06-30-2011 05:02 AM
Using Filters and groups in the Scan Summary pane (Vuln Alert Grid)
WebInspect 9.1 received some valuable new functionality recently with the addition of filtering and grouping in the scan summary pane, what many call the alert grid. The summary pane has several tabs that provide data for vulnerabilities, information messages, best practices, scan log activity and server information. The filtering and grouping technology is accessible on each tab, except for the scan log. Applied filters and groups are distinct to each tab. You can save our preferred grouping method as the default way you view data in the selected tab. This post will focus on filtering and grouping in the vulnerability tab, but the techniques expressed apply to all the supported tabs of the summary pane.
So what changed?
The Vulnerability tab in the Summary pane (the section at the bottom of the scan view that lists all the vulnerabilities) has been enhanced to support grouping and filtering of results. To group alerts simply drag column names to the group box to collapse the vulnerability results by different criteria such as vulnerability type, location, or severity. In addition, you can filter by column names in the grid (such as path, severity, parameter, etc.), and you can filter the results based on the contents of the vulnerability. For example, you could filter vulnerabilities that had a response code of 500 or you could filter all the vulnerabilities that had the text “money” in the response. The filtering capability is extremely flexible and allows you to mine your vulnerability results by almost any type of criteria.
The attached document “WebInspect 9.1 filtering and grouping.doc” will provide you instruction on how to use this new functionality to organize your vulnerabilities, and zero in on those most important to you.