KDefend Landing Page
KDefend combines application, cloud, and data security into a single, unified view.
Dashboard Overview
Upon login, you land on the KDefend home dashboard — a summary designed to give you immediate visibility into your current security posture.
Top KPI Metrics
| Card | Description |
|---|---|
| Apps Protecting | Total number of applications currently monitored and protected by Kscope |
| Vulnerable Apps in Prod | Live count of production apps with unresolved vulnerabilities |
| Vulnerable Repositories | Number of code repositories containing critical or high-risk issues |
| Vulnerable Environments | Number of affected environments (Dev, QA, Prod, etc.) with detected risks |
Key Trends
| Chart | Description | Details |
|---|---|---|
| Application Risk Score | Color-coded heatmap over a 3-month timeline showing risk levels per app | View |
| Control Violations by Severity | Bar chart summarizing violations by severity (Critical, High, Medium, Low) | View |
| SLA Breach Tracking | Monitors vulnerability categories that have exceeded defined SLA thresholds | View |
| Open vs Closed Vulnerabilities | Time-series graph tracking remediation progress and backlog trends | View |
| MTTR Trends | Monitors mean time to remediate across vulnerability categories | View |
| Top Exploitable Vulnerabilities | Identifies the most exploitable vulnerabilities affecting applications | View |
| Insight Map | Holistic view of vulnerabilities across CSPM, DSPM, and ASPM domains | View |
| Pipeline Coverage | Security vulnerability coverage across software development lifecycle stages | View |
Sidebar Navigation
The left sidebar organizes KDefend into focused security areas.
Home
The default landing page. Provides an overall view of your application and environment security posture.
Pipeline Security
Focused on CI/CD and development pipeline security. Provides visibility into vulnerabilities detected through SAST and DAST tools.
- Monitor scan coverage across pipelines
- Track unresolved findings in early-stage development
- Enforce shift-left security compliance
Cloud Security
Cloud Security Posture Management (CSPM) visibility including:
- Misconfigured cloud services (S3 buckets, IAM policies, etc.)
- Public exposure of critical assets
- Multi-cloud misconfiguration detection across AWS, Azure, and GCP
Data Security
Data Security Posture Management (DSPM) covering:
- Unprotected databases (open RDS, MongoDB, BigQuery instances)
- Sensitive data flow risks (PII, PHI, PCI)
- Compliance exposure related to data storage and usage
Inventory
A unified view across code artifacts, build artifacts, cloud resources, identities, and policies.
| Capability | Description |
|---|---|
| Real-Time SBOM | Automatically generates and updates a Software Bill of Materials for every monitored application |
| Unified Resource Inventory | Consolidates visibility across development, infrastructure, and operational layers |
| Identity and Access Mapping | Surfaces relationships between services, owners, and access policies |
| Deployment Metadata | Tracks ownership, deployment targets, and business connections for each service |
| Environment Mapping | Traces which code repository or artifact is deployed to which environment or cluster |
| Relationship Awareness | Visualizes links between applications, APIs, cloud services, and data layers |
Insight Feeds
A continuous stream of prioritized, contextual security intelligence across your application ecosystem.
| Capability | Description |
|---|---|
| Unified Security Insights | Aggregates findings from code, build, and cloud environments into a single view |
| Business Risk Prioritization | Ranks insights by application risk scores, asset criticality, and exploitability |
| Emerging Threat Detection | Real-time alerts for zero-day vulnerabilities or active exploits impacting your stack |
| CVEs and Misconfigurations | Highlights newly disclosed CVEs tied to your deployed assets and cloud posture |
| Threat Intelligence Overlay | Enriches alerts with external threat intel and internal context |
KAI (Korweave Augmented Insights)
KAI is an AI-powered conversational assistant for exploring and analyzing your context graph. Ask natural language questions and receive real-time answers about your security posture, infrastructure, risks, and relationships.
- Interactive context graph exploration
- Context-aware security Q&A with risk and criticality awareness
- Dynamic risk analysis across services, APIs, and environments
Example queries:
- "What are the top 5 production risks for our financial services apps?"
- "Which S3 buckets are connected to applications with known vulnerabilities?"
- "Show me all services owned by the Payments team with critical control violations."
Jobs
Central hub for managing data processing, reporting, and export operations.
- Real-time job monitoring for scans, reports, exports, and integration syncs
- Downloadable output files including security findings, compliance audit trails, and SBOM reports
- Structured data exports for analytics platforms and custom dashboards
Settings
Configure your environment, integrations, and team access:
- Add cloud accounts or SCM tools
- Manage user roles and permissions
- Configure alert policies and thresholds
Need Help?
Use the built-in KAI assistant to ask questions about platform features or risk posture, or contact support at support@kscope.ai.