In the Security Center console, you can view the security status and security reports of your websites on the Assets page. In addition, you can run security checks on your websites. This topic describes how to view the security status of the assets that are associated with your websites and security reports of your websites.

View the security status of the associated assets and number of alerts

The Assets page displays security information about each website protected by Security Center, such as the root domain, subdomain, risk status of associated assets, and number of alerts. The following procedure describes how to view the security status of the associated assets and number of alerts.

  1. Log on to the Security Center console.
  2. In the left-side navigation pane, click Assets.
  3. On the Assets page, click the Website tab.
  4. On the Website tab, you can view the information about each website protected by Security Center.
    You can perform the following operations as needed:
    • View root websites and associated assets
      You can click Root website to view information about all root websites, including the Website Name and IP address. All root websites
    • View subdomains and associated assets

      You can click Subdomain to view information about all subdomains, including the Website Name and IP address.

  5. Optional: View the security status of the associated assets and number of alerts
    On the Root website or Subdomain tab, you can click a Website Name or View in the Operation column to view the details of a website. The website list
    • You can view the Domain, Root domain name, Risk Status, and Related Assets of a website. Related Assets information includes the Asset name/IP, Type, number of Server Vulnerabilities, and number of Alerts.
    • You can click the name of an asset to go to the details page. On the Basic Information tab, you can view the Risk State of the asset. For more information, see Manage individual assets.
    • You can click the number in the Server Vulnerabilities or Alerts column to view the details. For more information about how to manage vulnerabilities, see Overview. For more information about how to manage alerts, see View and handle alert events.

View website security reports

Security Center supports security checks for your websites and provides security reports based on the check results. The following procedure describes how to view the website security report.

  1. Log on to the Security Center console.
  2. In the left-side navigation pane, click Assets.
  3. On the Assets page, click the Website tab.
  4. In the Security Check section, click Security Check.
  5. On the Website Security Report page, you can view the security suggestions and statistics including the numbers of risky websites, alerts, and vulnerabilities.
    You can view the following information:
    • Website statistics
      In the Overview section, you can view the security score and the numbers of domains, risky websites, alerts, and vulnerabilities. The security score is calculated by Security Center based on the security status of your websites. The following content describes the security score to which each color corresponds:
      • Red: 10 to 69 points. If the security score is displayed in red, your websites contain a large number of security risks and are vulnerable to attacks. We recommend that you reinforce the security of your websites.
      • Yellow: 70 to 89 points. If the security score is displayed in yellow, your websites contain security risks. We recommend that you manage the risks based on the suggestions displayed on the page.
      • Green: 90 to 100 points. If the security score is displayed in green, your websites are in good security condition.
    • Risky Websites (TOP5)

      In the Risky Websites (TOP5) section, you can view the list of risky websites. You can view the domain names and numbers of vulnerabilities and alerts. If you want to manage the risks of a specific domain, you can click Processing in the Operation column. On the details page that appears, you can view the basic information about the domain, including the risk state and associated assets.

    • Alerts

      In the Alerts section, you can view the alerts generated on your website servers. You can view the alert names, risk levels, affected assets, and the latest time when alerts were generated. To manage a specific alert, you can click Processing in the Operation column. On the Alerts page that appears, you can manage the alert. For more information, see View and handle alert events.

    • Vulnerabilities

      In the Application vulnerability risks (top 5) and WebCMS Vul (TOP5) sections, you can view the vulnerabilities detected on your websites. You can view the vulnerability announcements, risk levels, and affected assets. To manage a specific vulnerability, you can click Repair in the Operation column. On the Vulnerabilities page that appears, you can manage the vulnerability. For more information, see Overview.

    • Suggestions

      In the Suggestions section, you can view the security suggestions provided by Security Center based on the check results. When you receive a suggestion, such as "We recommend that you enable tamper protection to prevent malicious modification and avoid unnecessary losses", you can click Processing. On the Tamper Protection page that appears, you can enable tamper protection for your servers.