Overview
NopSec provides customers to view and query their Vulnerability data by creating Reports.
These reports are the main way to interact with your data to use for your Vulnerability Management processes. We will walk through the process of creating a Report and describe the unique features of a Report in UVRM.
Video
Navigation
From the Homepage you will want to navigate to the Infrastructure Vulns Reports page located on the left navigation in UVRM.
Saved Reports
By navigating to the Infrastructure Vuln Reports page you will be presented with a list of existing saved reports that either NopSec created for you or that you or your team has created. This list shows the unique name for the Report, the query for the report, and the metadata related to the report.
View existing Report
If you’d like to view an existing report, select the report you’re interested in seeing and click on its Name. You will be presented with the Report and its associated query will be filled in by default for you.
You may modify the report or create a new report from this view if you’d like.
Also, you may share or bookmark this URL to quickly visit this report in the future.
Create a New Report
From the Report Overview page you can create the “NEW REPORT” button at the upper right corner of the screen. You will be presented with the default report page with no query filled in.
Here you can interact with the Report Builder at the top half of the page. This is where you fill in your query by either using our UI filters or supplying the query string using our Advanced Query feature.
Before we create a query, let’s go over our Report Builder UI.
Here you’re presented with the name of the report, currently defaulted to “NEW REPORT”.
Next you have the filters section where you can apply one or more filters to your report.
Below Filters you’ll see “Vuln Status” which is a list of states per vulnerability between: Open, Remediated, Risk Accepted, and False Positive.
To the side of “Vuln Status” we have “Group By”. This selection dictates the type of report you will be presented with (columns and data) as it is normally used to group two or more types of data together, the most common being Vulnerability Instances which combine Asset Data with specific Vulnerability Instances on that asset.
Finally, to the right you have a count of the number of records which will be presented to you in your report BEFORE you run the query. This is helpful if you’re looking for the presence of items as your query may return 0 items. Then you have the “RUN REPORT” button which runs the query and displays the data below.
Creating a Filter
Click on “ADD FILTER” and you will be presented with a list of available filters to choose from.
You must select one filter at a time. In this example we will select Asset Value. When you select a filter, depending on the filter type, you will be presented with criteria specific for that filter. In this example we have selected the Asset Value filter and are presented with a matching criteria to select between Equals or Not Contains. We selected Equals in this example.
You can validate the selection by the presence of the semicolon (“:”) next to Asset Value instead of “!:”.
Next each filter may require either a free form value or you may be able to select from a dropdown selection presented to you in the UI. In this example I chose from the drop down, 1 and 2.
By hitting “Enter” or clicking on the report page the filter is set.
At this point you will be able to see the updated count on the right or you may click on “RUN REPORT” to initiate the full query and be presented with the report.
Save the report
Assuming you’re happy with the results and you’d like to save the query for future reference you can update the name of the Report by clicking on the edit button next to “New Name” and filling in your new report name.
Next, you’ll have to hit the “SAVE REPORT” button on the top right corner of the screen.
At this point, you will be shown a confirmation message on the screen that the report was saved, and you can validate by going back to the Report overview screen and looking for your report by name or sort by date.
Conclusion
Now you know how to view and create reports within UVRM. In our upcoming video series we will walk through report types and how you can leverage them in your VM processes.
If you have any questions please reach out to support@nopsec.com or submit a help ticket here.