ScanSuite
  • Introduction
  • Architecture
  • Installation
    • Technical Requirements
    • Install ScanSuite server
    • Set up DefectDojo
    • Troubleshooting
    • SSL/TLS Setup
  • Administration
    • Setup parameters and services
    • Configuring API keys for external systems
    • User administration
    • Security logs
  • Usage
    • Products
    • Performing a static code analysis
      • Git repository authentication
      • Scheduling Periodic and Incremental Scans
      • (Optional) Compiling the code
      • Executing the OpenAI scan
    • Managing scan execution
    • Working with scan results
      • Checking for exploitable vulnerabilities
      • Export to Securitm
      • (Optional) Parsing CSV exports
    • Performing dynamic web scanning
      • Authenticated scans
      • API scans
    • Running infrastructure tests
    • Scheduling the scan
    • Creating own scanning rules
  • Versions History
    • v 1.0
    • v 1.1
    • v 1.2
Powered by GitBook
On this page
  1. Usage

Products

PreviousUsageNextPerforming a static code analysis

Last updated 2 months ago

Product creation is an essential step to perform before scanning.

Product is a "folder" within Defect Dojo, where scan results will be stored and discovered assets will be attached to.

Each product contains Engagements which could be treated as "subfolders". The initial pair will be created by ScanSuite based on the product name specified.

Give the new product a unique product name, it will not be possible to create 2 products with the same name:

Once the product is created, the respective Engagement ID can be found in the Scan History tab.

This ID will be used as a reference for the scan results storage in Defect Dojo:

Engagement ID will be saved and auto filled in the scanning forms so no need to memorize it all the time.

However it is important to check it during further scans submissions to ensure scan results are mapped to the intended products.

Product names are also used for saving scans and other naming so it is recommended to give a sensible name for the product to be able to find it later.

The list of created products can be retrieved in the same Products menu:

Clicking on the Product/ Engagement IDs is leading to the respective menus of Defect Dojo.

Important: Clicking on the Trash Bin will delete the product in Defect Dojo and ScanSuite along with all scan results and assets related the product.