Leaderboard widgets in discovery tab show different entities that are exposed to external threats. The values shown in the leaderboard along with column graphs are dynamic in nature. Currently, we have these entities that are vulnerable to cyberattack: Domains, Certificates, Brand Exposure, IP address, and Vulnerabilities. You can switch among these leaderboard widgets using a single click on each entity to drill down more details of respective category under discovery tab.
The column graphs within the leaderboard show the number of affected entities that are monitoring to prevent damage for a period of one month. Severity level of affected domains are marked in Red color which is seen on the left-side of the first column in table widget.
Domains leaderboard widget consists of associated domains, subdomains, and squatted domains that are monitored using Attack Surface Intelligence. The total number that are monitoring and number of risks found for associated domains, associated sub-domains, and squatted domains are shown in the respective table widgets.
Viewing detailed information in a Table widget
Click on any domain link under Asset Name column, a popup appears where you see the details as shown in the following image.
Click on any link under DNS records column, a popup appears where you can see the number of affected domains for each asset.
Managing Columns of a Table widget
Click three dots at the top of table widget where you can select/ deselect the columns using Manage Columns to customize table widget. Click Reset to get back to the default view of table widget.
Searching a word in Table widget
Type any text or numeric and hit Enter to display the results in table widget according to your search words or if you don't know what to search, just click on to see the search examples in the Search bar.
For example, see all domains registered under GoDaddy, just enter GoDaddy in search bar and hit Enter. All domains that are registered under GoDaddy will be shown in the table. Click X next to your search word to get back to default view of table.
Filtering Table widget
Dashboard filters allow you to see the data of most interest. Filters make it easy for users to apply conditions that are available in the dashboard to view different facets of data.
For example, if you are interested to see only the domains that are expired recently, click at the right side of table widget. A side menu bar opens, where you select Expired and click Apply.
Filters allow you to select one or more filters to display the data in table according to your filtering criteria.
For example, if you would like to view the data for hosting sites "Google LLC, and Orange Espange SA" and for top level domains - "com, and info". Select these filters in the Filter menu and click Apply. If you want to clear your selection, click Clear in the filter menu.
Changing Status of an asset in Table widget
Attack surface intelligence platform sometimes captures false positives due to low confidence level of an signal generated from various assets through integrations. The support team gets inundated with multiple signal that are not mandatory to act against them. Suppose security team do not want to monitor those false positive signal, do the following.
- Select that asset(s) for which a signal generated in a table widget, Change Status is enabled
- Click on the Change Status button at the top of table widget. A popup appears on screen
- Select Action from dropdown list (False Positive or Do Not Monitor)
- Enter Comments
- Click Next
- Click Confirm. Selected asset will be removed from monitoring status.