Introduction
It’s everyone’s favourite day of the month, Hexiosec ASM monthly blog day. Yet another example of how we’re continuously making updates and improvements; a vital quality of an External Attack Surface Management product as noted by the National Cyber Security Centre in their recent blog .
You know the drill, here’s a summary of what we’ve been up to, read on for more details:
- Exporting services to a CSV file
- EPSS data in Risks & Actions reports
- More information on IP Range seeds
- Link changes API endpoint
- Improved visibility of notable dates for actions
Exporting services as a CSV
This feature is not available to all tiers, please contact us to discuss adding it to your account.
Along with domains, IP addresses, and risks, you can now export services as a CSV file. Exporting to CSV allows you to collect all your services in one place and access the data in your spreadsheet software of choice. Whether you want to create your own charts, build tables, or process the data, you now have the flexibility to analyse and visualise the data the way you prefer. Remember, you can filter your services before exporting, so you can focus on what you care about.
EPSS data in Risks & Actions reports
EPSS data and the Risks & Actions reports are not available to all tiers, please contact us if you would like to discuss adding these features.
We released EPSS scores on risks a couple months ago and it has been received well. Following on from that work, it seemed sensible for data to make its way into the Risks & Actions reports. When you next generate a report, lookout for the EPSS Score & EPSS Percentile columns on the Risks and Actions sheets.
More information on IP Range seeds
IP range seeds have been enriched with some additional data that you’ll be able spot in the Explore page. These include:
- rdap_handle - The label the registry assigned to the network block.
- rdap_name - A unique identifier for the network object in the registry’s system.
- rdap_type - The registration category of the block.
New API Endpoint - Link Changes
The Changes page in the app provides an easy way to see the changes between the most recent iteration of a scan, and one from the past. That capability wasn’t available via the API, until now.
With the new link changes endpoint, you can get the added and removed links between any 2 iterations, enabling you to track changes in your scans without needing to build that functionality in your integration.
We know this is something customers have been asking for, so we’re pleased to have been able to release it this month. We hope this helps users in building more advanced and capable integrations with Hexiosec ASM.
For more information, consult the new user guide and API documentation:
- User guide - https://docs.hexiosec.com/asm/link-changes-endpoint
- API Docs - https://asm.hexiosec.com/api/ui#get-/v1/scan_data/-scan_id-/link_changes
Created & Resolved dates on actions
Following recent customer feedback, we’ve improved the visibility of the dates an action is created and resolved (if applicable). They can now be seen under the description when viewing an individual action, as well as on the list view, as optional and sortable columns. This should make it easy to find the most recently created and/or resolved actions.
Additionally, the created at column has been added to the Risks page as an optional column, making it easier to pinpoint your most recently found risks.
Coming Soon
Spoiler alert, we’ll be back next month with more updates, however I’ll be back to agonising over the names of variables, so you’ll be hearing from another member of the team.
We’ve got plenty more updates in the pipeline, here’s a couple to look forward to:
- Mail security checks: We’re working on some improvements to our mail security checks, including MTA-STS checks.
- Expiring domain checks: As mentioned in last month’s blog we’re working on new checks for domains at risk of takeover. As part of that we’ll be adding checks for domains that are about to expire.
Related Posts
