https://api.bitsighttech.com/ratings/v1/companies/company_guid/findings?risk_vector=dmarc
Get an organization’s DMARC finding details.
Parameters
For details specific to DMARC, use the ?risk_vector=dmarc
parameter. Other query parameters are listed in GET: Finding Details.
Example Response
{ "links":{ "next":null, "previous":null }, "count":9, "results":[ […] { "temporary_id":"ABCd12EFgh345i678901j2k34567lmnop8901qr23s456t789uv0w12x34567yzzz8z99z0000", "affects_rating":true, "assets":[ { "asset":"example.com", "identifier":null, "category":"critical", "importance":0.1, "is_ip":false, "asset_type":"Domain" } ], "details":{ "cvss":{ "base":[ ] }, "check_pass":"", "diligence_annotations":{ "message":"Record does not exist", "record":[ [ ] ], "percentage":0, "policy":"reject", "ruaReportEmail":[ ], "rufReportEmail":[ ] }, "grade":"BAD", "remediations":[ { "message":"Record does not exist", "help_text":"Domain has no DMARC record in place.", "remediation_tip":"Implement a DMARC policy for this domain." } ], "sample_timestamp":"2024-03-22T21:19:11Z", "vulnerabilities":[ ], "rollup_end_date":"2024-03-22", "rollup_start_date":"2024-01-17" }, "evidence_key":"example.com", "first_seen":"2024-01-17", "last_seen":"2024-03-22", "related_findings":[ ], "risk_category":"Diligence", "risk_vector":"dmarc", "risk_vector_label":"DMARC", "rolledup_observation_id":"0aaaaAaaaAaaaaaaA0aa0A==", "severity":8.0, "severity_category":"material", "tags":[ "TagName" ], "remediation_history":{ "last_requested_refresh_date":null, "last_refresh_status_date":null, "last_refresh_status_label":null, "last_refresh_reason_code":null }, "asset_overrides":[ ], "duration":null, "comments":null, "remaining_decay":56, "remediated":null, "impacts_risk_vector_details":"AFFECTS_RATING" } ] }
Response Attributes
Field | Description | |||||
---|---|---|---|---|---|---|
linksObject |
Navigation for multiple pages of results. See pagination. | |||||
nextString |
The URL for navigating to the next page of results. | |||||
previousString |
The URL for navigating to the previous page of results. | |||||
countInteger |
The number of findings. | |||||
resultsArray |
Findings and their details. | |||||
Object | A finding. | |||||
temporary_idString |
A temporary identifier for this finding. | |||||
affects_ratingBoolean |
true = This finding has an impact on the letter grade. |
|||||
assetsArray |
Asset details. | |||||
Object | An asset. | |||||
assetArray |
The asset name. | |||||
identifierString |
For internal Bitsight use. | |||||
categoryString |
The Bitsight-calculated asset importance. | |||||
importanceDecimal |
The Bitsight-calculated asset importance. | |||||
is_ipBoolean |
true = This asset is an IP address. |
|||||
asset_typeString |
The type of asset. | |||||
detailsObject |
Details of this finding. | |||||
cvssObject |
If the finding has an associated vulnerability, this contains the CVSS score. | |||||
baseArray |
CVSS scores of vulnerabilities associated with this finding. | |||||
check_passString |
For internal Bitsight use. | |||||
diligence_annotationsObject |
Diligence finding details. | |||||
messageString |
The finding message. | |||||
recordArray |
The DMARC record configuration details. | |||||
percentageInteger |
The proportion of email that have a passthrough policy protecting recipients of spoofed email. | |||||
policyString |
How emails that fail authentication are handled.
|
|||||
ruaReportEmailArray |
The mailbox where the RUA report (a.k.a. DMARC aggregate report) containing authentication failures statistics are sent. | |||||
rufReportEmailArray |
A second set of recipients of the RUA report. If available, this may be used to request detailed forensic authentication reports. | |||||
gradeString |
The finding grade. | |||||
remediationsArray |
Information about the finding and instructions to remediate it, if any. | |||||
Object | The information. | |||||
messageString |
The finding message. | |||||
help_textString |
An overview of this finding. | |||||
remediation_tipString |
The recommended remediation instructions. | |||||
sample_timestampString [ YYYY-MM-DDTHH:MM:SSZ ] |
The date and time when this finding was observed. | |||||
vulnerabilitiesArray |
Vulnerability details. | |||||
rollup_end_dateString [ YYYY-MM-DD ] |
The date when this finding was last observed. | |||||
rollup_start_dateString [ YYYY-MM-DD ] |
The date when this finding was first observed. | |||||
evidence_keyString |
The asset attributed to this finding. | |||||
first_seenString [ YYYY-MM-DD ] |
The date when this finding was first observed. | |||||
last_seenString [ YYYY-MM-DD ] |
The date when this finding was last observed. | |||||
related_findingsArray |
Related findings. | |||||
risk_categoryString |
The risk category. | |||||
risk_vectorString |
The risk vector slug name. | |||||
risk_vector_labelString |
The risk vector display name. | |||||
rolledup_observation_idString |
The observation’s rolled up ID. | |||||
severityDecimal |
This finding’s Bitsight severity. | |||||
severity_categoryString |
This finding’s Bitsight severity. | |||||
tagsArray |
Infrastructure tags identifying the asset. | |||||
remediation_historyObject |
If the expand parameter is set to remediation_history (?expand=remediation_history ), remediation history is included. This is not applicable to DMARC. |
|||||
last_requested_refresh_dateNull |
This is not applicable to DMARC. | |||||
last_refresh_status_dateNull |
This is not applicable to DMARC. | |||||
last_refresh_status_labelNull |
This is not applicable to DMARC. | |||||
last_refresh_reason_codeNull |
This is not applicable to DMARC. | |||||
asset_overridesArray |
User-assigned asset importance. | |||||
durationString |
This is not applicable to DMARC. | |||||
commentsString |
Finding comments. | |||||
remaining_decayInteger |
This finding’s remaining lifetime. | |||||
remediatedBoolean |
true = The finding is remediated. |
|||||
impacts_risk_vector_detailsString |
Indicates how the risk vector is impacted.
|
March 29, 2024: Published.
Feedback
0 comments
Please sign in to leave a comment.