Version: Current


All scanners integrated in the secureCodeBox create findings objects. These findings all contain the same set of fields listed in the example below.

# Unique uuid4 for the finding
"id": "e18cdc5e-6b49-4346-b623-28a4e878e154",
# name contains a short description of the finding
"name": "Open mysql Port",
# In depth description, can span multiple paragraphs
"description": "Port 3306 is open using tcp protocol.",
# The category is often used to group finding based on their types
"category": "Open Port",
# OSI network layer the finding fits into
"osi_layer": "NETWORK",
"severity": "INFORMATIONAL",
# Attributes are not standardized. They differ from scanner to scanner
"attributes": {
"port": 3306,
"state": "open",
"ip_address": "",
"mac_address": null,
"protocol": "tcp",
"hostname": "",
"method": "table",
"operating_system": null,
"service": "mysql",
"serviceProduct": null,
"serviceVersion": null,
"scripts": null
# Full url with protocol, port, and path if existing
"location": "tcp://"