Skip to main content

Manage findings

This section contains information about handling findings in CI Sense. How to access them, how they're categorized, and ways CI Sense can help with managing them.

If you like to learn more about findings in CI Sense take a look at the concept of findings.

Select and filter findings

You can view findings for a specific project by clicking on Findings on the left sidebar. For a given run, CI Sense displays the total number of findings and the quantities for each severity: Critical, High, Medium, and Low. Select any of those to filter for the findings you are most interested in viewing. There may also be categories depending on the specific findings discovered during the fuzz run.

74 findings in project webgoat.3 critical, 38 high, 22 medium, 11 low severity

Manage your findings

CI Sense provides capabilities to help you manage your findings so you can properly triage, track, and ultimately fix them.

View findings for a specific project

You can asses the list of current findings for a specific project trough the Dashboard. It contains all available project cards in
the left pane near the top. Select the project from the dropdown menu in the left pane, below Dashboard and then click either Overview or Findings in the left pane.

There are three aspects you can see in the overview of current findings for a given project:

The overview provides a clear view of:

  • The current number of findings, total and new.
  • The severity classification of these findings.
  • The categories associated with the findings.

a project showing 74 total findings with various severities and API and OWASP categories

You can click the severity classification or one of the categories to quickly filter for the findings you consider highest priority.

Clicking one of the filters or on the project pane itself shows you the list of findings. Click a specific finding to obtain additional information.

stack buffer overflow finding with high severity

Finding status

A finding can have 1 of 3 different states: Open, Assessed, or Ignored. You can adjust these by selecting the Action dropdown on the right side.

  • An open finding indicates this finding wasn't processed in any way. If the fuzzer discovers this finding in the future, it reports it again.
  • An assessed finding is one that's currently analyzed. Assessed findings prevent the fuzzing run from failing when rediscovering them, but you still receive an alert about the finding.
  • ignored status is for any findings you consider unnecessary to fix for whatever reason. The fuzzer doesn't report this finding if it encounters it again.

Type and ID

The type of the finding, for example Stack Buffer Overflow, SQL Injection, or others and an identifier used by CI Sense.

Location

This column contains the location where the fuzzer discovered the finding.

Download your findings

You can download the findings as a PDF, Word document, or Excel document. Click on the Download symbol located over the actual findings.

CI Sense can link to external ticket systems to help manage the remediation process for a finding. Under the Action menu on the right of the finding, click link symbol named link issue, paste the URL of the created issue from Jira, GitHub, or others and click Link.

View details for a finding

When you expand a finding in the bottom pane (by clicking the > on the left side of a finding), it contains 3 tabs with different information: Debug, Description, and Log. These tabs contain several pieces of information that can help you determine the root cause of the finding.

  • The debug tab contains the fuzz test responsible for the finding, the source line, the stack trace (if available), and the crashing input.
  • The description tab contains the severity score, a short description of the finding, and possibly some links to additional information about this type of finding.
  • The log tab content depends on the type of fuzzing that discovered the finding. If the finding is from unit fuzzing, then the output is output directly from the fuzzer. If the finding is from Web API fuzzing, then the output contains the API request responsible for triggering the finding.