This tutorial will guide you to understand the Scan Report in Autobahn Fit
Table of content
Navigate to the Scan Report page
Learn more about the details of a running scan report
Learn more about the details of a finished scan report
Understand the Autobahn Fit scan report
After you create a scan or import vulnerabilities report from other tools into Autobahn Fit, the scans are displayed on Scanning pages. When the scan name is clicked, you will be directed to the Scan Report page.
In any case, the Scan Report for both scan and imported vulnerabilities appear identical, with the only difference being that scans created through Autobahn Fit have the option to rescan. The Scan Report page provides access to details such as Issues, Assets, and Workouts (remediation guidelines) collected during the scan.
Navigate to the Scan Report page
To open the Scan Report page, after you Log into your Autobahn Fit account, click the Scanning button on the sidebar and click the Overview or All scans button.
You will find a list of scans and imported vulnerabilities displayed on each page for your review. Click on the scan name to open the Scan Report.
Learn about running Scan Report
If you open a scan that is still running, you can see this information:
General information:
- Origin: The engine that is used to run the scan.
- Discovering host: The status of host discovery. The scanned open service and non-live host sections are visible when the status is finished. Otherwise, it will not show the number of open services and alive hosts
- Scanning for vulnerabilities: The status of the scan.
- Revision: The number of how many times the scan has been rescanned.
- Elapsed time: The time that has been taken to run the scan. The duration of the scan depends on the number of targets.
- Assignee: The person assigned to the scan. Usually selected during the scan creation, but you can change the assignee in the All scans page.
- Description: Description that was added during the scan creation.
Scanned open services: The ports that have been scanned by our engine.
Non alive hosts: The detected hosts that are non-alive.
Manual targets: The targets that you added manually during the scan creation.
Ports: The ports that you selected/added during the scan creation.
You can click this arrow button to open and hide each section on this page.
Learn about the finished Scan Report
On the All scans page, when you see scans with "Finished" status, it could mean that:
- The scan created using the Autobahn Fit scan function has been completed.
- The scan was created based on the imported vulnerabilities (ex: CyCognito, MS Defender for Endpoint, etc).
Clicking the name of a finished scan will direct you to the Scan Report page.
The Scan Report page is divided into several sections:
Issues overview: the total number of issues detected in the scan categorized by severity levels.
General details:
- Assignee: the person assigned to the scan. You can change the assignee by clicking the Edit button.
- Origin: the engine that was used to run the scan.
- Completed on: the timestamp indicating when the scan was finalized.
- Started on: the timestamp indicating when the scan was started.
- Number of live Assets: the number of sets that were scanned for vulnerabilities.
- Revision: the number of how many times the scan has been rescanned.
- Description: the description was added during the scan creation.
- Schedule: if during the scan creation, you selected a schedule, the schedule will be displayed here.
Severity distribution: This chart maps the severity distribution. You can use this chart to communicate the current security posture to your management board.
Cyber fitness workouts: list of workouts (remediation guides) that were crafted based on the vulnerabilities found in your scan. Click on the Workout(s) to view the remediation steps.
Individual issues: List of identified issues discovered during the scan.
Assets: list of assets that have been scanned by our engine.
Non-alive hosts: the detected hosts that are non-alive.
Targets: the targets that you selected during the scan creation.
Ports: the ports that you selected/added during the scan creation.
Download your Scan Report
Autobahn Fit gives you the option to download your Scan Report or Scan Scope. To download them:
1 - Click the Download button on the top right.
2 - Select the report you want to download. Your report should be automatically downloaded.
Rescan your scan
By utilizing the rescan function, you can save time when running a scan with the same scopes as your previous scans. This feature eliminates the need to add scan targets and configurations repeatedly. It is important to rescan your scan to ensure that remediated issues have not resurfaced.
Note: This feature only works for scans initiated through Autobahn Fit. It is not available for scans imported from other tools.
To initiate the rescan, navigate to the Scan Report page or the All Scans page.
a. On the Scan Report page, you can find the Rescan button in the top-right corner of your screen.
You cannot find this button if the scan status is canceled or in-progress
2 - Click the Rescan button. The system will show a pop-up of re-scan confirmation. If you wish to proceed, click ‘Yes’.
3 - There will be a notification in the top-right corner of your screen, saying that the system is starting the rescan process. If the rescan is started successfully, the notification pop-up will change.
4 - After successfully rescanning the scan, check the status of your scan by navigating to the All scans page.
On this page, you should see your scan and the status of the scan should be ‘Running’. The number of the scan revision will be incremented by one. The last scan revision refers to the one being rescanned.