General

The groups correspond to single projects that our clients create to manage their vulnerabilities separately. You may have several groups corresponding to separate applications, infrastructure or source code. When you create a group, the ethical hackers at Fluid Attacks start assessing it in search for vulnerabilities.

Scope overview

In the Groups view, you will find Scope Overview, which will give you global and visible information on the total of repositories and authors you have in the ARM. You will find the following fields:

• Covered autors: Total number of authors who have made commits to the repositories..
• Covered repositories: Total number of repositories at the organization level that are added for the source code analysis.
• Missed autors: Total number of authors who have made commits on the missed repositories (repositories Out of Scope).
• Missed repositories: How many repositories are not included in the source code analysis. (You can find these repositories in the Out of the Scope section).

Clicking on any of these four boxes will redirect you to the Out of the Scope section. If you want to know more about this section, click here.

Group table

In the group table, you find all the groups you have access to within your organization. This table has seven columns, each of which allows you to organize the list content alphabetically (either ascending or descending) if you click on the arrows next to each title.

You find the following information:

• Group name: The first column shows you the names of the groups.
• Group status: You can find three options: Subscribed, Free-trial and Suspended. Subscribed is when the method of payment is valid, Free-trial you find it when the group is part of Enrollment and Suspended means payment methods are being analyzed, or the Free-trial has been completed.
• Plan: You can see the plan to which each group belongs.
• Vulnerabilities: The total number of vulnerability types found in the group in an open state.
• Description: The next column gives you the short descriptions the groups received at their creation.
• Role: The role within each of them.
• Events: The last column tells you how many unsolved events each group has (to learn more about this column, we invite you to click here).

Note: When you enter a group, following the link in its name, you can see its detailed information in different subsections, which will vary depending on your role and the plan you have for that group.

Functionalities

Create new group

To start creating a new group, you need to click on the New group button in the main screen of your organization.

A pop-up window will appear to set up the characteristics of your new group. You will be asked to provide the following:

• Organization: Name of the organization in which the group is to be created.
• Group name: Enter a name for your group. It is recommended to choose a short one that is easy to remember.
• Description: Write a description that will help you identify the project to which that group is associated.
• Type of service: Select between Continuous Hacking - Machine Plan and Continuous Hacking - Squad Plan.
• Type of testing: Select between white-box and black-box testing.
• Report language: Select a language in which you would like your reports to be.

When you are finished setting up your new group, you can click Confirm. The group will be added to your group table immediately, and you will be all set to start working on your project.

Group filters

Filters allow you to limit the data you visualize, facilitating your search. The Group section has a Filters button which, upon click, allows you to filter your group search by either group name or plan (Machine Plan or Squad Plan).

Search bar

The search bar filters the information contained in the columns of the table.

NOTE: You can edit or remove a group in its Scope section.

Open eventualities

Unsolved events

In the group table, you find a column called Events. In this column, you can discover how many unsolved events need your attention in each of your groups.

When you enter one of the groups with at least one unsolved event, you can notice a red dot in the Events tab, which works as a warning signal that something requires your intervention.

When you click that tab, you see the event table with a Status column showing for each event whether it is solved (in green), unsolved (in red) or pending (in yellow).

If you want to know more about the event section, you can enter here