How ConnectWise Streamlined Vulnerability Detection with ProjectDiscovery

Archival copy of a case study originally published on ProjectDiscovery Blog. All content written by Jason Harris.

Business Impact Using ProjectDiscovery

• Speeding Time to Detection: Scan times reduced from 2 days to 15 minutes for 10,000 assets.
• Quickened Incident Response: Automated vulnerability detection accelerated impactful security event response.
• Improved Security Posture: Continuous monitoring and template-driven scanning across 63 AWS accounts.
• Boosted Operational Efficiency: Eliminated need for maintaining custom security tooling like Nuclei.
• Proven Community Value: Access to crowdsourced knowledge and rapid template generation for emerging threats.

Introduction: Modern Security Challenges for MSP Software Providers

ConnectWise, established in 1982, provides business automation software that powers thousands of managed service providers (MSPs) globally. Like many software companies experiencing rapid growth through acquisition, ConnectWise manages a complex technology ecosystem. As their platform and attack surface expanded to over 43 products, so did the need for a more scalable, proactive security solution to detect trending vulnerabilities and manage external exposures.

The Challenge: Scaling Security Across a Growing Portfolio

Before implementing ProjectDiscovery’s Enterprise tier, ConnectWise’s security team faced significant scalability challenges. In addition to leveraging enterprise security solutions and bug bounty programs, they heavily relied on custom scripting to address security gaps, often performing manual scans and managing fragmented workflows across multiple cloud providers.

Senior Director of Security Operations Jason Ferguson shared, “Our attack surface continued to grow and mutate as we rapidly acquired new products and technologies. Traditional tooling often left quick wins laying on the table.” The team struggled with limited ability to manage rules at scale, unclear update cycles, and increasingly burdensome maintenance of custom security scripts.

The challenge intensified during the pandemic when the security landscape shifted dramatically. “The market was flooded with researchers utilizing vulnerability reporting and bug hunting for primary or secondary income,” Ferguson explained. “This created an unprecedented scale of security research activity.”

The Solution: A Community-Driven Security Platform

Seeking a more integrated approach, ConnectWise adopted ProjectDiscovery. Its automated scanning capabilities and customizable templates immediately demonstrated value.

“After getting the AWS role established, we had discovery up and running in minutes, and within two hours, all scans were completed with findings,” Ferguson noted.

ConnectWise chose ProjectDiscovery due to its strong open-source adoption and efficient scanning capabilities. Having previously relied on custom scripts and open-source tools like Nuclei, the team trusted ProjectDiscovery’s reliability and active development. ConnectWise selected ProjectDiscovery over competitors like Tenable Cloud for its community-driven agility — with continuous Nuclei template updates, the team could confidently identify vulnerabilities as they emerged.

Implementation: An Easy and Straightforward Integration Experience

The onboarding process was remarkably efficient. “It took just five minutes to segment our 43+ products and 63 AWS accounts into our 4 core business pillars. The longest part was simply waiting for our cloud team to set up the AWS role,” Ferguson stated.

Key implementation benefits included rapid deployment across business units, minimal configuration requirements, immediate visibility into security posture, and automated asset discovery and scanning.

Real-World Impact: The ScreenConnect Vulnerability Response

ProjectDiscovery proved invaluable during a critical security incident involving ConnectWise’s ScreenConnect product. The team used the platform to quickly write Nuclei templates for identifying impacted hosts at scale, independent of internal licensing and check-in systems — providing a deeper outside perspective and enabling continuous monitoring of worldwide patching progress.

The ability to parallelize scanning improved performance dramatically, allowing ConnectWise to track vulnerable instances across multiple regions and coordinate response efforts with partners.

During the initial proof of concept alone, ProjectDiscovery identified several lower-severity issues that other traditional scanning tools had missed. When chained together, these issues presented a direct risk requiring immediate remediation.

Results: Faster Discovery, Better Coverage, and Community Benefits

After adopting ProjectDiscovery, ConnectWise saw immediate improvements:

• Scan times dropped from two days to 15 minutes for large asset groups
• Access to rapidly updated templates for emerging threats
• Automated template generation for new vulnerabilities
• Enhanced visibility across their entire infrastructure

“At ConnectWise, we value community. We invest heavily back into our industry space and ensure we contribute back to the overall success of our partners,” Ferguson reflected. “Partnering with ProjectDiscovery, who shares those core beliefs of community value and security at scale, makes tooling decisions like this very simple.”

Conclusion: A Foundation for Scalable Security

ProjectDiscovery has become a bedrock of ConnectWise’s security strategy. Ferguson emphasizes that the platform’s impact extends beyond just tool replacement: “Moving forward with generative AI and automation around template creation, ProjectDiscovery is helping close exposure gaps in a time when more CVEs have been raised than ever before. The ability to quickly identify trending vulnerabilities and respond to them increases our confidence significantly.”