Reviewing Scan Details

Suggest Edits

Bright allows you to monitor the scan progress, check the setup parameters and runtime notifications, as well as view the scan results. All these options are available for each scan selected on the Scans or Scans History page.

Monitoring scan progress

You can monitor scan progress in the following sections:

  • SCAN DETAILS
    Shows the basic scan info, like scan name, hosts, and total found issues divided by its severity.

📘

Note:

To quickly open a list with the preferable severity, click on the item.

  • SCAN PROGRESS
    Shows the scan status, the scan duration (till the moment, or overall if completed), average scan speed, as well as the total requests. The overall progress is based on the percentage of completed tests. You can check how many tests have already been completed and how many still remain in the Progress tab of the SCAN INFO section. Also this module contains the information about a time saved by a parallel testing, which usually performed during a high-concurrency tests.

  • COVERAGE
    Shows the status of Entrypoints discovery.

Reviewing initial scan settings

You can check the scan settings on create in the Configuration tab of the SCAN INFO section.

Reviewing scan results

The SCAN INFO section contains detailed information related to the scan results in the following tabs:

  • Issues
    Shows all the issues (vulnerabilities) detected during the scan. All the issues are grouped by issue type. You can open the report on a specific issue by selecting it from the opened issue list. Each report provides detailed information about the detected issue and the guidelines on how to fix and prevent the issue. To find more information about issue reports, see Handling Discovered Issues.

  • Unconfirmed issues
    This tab is hidden by default, to make it visible, see the Tab adjustment. This tab contains suspected vulnerabilities as a result of SQLi test. Unconfirmed issues are available via Scan and Project CSV/PDF reports. To learn more about how to use reports in Bright, see the article.

  • Engine notifications
    You can view the notifications sent by the engine during the scan and download them.

  • Entrypoints
    Shows all entry-points discovered and scanned by Bright. You can open an overview for each entry-point by selecting it from the table. The tested scenarios represent the number of compromising requests sent to the application to reveal the vulnerability. The information on the tested scenarios is provided in the engine log that you can generate in the relevant tab. To learn more about scan entry-points, see Reviewing Entrypoints.

  • Network
    Shows the response statuses received by Bright from the application during the scan, as well as the number of responses per each status. Check this section to determine whether there may be problems with the scan. For example, if the section shows that Bright receives mostly 404 statuses, it may indicate that Bright is blocked by a WAF, or that there is an issue with authentication (it may have expired).

  • Tech stack
    Shows the detected technical stack that is used by the application. For example, which programming language is used, the type of database and/or web server, the front-end stack, and so on.
    The discovery of the technical stack by Bright may demonstrate to you how easily an external entity can discover it. As a result, you may decide to improve the protection of the technical stack.

  • Engine Log
    Allows you to generate the engine logs, which are then can be downloaded via the link sent to your email.

Tab adjustment

Bright provides the ability to customize the visible tabs on the Scan details page. To open the page settings, click on the right side of the Scan tab. Now you can toggle tabs visibility, or restore defaults.

Adding comments to a scan

The Comments tab enables you to add comments and notes describing the scan, notes for yourself, or notes for other members of your organization. You can format the comment using Markdown or the provided formatting tools. To mention other users in your organization, use the @ symbol.

After the comment is ready, click Preview to check the final view of the comment or Comment to post the comment immediately. After the comment has been posted, a new section called TOTAL COMMENTS appears at the bottom of the page. This section shows all comments posted previously. To include a comment in the scan report, select the Include in report checkbox under the comment.

Updated 3 months ago