Package: Invicti AppSec Core (on-demand), Invicti AppSec Enterprise (on-premise, on-demand)
Add new action
In the actions section, the following automated actions can be created to streamline vulnerability and project management processes.
Severity update
Based on the conditions set by the user, Invicti AppSec can automatically update the severity of vulnerabilities. For vulnerabilities that match the condition, their severity can either be set to a specific severity category or can be upgraded (i.e., Low→Medium) or downgraded (i.e., Critical→High) by one category.
This action occurs immediately after saving. From then on, Invicti AppSec adjusts the severity of vulnerabilities after every scan or import.
When downgrade or upgrade by one category option is used, Invicti AppSec takes this action only once on the same vulnerability.
This action can't be undone, meaning that even if the severity update is deleted, the vulnerabilities that were affected remain changed.
Auto-flagging
Auto flagging feature allows assigning flags to vulnerabilities in an automated fashion.
Once the action is saved, Invicti AppSec performs the assignment of the relevant flag on the vulnerabilities that match the condition set by the user. Going forward, flags are automatically assigned after each scan or import whenever the results contain a vulnerability that needs to be flagged.
When an action is deleted, flags that have been previously assigned to vulnerabilities aren't removed automatically.
Auto-labeling
This feature automatically assigns certain labels to projects based on the defined action.
The action is applied on all projects that match the criteria as soon as the action is saved. Going forward, Invicti AppSec checks whether there are new projects that need to be labeled on a daily basis.
Configuration options
- Remove labels automatically: When this toggle is enabled, Invicti AppSec automatically removes the corresponding label from a project when the rule isn't satisfied any longer
- Send automated email: This toggle can be enabled if you want Invicti AppSec to send an automated email when the label is assigned to a project
Example use case
For projects that have been recently onboarded to Invicti AppSec, security teams might want to create an onboarding email template for development teams to make sure projects are properly configured.
For this purpose, first a new email template can be created under Automation > Setup > Email Templates with the relevant onboarding checklist. Next, an auto labeling action can be defined with the following rule: Creation Date is Last 7 days. Then a label such as "Recently_onboarded" can be assigned to these projects and the relevant email template can be used to send out automated emails.
Action tracking
Automated actions taken on a vulnerability can be tracked under the change log in vulnerability details. These actions are also included in the audit log.
Need help?
Invicti Support team is ready to provide you with technical help. Go to Help Center