reserved.
0:00