Dashboard Help

Managing members on your Catcher24 dashboard

Adding them, removing them, and other frequently asked questions. How many members can I add to my organization? You are able to add as many users as you like. How to add a new user to an organization? In order to be able to add new members to an existing organization, you must have an admin role within an organization. 1. Open the dashboard and select the correct organization. 2. Click Members under the Organization management section of the menu. 3. This is the current member overview of this organization, press the green invite member button. 4. Enter the email. https://app.arcade.software/share/Uz9CpfMKVJLpjAbc0CVC Your invited member will receive an email containing the invite information and login or register link to the dashboard. Once logged in, the member can accept the invitation and be part of your organization. How do I remove a user? 1. Open the dashboard and select the correct organization. 2. Click Members under the Organization management section of the menu. 3. Click the red garbage bin of the member you want to remove from your organization and confirm the removal of the member. Can I withdraw an invitation? When an invited member has not yet accepted the invite, the invitation will be shown in a separate invitations overview. You can simply remove the invitation and the user will no longer be able to accepted or decline the invite in their dashboard. 1. Open the dashboard and select the correct organization. 2. Click Members under the Organization management section of the menu. 3. In the invitations overview, click the red garbage bin of the member you want to remove from your organization and confirm the removal of the member.

What IPs does Catcher24 use to scan my environment?

If you’re using security technologies like a Next-Gen Firewall, Intrusion Prevention System (IPS), Intrusion Detection System (IDS), or a Web Application Firewall (WAF), they may flag Catcher's traffic as suspicious and block it. We recommend allowlisting our IP ranges to avoid these problems. This article provides the full list of IP ranges you’ll need to configure in your security tools to avoid false positives or blocked traffic during scans. 95.211.123.176/28 185.24.173.0/24 FAQ Where should I add these ranges? You should add these ranges to the appropriate IPS, IDP etc. you have enabled. If your applications are hosted by a 3rd party, please inform them that you will run scans from these ranges, to avoid your 3rd party blocking our IPs. What about my firewall? If you use a perimeter firewall, please don't add our ranges to it as that would show results which aren't accessible through the internet normally.

Catcher security score

The Security Score in Catcher provides a quick, comprehensive view of your organization's overall security posture. It combines three key metrics into a single score ranging from 0 to 100, where higher scores indicate better security. How the Security Score Is Calculated The score is a weighted sum of three components: - Vulnerability Risk Score (VRS) – 60% weight - Behavior Risk Score (BRS) – 25% weight - Endpoint Protection Score (EPS) – 15% weight Formula Security Score = (VRS × 0.6) + (BRS × 0.25) + (EPS × 0.15) If Phished integration or ESET integration is not configured, their weights are redistributed proportionally among the remaining components to maintain a total weight of 100%. Component Breakdown Vulnerability Risk Score (VRS) Assesses the severity of vulnerabilities in your environment. - Penalty per vulnerability: - Critical: 40 - High: 20 - Medium: 5 - Low: 1 - Score normalization: Average penalty is normalized against a max of 120. - Score caps based on highest severity: - Critical: max 50 - High: max 70 - Medium: max 85 - Low: max 95 - No vulnerabilities: 100 Behavior Risk Score (BRS) Derived from the Phished integration. - If configured, score is fetched directly (0–100). - If not configured, BRS is excluded from the calculation. Endpoint Protection Score (EPS) Evaluates ESET endpoint protection and update status. Formula: EPS = ((Protected / Total) × 0.6 + (Updated / Total) × 0.4) × 100 - If not configured, EPS is excluded from the calculation. How to Improve Your Catcher Security Score Improving your Catcher Security Score means strengthening your organization's overall cybersecurity posture. Since the score is based on three components—Vulnerability Risk Score (VRS), Behavior Risk Score (BRS), and Endpoint Protection Score (EPS)—you can target improvements in each area: Vulnerability Risk Score (VRS) – 60% Weight This is the most heavily weighted component, so reducing vulnerabilities has the biggest impact. Steps to improve: - Patch critical and high vulnerabilities promptly. These carry the highest penalties. - Conduct regular vulnerability scans to identify new issues early, or do this automatically by scheduling your scans. - Implement automated patch management to reduce manual effort and delays. - Remove or isolate unused or legacy systems that may introduce risks. Behavior Risk Score (BRS) – 25% Weight This score comes from the Phished integration, which assesses user behavior around phishing threats. Steps to improve: - Enable and configure the Phished integration if not already done. - Identify and report our phishing simulations in your email client. - Train your security awareness by completing security awareness training. Endpoint Protection Score (EPS) – 15% Weight This score reflects how well your endpoints are protected and updated via ESET integration. Steps to improve: - Ensure all endpoints have ESET protection installed. - Keep endpoint protection software up to date. - Automate updates and protection checks to maintain coverage. - Monitor for unprotected or outdated devices and remediate quickly. If Integrations Are Missing If either Phished or ESET integrations are not configured, their weights are redistributed. This means the remaining components become even more critical to your score. Tip: Configuring all integrations ensures a balanced and accurate score—and gives you more control over improvements.