Does Pacbot use AWS API and Azure APIs to fetch assets?

[bhuvi11]

Hello Team,
@Akashbhaskaran : Can you help on this also
It was mentioned that PacBot has plugins to pull data from Qualys Vulnerability Assessment Platform, Bitbucket, TrendMicro Deep Security, Tripwire, Venafi Certificate Management, Redhat Satellite, Spacewalk, Active Directory and several other custom-built internal solutions.

So does PacBot rely of them to get assets or the rules?
Does pacbot use AWS or Azure APIs

[kaykumar]

PacBot uses AWS and Azure APis.

The rest of the datasources like Qualys, they are used to enrich the data, for example: you have a problem if your machine is open to internet but you have a bigger one if that machine has a remotely exploitable vulnerability , this vulnerability dataset for assets is coming from Qualys, and used by rules to assess the compliance and security posture.