New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

ProjectDiscovery: Vulnerability Scanning #103

Closed

topher-lo opened this issue Apr 28, 2024 · 0 comments · Fixed by #104

Assignees

Contributor

topher-lo commented Apr 28, 2024

User story:

Event-driven: I get new scan result coming in from webhook. Now triage vulnerabilities and escalate (if needed)
Scheduled triaging:
- Every 24 hours, collect all vulnerabilities in the past 24 hours
- Collect all tickets across multiple projects in a ticket tracker (e.g. linear)
- Given Nuclei vulnerability ID, search if it matches with any ticket
- If matches ignore, otherwise open new ticket

Implementation details

API: Get all scan results with time and severity filters
Must make sure scan_id in vulnerability object from PD matches with a scan_id metadata field in the external ticketing system
For the MVP, focus on results AKA vulnerabilities endpoints.

Testing strategy

The API needs stable: conforms to OpenAPI spec and with standard versioning
Will just mock the response themselves (no need for live testing)

Additional notes

Any use case for controlling scans from the soar? https://docs.projectdiscovery.io/api-reference/scans/create-scan

The text was updated successfully, but these errors were encountered:

topher-lo self-assigned this

topher-lo mentioned this issue

feat(integration): Get Project Discovery scan results #104

Merged

daryllimyt closed this as completed in #104

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment