Support
Explanations

Technologies dashboard

This document is for:
Invicti Enterprise On-Demand, Invicti Enterprise On-Premises

The technologies dashboard displays charts that provide an overall, cumulative picture of the types and numbers of technologies detected in your scanned web applications. Technologies are all the software versions of servers, databases, client and server-side libraries, and frameworks that are detected as in use on your targets.

This document explains the information available to view on the technologies dashboard. 

To view details of technology stacks used in your web application, refer to Viewing Recent Technologies.

How to view the technologies dashboard

  1. Log in to Invicti Enterprise.
  2. Select Technologies > Dashboard.

  1. Optionally, switch from the default view to a customized view according to your preference.

Default view

The default view shows information about all your target groups. The information is grouped and displayed on interactive widgets. Each of those widgets is explained in the later sections of this document.

Customized view

Using the Website Group drop-down, you can filter the displayed information by:

  • One of your target groups: This will show aggregated information for all the targets you have assigned to the selected target group.
  • Default: This will show aggregated information for all targets assigned to the default target group. (All new targets you add to your Invicti Enterprise account are automatically added to the Default group unless you remove them.)
  • All Targets: This will show aggregated information for all the targets you have added to your Invicti Enterprise account (regardless of which target group they are assigned to).

The information displayed on the global dashboard updates as soon as you select a customized view.

Technologies dashboard widgets

The technologies dashboard contains many widgets that display graphs and tables pertaining to your scan results. Refer to the individual sections below to learn about the information displayed on each widget.

Top panel

The top panel of the dashboard showcases the following widgets:

  • Technologies: This widget displays the number of detected technologies, along with the number of outdated technologies and detected issues. Clicking on this panel redirects you to the Technologies > Recent Technologies page with a filter set to 'Status = In use'. If a technology has been detected and is currently being used by the scanned web application, it is marked as ‘In use‘.
  • Active Issues: This widget showcases the total number of active issues and further categorizes them into Critical, High, and Medium severity levels. Clicking on this panel redirects you to the Technologies > Recent Technologies page with a filter set to 'Status = In use' and ‘Issues = yes’.
  • Fixed Issues: This widget presents the number of fixed issues along with their average fix durations. Clicking on this panel redirects you to the Technologies > Recent Technologies page with a filter set to 'Status = In use' and 'Fix time greater than 0'.

Most Identified Technologies

This treemap provides information about the versions of the most prevalently identified technologies in your targets. Hovering over individual technologies in the treemap reveals the following details:

  • Identified Technologies: The number of technologies
  • Out-of-date Versions: The number of out-of-date versions
  • Issue Summary: A count of each issue severity level present

Click the icon in the top-right corner to toggle between a table view and a chart view.

Severity Trend

This chart displays the increase or decrease of each vulnerability severity level over time. Click the icon in the top-right corner to toggle between a table view and a chart view.

Security Overview

The security overview widget features a pie chart illustrating website threat levels, categorized as follows:

  • Secure: No Medium, High, or Critical issues were detected in the scan.
  • Needs Attention: Some issues need to be addressed to enhance security.
  • Insecure: The website is insecure and vulnerable to malicious attacks.
  • Critical: The website has critical vulnerabilities that can lead to data compromise.

Click the icon in the top-right corner to toggle between a table view and a chart view.

Issues

The issues treemap provides an overview of the current active unresolved issues, grouped by vulnerability severity level. Hover your cursor over each section to view more information on the specific vulnerability severity level. Clicking on a section allows you to drill down further to view details of the individual issues. For more information, refer to Viewing Issues in Invicti Enterprise. Click the icon in the top-right corner to switch between a chart view and a table view.

Out-of-date Technologies

This widget displays the following information for each detected out-of-date technology used on your targets:  

  • Identified Version: The version number currently in use on the target.
  • Latest Branch Version: If there is a higher branch version than the version your target is using.
  • Overall Latest Version: The most up-to-date version available for the technology.
  • Issues: The number of issues associated with the out-of-date technology.

For example, in the image below, PHP is listed as an out-of-date technology with the identified version as 5.2.6, the latest branch version is 5.2.17, and the overall latest version is 8.3.10. This information tells you that you can upgrade modestly within the same major version to 5.2.17 or opt for a more substantial upgrade to the latest overall version, 8.3.10.

Click on a technology name to go to the Technology Detail page where you can view more information about the known issues in the detected version of the technology. Click See all of out-of-date technologies to go to the Recent Technologies page.

Issue Fix Time

This widget displays the estimated time required to fix each technology. Click on a technology name to go to the Technology Detail page where you can view more information about the known issues in the detected version of the technology.

Other dashboards

For information about other dashboards available in Invicti Enterprise, refer to the following documentation: