API DocumentationTemplatingService DeskPlexTrac Home
Search
⌃K
Links

Runbooks

This is a licensed feature.

Overview

The Runbooks tab allows the ability to view success at remediating issues over time for individual runbooks. When clicking the tab, all published runbooks that a user has permissions to view are provided in collapsible containers.
Clicking a container for a runbook provides a graphical view of the following information:
  • Runbook Stats: provides overview on clients impacted, findings generated, and tactics covered
  • Tactics Covered: shows how many procedures in a runbook were created as findings and how effective a security program was at stopping a various technique
  • Red Team Outcomes: gives a view and percentage breakdown of red team outcomes; moving the curser around the pie chart provides additional information
  • Blue Team Outcomes: gives a view and percentage breakdown of blue team outcomes; moving the curser around the pie chart provides additional information
  • Client Engagement Analysis: provides a bar chart graph visual of blue and red team outcomes by date to measure progress over time
The Runbooks tab provides a view of what tactics are being used to identify if gaps exist in coverage. It reveals trends to see how blue and red team outcomes change (or not) over time to ensure that blue team success increases as red team success decreases.

Query Bar

A bar at the top of the page tracks selected query parameters so that this information is always viewable and context is provided for a data set.
As the query parameters change, the query bar is updated dynamically.

Filters

This tab has many facets that can be expanded or collapsed and used to further filter the data set:
  • Client(s)
  • Date range (values selected shown in query bar)
  • Runbooks (values selected shown in query bar)
  • Methodologies (values selected shown in query bar)
  • Engagements (values selected shown in query bar)
  • Engagement Tags
  • Tactics (values selected shown in query bar)
  • Red Team Outcome
    • Success
    • Partial Success
    • Failed
    • Unknown
  • Blue Team Outcome
    • Blocked
    • Alerted
    • Logged
    • No Evidence
  • Included as Finding
    • True
    • False
Previous
Assets
Next
Trends & SLAs
Last modified 1mo ago
© 2022 PlexTrac, Inc. All rights reserved.