# Affected Assets Affected assets are managed from the finding, as opposed to the client. Affected assets contain information about an affected asset and relational metadata about the finding it is tied to. An affected asset object on a finding will have a subset of fields compared to the client asset with the same ID. Some additional fields make sense when the finding and client asset are viewed together, such as the date the finding started affecting the client asset, the affected ports, location access to vulnerability, vulnerable parameters, and evidence of the affection. {% hint style="info" %} [Click here](https://docs.plextrac.com/plextrac-documentation/master/plextrac-api-overview/object-structures/asset-object#affected-asset-structure) for more information about the affected asset object structure and all the fields and values it might contain. {% endhint %} ## Viewing Affected Assets Step 1: From the **Reports** module, click the row of the impacted report.

Step 2: Click the **Findings** tab.

Step 3: Click the row of a finding.

Step 4: If an affected asset(s) exist for this finding, they are listed on the Finding Detail modal.

A parent asset can be accessed directly by clicking the provided link within the table. Step 5: Click **View** under the "Actions" column of the affected asset to see more information.

The Asset Detail modal appears with information about the affected asset and a link to any parent, if applicable.

## Configuring Views The table view can be customized by clicking the column view icon to the right of the **Add assets** button.

Once clicked, a modal appears that lists all fields. To remove a column, click **X** within the bar.

{% hint style="info" %} Fields that are required do not have an **X** available. {% endhint %} When fields are removed, an "Add Column" pulldown menu is added at the bottom left of the modal to store the field. Any removed fields can be added later by clicking **Add Column** and selecting the field to add. This modal represents the sequence of fields provided in the table, meaning the bar on top will be the column on the table's far left. The order of columns can be adjusted within this modal by clicking the six dots on the left of the bar for a field and dragging the bar to the desired sequence place.

Click **Save** when finished. ## Creating an Affected Asset Step 1: From the **Reports** module, click the impacted report.

Step 2: Click the **Findings** tab.

Step 3: Click **Edit** of the finding the affected asset is being added to.

Step 4: Click the **Affected Assets** tab.

Step 5: Click the **Add Assets** button and select **Create new asset**.

Step 6: Enter information about the affected asset in the appropriate fields within the **Asset Information** tab.

Step 7: Click the **Affected Areas** tab. Enter information about the following: * **Affected Ports:** Network ports vulnerable to a security exploit or attack. * **Location/URL:** The URL of the affected asset. * **Vulnerable Parameters:** The inputs or settings in a system or program that an attacker can exploit to compromise the security or integrity of the system. These parameters can include usernames, passwords, API keys, and configuration files. * **Notes:** A text box for any additional information to provide context on the affected asset.

Step 8: Click the **Evidence** tab. This tab contains two text fields (title and description) per item but as many items of evidence can be added as needed. Evidence represents when or how the affected asset was found, and often is the scanner output from the scanning process.

Step 9: Click **Save**. The asset is now listed in the **Affected Assets** tab of the finding. ## Editing an Affected Asset Step 1: From the **Affected Assets** tab of a finding, click **Edit** under the "Actions" menu.

Step 2: Edit or add information as desired and click **Save**. ## Deleting an Affected Asset Step 1: From the **Affected Assets** tab of a finding, click **Remove** under the "Actions" menu.

A modal appears, confirming the deletion. Click **Remove**. ## Adding Existing Assets Assets already in PlexTrac can also be added as an affected asset for a finding. Step 1: From the **Affected Assets** tab of a finding, click the **Add Assets** button and select **Add existing assets** from the pulldown menu.

Step 2: Choose the asset(s) from the pulldown menu and click **Save**.

## Importing Affected Assets Assets can be imported using a PlexTrac CSV Asset import template. [Click here](https://docs.plextrac.com/plextrac-documentation/product-documentation/clients/adding-assets-in-clients#importing-an-asset) to download the template and enter asset data to import. Step 1: From the **Affected Assets** tab of a finding, click the **Add Assets** button and select **Import assets** from the pulldown menu.

Step 2: Drag a file into the modal or click the box to navigate to the file on the computer.

Step 3: Click **Import**.

A message will appear confirming import. The asset(s) are now listed in the **Affected Assets** tab. ## Bulk Importing Affected Assets Step 1: From the **Affected Assets** tab of a finding, click the **Add Assets** button and select **Bulk paste** from the pulldown menu.

Step 2: Enter the assets into the box by separating each value with a comma. PlexTrac will parse the assets and add them to the finding. URLs with paths (ex., [www.plextrac.com/test/](http://www.plextrac.com/test/)) will be separated into parent and child assets. Click **Next**.

Step 3: Asset, ports, and child asset values are dynamically assigned. Review and uncheck the box next to any new assets that should not be added. Click **Next**.

{% hint style="info" %} Any subdirectories listed for an asset's domain will be loaded as its asset and considered a 'child' in relation to the 'parent' domain. This relationship will be tracked and maintained within PlexTrac.\ \ For example, **[www.plextrac.com/home](http://www.plextrac.com/home)** will become two assets, with **/home** a child to \*\*[www.plextrac.com.\*\*\\](http://www.plextrac.com.**\\) \ ![](/files/i8qfoGw87yN6ENbHAaNv) {% endhint %} Step 4: Add any desired optional tags. Tags will be assigned to all added assets. Existing assets will retain current tags. Click **Add X assets**.

The new assets are displayed in the **Affected Assets** tab of the findings.

## Bulk Updating Step 1: From the **Affected Assets** tab of a finding, click the box in the header row to the left of "Asset."

Step 2: The "Actions" button appears with the following options: * Add affected location/url * Add affected ports * Delete

Click the desired task from the pulldown menu and continue reading for additional details on each action. ### Add Affected Location/URL A modal will appear with a field to enter a URL. The query parameters will be parsed out into the inputs provided. Click **Add Parameter** to include vulnerable parameters. Click **Save** when finished.

The new value appears on the **Affected Assets** tab under the "Location/URL" column.

### Add Affected Ports A modal will appear with a field to enter any affected ports. Click Add Port to repeat the process as needed. Click Save when done.

The new values will appear under the appropriate columns on the **Affected Assets** tab.

### Delete A modal will appear, asking for confirmation of the action. Click **Delete Assets**.

--- # Agent Instructions: Querying This Documentation If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question. Perform an HTTP GET request on the current page URL with the `ask` query parameter: ``` GET https://docs.plextrac.com/plextrac-documentation/product-documentation/reports/findings/affected-assets.md?ask= ``` The question should be specific, self-contained, and written in natural language. The response will contain a direct answer to the question and relevant excerpts and sources from the documentation. Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.