Added Timestamps to Findings JSON File #492
Conversation
Signed-off-by: JohannesZahn <johannes_zahn@nc-online.de>
|
I think it might be good to change the way the ElasticSearch hook deals with timestamps in this PR. Also while were at it, is |
|
@J12934 so do you think we just drop the "@timestamp" field in elasticsearch then and include the "parsedAt" and "identifiedAt" fields? Or do we keep it for compatibility? |
|
Signed-off-by: Johannes Zahn <johannes.zahn@iteratec.com>
|
@rseedorff @J12934 the parser now uses "parsed_at" instead of "timestamp" in scb findings conform snake case. Here an example and the complete findings.json attached. {
"name": "Retrieved access-control-allow-origin header: *",
"description": null,
"category": "Nikto Finding",
"location": "http://juice-shop/",
"osi_layer": "NETWORK",
"severity": "INFORMATIONAL",
"attributes": {
"ip_address": "10.96.193.17",
"hostname": "juice-shop",
"banner": "",
"method": "GET",
"port": 3000,
"niktoId": 999986
},
"id": "370bebe5-54df-471b-a26c-a574cd465dd0",
"parsed_at": "2021-06-22T12:27:28.153Z"
} |
Signed-off-by: JohannesZahn johannes_zahn@nc-online.de
Description
The findings.json now contains a timestamp in ISO8601 format (UTC time).
An example Scan on juice-shop produced the results attached.
Checklist
npm testruns for the whole project.findings.zip