Working with Projects

The Projects page displays a list of all projects (monitored and unmonitored) and explains options to work with them.

Once an application is activated and discovered by the installed agent, CxIAST creates a new project for the newly discovered application. The Projects page displays the projects under the Unmonitored Projects tab.

To enable monitoring projects automatically:

Use the Auto Monitor Projects switch to automatically enable monitoring projects. Once enabled, monitoring of projects starts automatically.
If disabled, every new project must be activated manually.

To monitor an activated project manually:

Go to the Unmonitored Projects tab at Projects > Unmonitored Projects and click MONITOR in the line of the desired project. The selected project is moved to the Monitored Projects tab and monitoring starts immediately.

To exclude an activated project:

Go to the Unmonitored Projects tab at Projects > Unmonitored Projects and click EXCLUDE in the line of the desired project. The selected project is moved to the exclusion list. Refer to Exclude Applications/Projects for further information.

Once monitoring starts, the monitored project is displayed in the list of projects in the Monitored Projects tab.

To filter projects to display projects of certain names, certain teams or those that encounter certain severities:

In the Monitored Projects tab, click Name, Team or Severity. You are now able to select the projects to be displayed or hidden accordingly.
Select or clear the respective project, team name or severity and click <SAVE>. Your selection is saved.
To select or clear all projects, click Select All.

To cancel the filter:

Click Reset. All projects or teams are displayed again.

Project grouping allows you to associate different projects into a group. The CxIAST agent automatically registers applications or (micro) services in the CxIAST Web Interface, which may lead to multiple projects. In case your application is built with several components, this option allows you to aggregate these components with a high-level view of all your applications.

Adding a project to a group is performed from the relevant action button as explained under Project Details in the section below.

The Project Details page includes the following information.

Column	Description
Vulnerabilities (Status)	This represents the number, status (recurrent, new) and severity (high medium, low) of security vulnerabilities discovered during a scan. The total number is aggregated to include all the vulnerabilities discovered during a scan.
	Recurrent – The status of a vulnerability is recurrent if it was already discovered in a previous scan, or if it was re-opened after being resolved in a previous scan.
	New – The status of a vulnerability is new if it was discovered for the first time.
	High – Vulnerabilities stated with a high severity.
	Medium – Vulnerabilities stated with a medium severity.
	Low – Vulnerabilities stated with a low severity.
Latest Activity	This represents the last performed operational and security related activities. Some examples include, Project <Project name> was discovered, Monitoring of <Project name> started, Scan started in <Project name>, <Project name> was created, New <vulnerability type> was detected in <Project name> in <URL>, Scan completed in <Project name>. Click on an activity to display the project related to the activity, refer to Application View.
	Show More – Click the link to display the list of the prior activities, refer to Show More.
Projects List (Monitored Projects)	List of monitored projects. Click the project to display scan and vulnerability information related to the selected project.
	SEVERITY – You can show/hide a severity type by clicking the Severity drop-down and selecting/unselecting the severity type filter (high, medium and low).
	Project Name – The original application name, or the display name given to the project. Also provides the coding language, location and assigned team(s), if defined.
Last Completed Scans	This represents the last completed scan. A completed scan is calculated from the time that the application under test is started to the time that the application stops. This is automatically refreshed once a new scan is complete and replaces any information from previous scans.
	Risk Score – This can be used to estimate the level of risk to the security of the project. Risk level is calculated from low (0) to high (100) and is based on the number and severity of the vulnerabilities discovered.
	Date – This represents the date and time that the last completed scan ended.
	Coverage – This represents the API coverage indication (percentage) when applicable, or another implemented method indication (percentage), and the number of distinctly unique requests (URs) logged and can be used to measure the quality/coverage of the scan. Hover the cursor over the number to display the API coverage/used method coverage, or the Unique Requests history information. Method coverage is supported only for Java applications.
	Vulnerabilities – This represents the number and severity of the vulnerabilities discovered during the last completed scan.
	High – Vulnerabilities stated with a high severity.
	Medium – Vulnerabilities stated with a medium severity.
	Low – Vulnerabilities stated with a low severity.
	This also displays the number of new vulnerabilities per vulnerability group.
	Mouse over each result to display additional information about the relevant vulnerabilities. The first is the total vulnerabilities found, the second is the number of new vulnerabilities. Clicking on a vulnerability displays the results for the project (see Project View).
Project Actions	Clicking More Options on project line provides the following additional actions: Rename Project – Change the display name for a project. Export Project Logs – Download a .zip file with the project's logs. Import Scans – Copy vulnerabilites from other projects by importing a scan (see Importing Scans). Delete Project – Delete the selected project (see Deleting a Project). Add to Group – Add project to existing group. Remove from Group – Remove the project from group. Stop Scan – Stop a running scan (see Stopping a Scan). The Stop Scan option is only available if the selected scan is running.
Group Actions	Clicking More Options on group line provides the following additional actions: Rename Group – Change the display name for a group. Export Group Logs – Download a .zip file with the project's logs. Ungroup – Remove all projects from group and delete the group.
Ongoing Scans	This represents all scans that are currently running. A scan is counted as in-progress as long as the application under test is still running. This is automatically refreshed and aggregated according to the last scan in progress.
	You can expand/collapse the Scan in-progress panel by clicking the expand/collapse icon (:collapse:)
	Status – Represents the status of the current scan in-progress
	Coverage API coverage and method coverage is supported only for Java applications. This represents the API coverage indication (percentage) when applicable, or another implemented method indication (percentage), and the number of distinctly unique requests (URs) logged and can be used to measure the quality/coverage of the scan.
	Vulnerabilities – This represents the number and severity of the vulnerabilities discovered during the scan in progress. Also displays the number of vulnerabilities per vulnerability group. Mouse over each result to display additional information about the vulnerabilities.
	High– Vulnerabilities stated with a high severity.
	Medium – Vulnerabilities stated with a medium severity.
	Low – Vulnerabilities stated with a low severity.
	This also displays the number of new vulnerabilities per vulnerability group.
	Mouse over each result to display additional information about the vulnerabilities. The first is the total vulnerabilities found, the second is the number of new vulnerabilities. Clicking on a vulnerability displays the results for the project (see Project View).
Projects List (Unmonitored Projects)	List of all unmonitored projects.
	Project Name – The name given to the application under test.
	Date Discovered – The time and date that the application was discovered (activated) and the project was created.
	Server IP – The server IP for the application under test.
	High – Vulnerabilities stated with a high severity.
	Medium – Vulnerabilities stated with a medium severity.
	Low – Vulnerabilities stated with a low severity.
	The figures displayed here represent the vulnerabilities detected in the last active scan. For more up-to-date vulnerability results the monitor action is required. Clicking an additional action provides the following functionality: Exclude – An activated application can be excluded from being monitored by being added to the exclusion list (see Exclude Applications/Projects). Monitor – An activated application can be monitored by being added to the Monitored Apps tab (see Monitoring a Project, above).

To enter the details of a project, click the Project Name in the list of projects. The selected project is displayed with the Vulnerabilities tab open. The Project View consists of the following three information tabs:

Scans
Vulnerabilities
APIs

The Project View displays the unique project name, for example WebGoat.
The coding language is appears in the middle, in this case SQL_Injection.
The scan ID, the date and time are located at the top right when the displayed scan has started (for running scans) or has been completed (for completed scans).
To navigate to the previous or next scan, click the relevant navigation arrow in the upper right corner.

In this section:

Working with Projects

Note

Search results