Introduction

By providing a centralized view of vulnerabilities, the AppSecOps Dashboard streamlines the process of identifying, prioritizing, and remediating security risks effectively.

View Filters

Users can view the global filters and can add custom filters.

1.Click "AppSecOps" on the Main Menu

On the left navigation pane, click AppSecOps.

2. Click "Dashboard"

Click Dashboard to view the AppSecOps Dashboard.

3. View Global Filters

The Filter section includes global filters. Any filters selected in this section will be applied to all the widgets in the dashboard.

4. Add Custom Filters

The Filter section also shows the ADD + option to add custom filters.

5. View Filters

Now we are going to discuss filters across these widgets. Click the Filter icon to view/hide the filtering options that are available for the widgets.

6. Add Custom Filter

To add a custom filter, click ADD +.

7. Select a Filter

Select the type of filter you would like to apply for the widget.

8. Select Values for the Filter

Click the drop-down list and select all applicable values for the filter.

9. Click "Ok"

Click Ok to apply the selected values to the filter.

10. Add Another Custom Filter

Follow the steps explained above and apply more custom filters.

11. Enlarged View

Users can enlarge the widget view and see the details.

View Widgets in Dashboard

Perform the following steps to view various widgets within the AppSecOps Dashboard:

1. View Widgets

The AppSecOps Dashboard shows many widgets, also known as charts. When the users scroll down the dashboard, they can go through the widgets one-by-one.

2. View "Risk-prioritized Software Supply Chain Vulnerabilities" Widget

View Risk-prioritized Software Supply Chain Vulnerabilities widget. This widget shows a risk-prioritized list of top ten vulnerabilities for the selected filter scope. This widget shows details about Issue ID, Graphion Score, CVSS, Severity, EPSS, Is KEV, Exploitability Metrics, Impact Metrics, Component Type, Component Name (Version), Project, Application, Prevalence, Fix Available, and Actions.

3. View Details for Widgets

For the Risk-prioritized Software Supply Chain Vulnerabilities widget, users can click View Details corresponding to an issue to view detailed information. Users can also click an Issue ID to view detailed information about an issue.

4. View Details Panel

The panel that appears when a user clicks on an issue ID on the screen shows aggregate information from several sources and presents it to the user in an intuitive manner. The details include the basic metadata about the vulnerability, associated dates, different types of scores, details about any active exploitations, and additional reference links. The top cards on the panel shows details about Severity, Graphion Score, CVSS, Vuln. Age, and Prevalence. After that, users can see these tabs -- Basics, Scores & Vectors, KEV (Known Exploited Vulnerability), and Reference Links.

5. Basics Tab

The Basics tab shows basic details about an issue ID such as issue description, key dates, identifiers, etc

6. Scores & Vectors Tab

The Scores & Vectors tab shows scores such as Graphion score, CVSS score, etc.

7. KEV Tab

The KEV (Known Exploited Vulnerability) tab shows all the issues related to a issue ID.

8. Reference Links Tab

The Reference Links tab shows references to advisories, solutions, and tools.

9. View "Vulnerability Graph"

View the Vulnerability Graph. The vulnerability graph is an extensive network diagram that helps you understand your security posture. It illustrates supply chain vulnerabilities, showing their presence and prevalence in software components and their location within your infrastructure. Furthermore, it visualizes infrastructure vulnerabilities, misconfigurations, and threats found in your cloud resources, along with their interdependencies, and contextualizes all issues to the organizational hierarchy.

When you click on a datapoint, the Vulnerability Details dialog box opens and users can view the details as per issue IDs. Users can click on an Issue ID to view more detailed information.

10. View "Vulnerability By Component"

The Vulnerability By Component widget shows the number of vulnerabilities associated with each of the software components in a heat map. This widget helps to identify which technologies are contributing the most to risk, allowing for better prioritization of remediation and risk management.

11. View "Vulnerability By Severity and KEV"

View Vulnerability By Severity and KEV widget. This widget shows a breakdown of vulnerabilities by severity and KEV.

12. View "Open Vulnerabilities By Severity"

View the View Open Vulnerabilities By Severity widget. This widget shows the number of open vulnerabilities, categorized by severity levels (Critical, High, Medium, Low) over time.

13. View "Vulnerabilities Over Build"

The Vulnerabilities Over Build widget helps users to monitor the trend of vulnerabilities across builds. The goal is to highlight how many vulnerabilities are newly introduced, how many are resolved, and how many software components are affected, enabling timely response before issues escalate.

14. View "Vulnerabilities By Age"

The Vulnerabilities By Age widget shows the vulnerabilities count (broken down with respect to severity) as per the age distribution. Users can toggle between CVE Publication Date to know about how long the issue has been publicly known and SBOM Ingest Date button to know about how long the issue existed in the environment.

15. View Details

Click on a datapoint on the widget to view more detailed information.

The AppSecOps Dashboard empowers users with a comprehensive overview of vulnerabilities, facilitating informed decisions and proactive security management. By utilizing this feature, you can enhance your security posture, improve response times, and ultimately safeguard your data against potential threats.

Important References

Refer to the procedures explained in following links to carry out certains tasks related to dashboards or widgets: