Detecting no scans via API
38 views
Skip to first unread message
Geoff Whittington
Apr 11, 2017, 7:14:10 PM4/11/17
to ThreadFix
Hello,
Is there a way in the ThreadFix API to know whether there were any scans run for an application? Here's the situation, if we pull the vulnerabilities for an application - the absence of vulnerabilities indicates there are either none, or that there were no scans - and we need clarity on which it is.
Any API workaround or such would be appreciated.
All the best,
Geoff
Dan Cornell
Apr 11, 2017, 8:42:30 PM4/11/17
to ThreadFix
Here's the general REST API documentation:
I think the call you need is here:
That has an example "curl" call to test it out.
Look in object/scans array of the JSON returned (text from my test instance is below) I -think- you should be seeing the same stuff, but I'm running 2.4.6 Enterprise - not sure what version you are running.
Thanks,
Dan
========================
{
"message": "",
"success": true,
"responseCode": -1,
"object": {
"id": 1,
"name": "Merge",
"url": null,
"uniqueId": null,
"applicationCriticality": {
"id": 2,
"name": "Medium"
},
"grcApplication": {
"id": 1,
"nativeId": "81255431-fda2-45f7-abf4-14bd728",
"name": "Test Project 0",
"policyNumber": "KB003773",
"application": {
"teamName": "e-Commerce",
"teamId": 1,
"name": "Merge",
"id": 1
}
},
"scans": [
{
"id": 4,
"importTime": 1422366104000,
"numberClosedVulnerabilities": 0,
"numberNewVulnerabilities": 3,
"numberOldVulnerabilities": 0,
"numberResurfacedVulnerabilities": 0,
"numberTotalVulnerabilities": 20,
"numberRepeatResults": 0,
"numberRepeatFindings": 0,
"numberInfoVulnerabilities": 0,
"numberLowVulnerabilities": 2,
"numberMediumVulnerabilities": 3,
"numberHighVulnerabilities": 10,
"numberCriticalVulnerabilities": 4,
"scannerName": "Manual"
},
{
"id": 2,
"importTime": 1341514912000,
"numberClosedVulnerabilities": 0,
"numberNewVulnerabilities": 17,
"numberOldVulnerabilities": 0,
"numberResurfacedVulnerabilities": 0,
"numberTotalVulnerabilities": 17,
"numberRepeatResults": 0,
"numberRepeatFindings": 0,
"numberInfoVulnerabilities": 9,
"numberLowVulnerabilities": 1,
"numberMediumVulnerabilities": 1,
"numberHighVulnerabilities": 1,
"numberCriticalVulnerabilities": 5,
"scannerName": "Arachni"
},
{
"id": 68,
"importTime": 1320440009000,
"numberClosedVulnerabilities": 0,
"numberNewVulnerabilities": 24,
"numberOldVulnerabilities": 0,
"numberResurfacedVulnerabilities": 0,
"numberTotalVulnerabilities": 24,
"numberRepeatResults": 0,
"numberRepeatFindings": 0,
"numberInfoVulnerabilities": 0,
"numberLowVulnerabilities": 13,
"numberMediumVulnerabilities": 6,
"numberHighVulnerabilities": 2,
"numberCriticalVulnerabilities": 3,
"scannerName": "WebInspect"
},
{
"id": 3,
"importTime": 1307994767000,
"numberClosedVulnerabilities": 0,
"numberNewVulnerabilities": 25,
"numberOldVulnerabilities": 0,
"numberResurfacedVulnerabilities": 0,
"numberTotalVulnerabilities": 25,
"numberRepeatResults": 0,
"numberRepeatFindings": 0,
"numberInfoVulnerabilities": 25,
"numberLowVulnerabilities": 0,
"numberMediumVulnerabilities": 0,
"numberHighVulnerabilities": 0,
"numberCriticalVulnerabilities": 0,
"scannerName": "Burp Suite Pro"
},
{
"id": 1,
"importTime": 1307976287000,
"numberClosedVulnerabilities": 0,
"numberNewVulnerabilities": 45,
"numberOldVulnerabilities": 0,
"numberResurfacedVulnerabilities": 0,
"numberTotalVulnerabilities": 45,
"numberRepeatResults": 0,
"numberRepeatFindings": 0,
"numberInfoVulnerabilities": 5,
"numberLowVulnerabilities": 21,
"numberMediumVulnerabilities": 9,
"numberHighVulnerabilities": 0,
"numberCriticalVulnerabilities": 10,
"scannerName": "IBM Security AppScan Standard"
}
],
"infoVulnCount": 36,
"lowVulnCount": 27,
"mediumVulnCount": 12,
"highVulnCount": 12,
"criticalVulnCount": 12,
"totalVulnCount": 99,
"organization": {
"name": "e-Commerce",
"id": 1
},
"waf": {
"name": "Imperva",
"id": 2
}
}
}Reply all
Reply to author
Forward
0 new messages