https://api.bitsighttech.com/ratings/v1/companies/company_guid/findings?risk_vector=ssl_certificates
Get an organization’s TLS/SSL Certificates finding details.
Parameters
For details specific to TLS/SSL Certificates, use the ?risk_vector=ssl_certificates parameter. Other query parameters are listed in GET: Finding Details.
Example Request
curl https://api.bitsighttech.com/ratings/v1/companies/a940bb61-33c4-42c9-9231-c8194c305db3/findings?risk_vector=ssl_certificates -u api_token:
Example Response
{
"links":{
"next":"https://api.bitsighttech.com/ratings/v1/companies/a940bb61-33c4-42c9-9231-c8194c305db3/findings?limit=100&offset=100&risk_vector=ssl_certificates",
"previous":null
},
"count":1235,
"results":[
{
"temporary_id":"A1Aa11AAaa11a111aa111aa11a111a11aa11a111aa",
"affects_rating":true,
"assets":[ ],
"details":{
"cvss":{
"base":[ ]
},
"check_pass":"",
"diligence_annotations":{
"sampleName":"11.1.111.111:443",
"certchain":[
{
"dnsName":[ ],
"endDate":"2031-11-10 00:00:00",
"issuerName":"C=US,O=CertIssuer Inc,OU=www.certissuer.com,CN=CertIssuer Global Root CA",
"keyAlgorithm":"RSA",
"keyLength":2048,
"serialNumber":"11111111111111111111111111111111111111",
"signatureAlgorithm":"SHA1WITHRSA",
"startDate":"2006-11-10 00:00:00",
"subjectName":"C=US,O=CertIssuer Inc,OU=www.certissuer.com,CN=CertIssuer Global Root CA"
}
],
"previouslyObserved":{
"2023-03-19":[
"222.22.22.222:443"
]
}
},
"final_location":"https://333.33.333.33/",
"geo_ip_location":"A1",
"country":"Demo Country 1",
"grade":"GOOD",
"observed_ips":[
"44.44.444.44:443"
],
"remediations":[ ],
"sample_timestamp":"2023-03-28T23:35:12Z",
"vulnerabilities":[ ],
"dest_port":0,
"rollup_end_date":"2023-03-28",
"rollup_start_date":"2022-10-08",
"searchable_details":"12312312312312312312312312312312312312,32132132132132132132132132132132132121,5555555555555555555555555555555555555,C=GB,ST=Greater Manchester,L=Salford,O=Sectigo Limited,CN=Sectigo RSA Extended Validation Secure Server CA,C=US,ST=New Jersey,L=Jersey City,O=The USERTRUST Network,CN=USERTrust RSA Certification Authority,C=US,ST=New Jersey,L=Jersey City,O=The USERTRUST Network,CN=USERTrust RSA Certification Authority"
},
"evidence_key":"example.site.com",
"first_seen":"2022-10-08",
"last_seen":"2023-03-28",
"related_findings":[ ],
"risk_category":"Diligence",
"risk_vector":"ssl_certificates",
"risk_vector_label":"SSL Certificates",
"rolledup_observation_id":"bB2bBBBBBbBBbb2BbbBbBb==",
"severity":1.0,
"severity_category":"minor",
"tags":[
"Guest WiFi"
],
"remediation_history":{
"last_requested_refresh_date":"2024-06-19",
"last_refresh_status_date":"2024-06-23",
"last_refresh_status_label":"failed",
"last_refresh_status_reason": "asset_not_found",
"last_refresh_reason_code":"asset unreachable",
"last_refresh_requester": "1e10564d-fawa-4331-0000-6f7588b55a98",
"result_finding_date": null
},
"asset_overrides":[ ],
"duration":null,
"comments":null,
"remaining_decay":58,
"remediated":null
}
]
}
Response Attributes
| Field | Description | ||||||
|---|---|---|---|---|---|---|---|
links Object |
Navigation for multiple pages of results. See pagination. | ||||||
next String |
The URL for navigating to the next page of results. | ||||||
previous String |
The URL for navigating to the previous page of results. | ||||||
count Integer |
The number of findings. | ||||||
results Array |
Finding objects. | ||||||
| Object | A finding. | ||||||
temporary_id String |
A temporary identifier for this finding. | ||||||
affects_rating Boolean |
true = This finding has an impact on the risk vector letter grade. |
||||||
assets Array |
Assets relating to this finding. | ||||||
details Object |
Finding details. | ||||||
cvss Object |
If the finding has an associated vulnerability, the CVSS score is listed below. | ||||||
base Array |
CVSS scores of vulnerabilities associated with this finding. | ||||||
check_pass String |
For internal Bitsight use. | ||||||
diligence_annotations Object |
Diligence finding details. | ||||||
sampleName String |
The IP/CIDR range. | ||||||
certchain Array |
Certificate chain details. | ||||||
| Object | A certificate in the chain. | ||||||
dnsName Array |
Domains within this chain. | ||||||
