Vulnerability Detection
Overview
Displays the overall vulnerability status across applications and APIs.
Key Metrics:
- Application with Vulnerabilities
- API with Vulnerabilities
- Vulnerabilities Risk Level
- Vulnerability Trend
- Top 10 API with Vulnerability
- Top 10 Vulnerability
- Top 10 Vulnerability Type
- Top 10 Source IP
Time Range Options:
Last 1 hour, 24 hours, 7 days, 30 days, this month, and last month.
Vulnerabilities
The detected vulnerabilities will be listed with the information as follows:
Vulnerability Information:
- API Path
- Application Level: the risk level defined by the system
- Vulnerability Type: The type of vulnerability categorised by the system
- Vulnerability Category: The category of the vulnerability defined by the system
- Last Detection Time: The last detection time based on the system timezone
- Number of Detection: The total number of the same vulnerability under the same API detected by the system
Operation (Add to Whitelist):
Configure metrics, matching condition, and value of the APIs to skip the vulnerability detection.
Detection Rules
Displays a list of pre-defined rules to manage the most common API vulnerabilities.
Note: The basic information of managed rules - name, category, description, suggestion, and risk level - cannot be modified after creation.
Configuration:
- Whitelist: Configure metrics, matching conditions, and the value of the APIs