Creating a Custom Field

Within Kenna, there are a number of fields that are presented by default on the vulnerability level including Risk Score, CVSS2.0 score, CVE number, Fix preview, asset impacted, last seen, found, status, etc. However if there is a field that you’d like to have on the vulnerability level that is not present by default you can create a custom field. Custom fields allow you to apply additional metadata to vulnerabilities.

Types of Custom Fields:

  • Text Fields

    • Text fields support up to 2000 characters of text. This can be used for additional notes, marking an Owner of a vulnerability, or any other text based data.

  • Date Fields

    • Date fields support a calendar date. When editing a date based custom field, a calendar popup will appear when you edit the field. You can also manually input a date in MM/DD/YYYY format. This type of custom field can be used to mark the date a vulnerability was Risk Accepted, a date to review the vulnerability status (Risk Acceptance or False Positive review/re-validation).

  • Numeric Fields

    • Numeric fields support any number. This number can include decimals.

Creating a Custom Field:

  1. First, navigate to the cog in the upper right hand side of your browser when logged in and from the dropdown menu select “Custom Fields”

    agfwrf.png

  2. Once in the Custom Fields Menu, you will want to click “Create New Custom Field”
    llclclc.png

  3. Complete the fields shown which includes: Naming the field, adding a description, selecting the type of field (Text, Date , or Numeric), and if you’d like to filter vulnerabilities on this field in the explore view. If you’d like to filter on this field in Explore, simply click the checkbox for faceted search.
    adsaasda.png
    *NOTE: for each unique entry in a custom field, it will create a new checkbox in Explore. Thus if you have 4 unique dates/numbers/text strings, it will create 4 checkboxes, one for each unique entry.

  4. Once you have defined your desired custom fields, they are automatically available for all vulnerabilities. To add data to these custom fields, you can add data individually, or in bulk if the entry you’re adding is the same across a group of vulnerabilities.
    • To add data in bulk, select all vulnerabilities to which you would like to add data, click edit, select the custom field you wish to edit, and input the information. This will be applied to all selected vulnerabilities.

      vlvlvl.png

      mceclip0.png


    • To add data to a single vulnerability there are two options:

      1. a similar workflow could be used, however only one vulnerability would need to be selected.

      2. you can click the blue “vulnerability details” arrow on the right hand side of a vulnerability, and then edit custom fields on the right hand side of the screen

        lnln.png


        ln.png

Was this article helpful?
0 out of 0 found this helpful
Have more questions? Submit a request

Comments

0 comments

Please sign in to leave a comment.