endDate String [ |
The date when this certificate expires. | ||||||
issuerName String |
The distinguished name of the certificate issuer, made up of attribute assertion values. | ||||||
keyAlgorithm String |
The algorithm used to encrypt and decrypt messages. | ||||||
keyLength Integer |
The bit strength of this key. See the recommended TLS/SSL key length. | ||||||
serialNumber Integer |
The serial number of this certificate. | ||||||
signatureAlgorithm String |
The signing algorithm used in this certificate. | ||||||
startDate String [ |
The date when this certificate started. | ||||||
subjectName String |
The distinguished name of the owner of the certificate, made up of attribute assertion values. | ||||||
previouslyObserved Object |
Previously observed IPs/CIDRs on particular dates. | ||||||
|
Date [ Array |
IP/CIDRs on the displayed date. | ||||||
final_location String |
The URL. | ||||||
geo_ip_location String |
A 2-letter ISO country code indicating the finding’s country of origin. | ||||||
country String |
The finding’s country of origin. | ||||||
grade String |
The finding grade. | ||||||
observed_ips Array |
All observed IP sources. | ||||||
attributed_observed_ips Array |
My company's attributed IP sources. | ||||||
remediations Array |
Information about the finding and instructions to remediate it. | ||||||
sample_timestamp String [ |
The date and time when this finding was observed. | ||||||
vulnerabilities Array |
Vulnerability details. | ||||||
dest_port Integer |
A compromised device was observed to be sending traffic from this port. | ||||||
rollup_end_date String [ |
The date when this finding was last observed. | ||||||
rollup_start_date String [ |
The date when this finding was first observed. | ||||||
searchable_details String |
Certificate details. | ||||||
evidence_key String |
The asset attributed to the finding. | ||||||
first_seen String [ |
The date when this observation was first seen. | ||||||
last_seen String [ |
The date when this observation was last seen. | ||||||
related_findings Array |
Related findings and their details. | ||||||
risk_category String |
The risk category of this finding. | ||||||
risk_vector String |
The slug name of this risk vector. | ||||||
risk_vector_label String |
The display name of this risk vector. | ||||||
rolledup_observation_id String |
A stable and randomized identifier for findings. It is assigned to a finding when one or more observations with largely similar key properties occur in close succession. | ||||||
severity Decimal |
The finding severity, which is the measured risk that this finding introduces. | ||||||
severity_category String |
The finding severity slug name. | ||||||
tags Array |
Infrastructure tags that identify this asset. | ||||||
remediation_history Object |
If ?expand=remediation_history parameter is set, the remediation history of the finding is included. |
||||||
last_requested_refresh_date String [ |
The date when a finding rescan that included this finding was last requested. | ||||||
last_refresh_status_date String [ |
The date when a rescan of the remediation status of this finding was last requested. | ||||||
last_refresh_status_label String |
The current rescan status of this finding. | ||||||
last_refresh_status_reason String |
The rescan status. | ||||||
last_refresh_reason_code String |
The reason code for the rescan status. | ||||||
last_refresh_requester String [ |
The unique identifier of the user who requested the rescan. | ||||||
result_finding_date String [ |
The first seen date of the finding that resulted from the rescan, if applicable. | ||||||
asset_overrides Array |
User-assigned asset importance details. | ||||||
duration Integer |
Not applicable to TLS/SSL Certificate findings. | ||||||
comments String |
Finding comments. | ||||||
remaining_decay Integer |
The remaining finding lifetime. | ||||||
remediated Null |
|||||||
-
February 28, 2025: Added
last_refresh_status_reason,last_refresh_reason_code,last_refresh_requester, andresult_finding_dateresponse attributes. -
February 14, 2025: Added
attributed_observed_ipsresponse attribute. - March 31, 2023: Published.
Feedback
0 comments
Please sign in to leave a comment.