Affected Assets
Last updated
Last updated
© 2024 PlexTrac, Inc. All rights reserved.
Affected assets are managed from the finding, as opposed to the client. Affected assets contain information about an affected asset and relational metadata about the finding it is tied to.
An affected asset object on a finding will have a subset of fields compared to the client asset with the same ID. Some additional fields make sense when the finding and client asset are viewed together, such as the date the finding started affecting the client asset, the affected ports, location access to vulnerability, vulnerable parameters, and evidence of the affection.
Click here for more information about the affected asset object structure and all the fields and values it might contain.
Step 1: From the Reports module, click the row of the impacted report.
Step 2: Click the Findings tab.
Step 3: Click the row of a finding.
Step 4: If an affected asset(s) exist for this finding, they are listed on the Finding Detail modal.
A parent asset can be accessed directly by clicking the provided link within the table.
Step 5: Click View under the "Actions" column of the affected asset to see more information.
The Asset Detail modal appears with information about the affected asset and a link to any parent, if applicable.
The table view can be customized by clicking the column view icon to the right of the Add assets button.
Once clicked, a modal appears that lists all fields. To remove a column, click X within the bar.
Fields that are required do not have an X available.
When fields are removed, an "Add Column" pulldown menu is added at the bottom left of the modal to store the field. Any removed fields can be added later by clicking Add Column and selecting the field to add.
This modal represents the sequence of fields provided in the table, meaning the bar on top will be the column on the table's far left.
The order of columns can be adjusted within this modal by clicking the six dots on the left of the bar for a field and dragging the bar to the desired sequence place.
Click Save when finished.
Step 1: From the Reports module, click the impacted report.
Step 2: Click the Findings tab.
Step 3: Click Edit of the finding the affected asset is being added to.
Step 4: Click the Affected Assets tab.
Step 5: Click the Add Assets button and select Create new asset.
Step 6: Enter information about the affected asset in the appropriate fields within the Asset Information tab.
Step 7: Click the Affected Areas tab. Enter information about the following:
Affected Ports: Network ports vulnerable to a security exploit or attack.
Location/URL: The URL of the affected asset.
Vulnerable Parameters: The inputs or settings in a system or program that an attacker can exploit to compromise the security or integrity of the system. These parameters can include usernames, passwords, API keys, and configuration files.
Notes: A text box for any additional information to provide context on the affected asset.
Step 8: Click the Evidence tab. This tab contains two text fields (title and description) per item but as many items of evidence can be added as needed. Evidence represents when or how the affected asset was found, and often is the scanner output from the scanning process.
Step 9: Click Save.
The asset is now listed in the Affected Assets tab of the finding.
Step 1: From the Affected Assets tab of a finding, click Edit under the "Actions" menu.
Step 2: Edit or add information as desired and click Save.
Step 1: From the Affected Assets tab of a finding, click Remove under the "Actions" menu.
A modal appears, confirming the deletion. Click Remove.
Assets already in PlexTrac can also be added as an affected asset for a finding.
Step 1: From the Affected Assets tab of a finding, click the Add Assets button and select Add existing assets from the pulldown menu.
Step 2: Choose the asset(s) from the pulldown menu and click Save.
Assets can be imported using a PlexTrac CSV Asset import template. Click here to download the template and enter asset data to import.
Step 1: From the Affected Assets tab of a finding, click the Add Assets button and select Import assets from the pulldown menu.
Step 2: Drag a file into the modal or click the box to navigate to the file on the computer.
Step 3: Click Import.
A message will appear confirming import.
The asset(s) are now listed in the Affected Assets tab.
Step 1: From the Affected Assets tab of a finding, click the Add Assets button and select Bulk paste from the pulldown menu.
Step 2: Enter the assets into the box by separating each value with a comma. PlexTrac will parse the assets and add them to the finding. URLs with paths (ex., www.plextrac.com/test/) will be separated into parent and child assets. Click Next.
Step 3: Asset, ports, and child asset values are dynamically assigned. Review and uncheck the box next to any new assets that should not be added. Click Next.
Step 4: Add any desired optional tags. Tags will be assigned to all added assets. Existing assets will retain current tags. Click Add X assets.
The new assets are displayed in the Affected Assets tab of the findings.
Step 1: From the Affected Assets tab of a finding, click the box in the header row to the left of "Asset."
Step 2: The "Actions" button appears with the following options:
Add affected location/url
Add affected ports
Delete
Click the desired task from the pulldown menu and continue reading for additional details on each action.
A modal will appear with a field to enter a URL. The query parameters will be parsed out into the inputs provided. Click Add Parameter to include vulnerable parameters. Click Save when finished.
The new value appears on the Affected Assets tab under the "Location/URL" column.
A modal will appear with a field to enter any affected ports. Click Add Port to repeat the process as needed. Click Save when done.
The new values will appear under the appropriate columns on the Affected Assets tab.
A modal will appear, asking for confirmation of the action. Click Delete Assets.
Any subdirectories listed for an asset's domain will be loaded as its asset and considered a 'child' in relation to the 'parent' domain. This relationship will be tracked and maintained within PlexTrac. For example, www.plextrac.com/home will become two assets, with /home a child to www.plextrac.com.