White shape | Hexiosec Logo

New ASM Features and Improvements | March 2023

Nicola Chapman
4 April 2023
|
2 min Read
|
Nicola Chapman

Introduction

March has been a significant month for Hexiosec ASM, seeing the launch of our public API, amongst many other great new features. Read on to find out more.

Public API

Hexiosec ASM now has a public API available allowing you to programmatically access your scan data. Using your existing Hexiosec login, you can easily generate an API key to start accessing your data.

Data available via version 1 of the API includes:

  • Information about your organisation
  • Information about your scan groups
  • Summary data for all of your scans
  • Lists of actions for each of your scans

Our interactive API documentation browser is shown below, and allows easy testing of the Hexiosec public API which conforms to the OpenAPI Specification.

Hexiosec ASM API

Full documentation of the Hexiosec API can be found here.

This is version 1 of Hexiosec’s ASM API. Over time you can expect new endpoints to access more of a scan’s data, and the ability to control scans from the API. Please contact us if there’s anything you would like to see included in the future.

API read access is available to customers on our Premium plan or higher.

CISA known exploited vulnerabilities (KEV)

The Cybersecurity & Infrastructure Security Agency (CISA) publish details of the Common Vulnerabilities & Exposures (CVEs) known to have been exploited in the wild by an attacker. Hexiosec is using this data to highlight any risks you have in your infrastructure that are known to have been exploited at some point.

CISA known exploits in Hexiosec

This isn’t saying you yourselves have been exploited necessarily, but is highlighting that attackers have been known to exploit this vulnerability in the past to gain access to a company’s network. This can help you to prioritise your risk remediation activities.

KEV risks list view

Scan history

Whether you’ve been running scans for 2 weeks or 2 years, we keep a full history of the scan, allowing you to keep an eye on your Risks & Health Score trends. To make it easier for you to view your full history, we now consolidate some of your older scan iterations.

Scan history over time graph

Coming soon

We’re always working on new features and improvements to Hexiosec, here’s an insight into what you will see coming soon.

  • Alert notifications of significant changes found in scans - e.g. newly discovered risks found in a daily scan
  • The ability to invite new users to your organisation.
  • Better visibility of all the checks Hexiosec is running for your scans.
  • The ability to remove a seed domain or IP from your scan while retaining the history of the scan
About Nicola Chapman
Nicola is the Product Manager for Hexiosec, working closely with the ASM engineers to represent our customers' and users' needs. She has over 10 years product management experience building products to help solve real world problems for businesses.
Nicola Chapman