List Company Findings
Get all findings for a company.
Parameters
| Parameter | Description |
|---|---|
| Company | The ID of the company for which to retrieve findings. You can dynamically search for a company by a substring of its name. Note: Empty search is not supported. |
Example Output
{
"links": {
"next": null,
"previous": null
},
"count": 40,
"results": [
{
"temporary_id": "A9Jq47BBje1b830d0f1707984b97656a7589bf7a71",
"affects_rating": true,
"assets": [
{
"asset": "www.examplename.com",
"identifier": null,
"category": "critical",
"importance": 1,
"is_ip": false
},
{
"asset": "examplename.com",
"identifier": null,
"category": "critical",
"importance": 0.7,
"is_ip": false
},
{
"asset": "xxx.xxx.231.89",
"identifier": null,
"category": "critical",
"importance": 1,
"is_ip": true
}
],
"details": {
"cvss": {
"base": []
},
"check_pass": "",
"diligence_annotations": {
"sampleName": "www.examplename.com[xxx.xxx.231.89]:443",
"certchain": [
{
"dnsName": [
"www.examplename.com",
"examplename.com"
],
"endDate": "2023-06-18 02:53:32",
"issuerName": "C=US,O=Let's Encrypt,CN=R3",
"keyAlgorithm": "RSA",
"keyLength": 2048,
"serialNumber": "111111",
"signatureAlgorithm": "SHA256WITHRSA",
"startDate": "2023-03-20 02:53:33",
"subjectName": "CN=examplename.com"
},
{
"dnsName": [],
"endDate": "2025-09-15 16:00:00",
"issuerName": "C=US,O=Internet Security Research Group,CN=ISRG Root X1",
"keyAlgorithm": "RSA",
"keyLength": 2048,
"serialNumber": "111111",
"signatureAlgorithm": "SHA256WITHRSA",
"startDate": "2020-09-04 00:00:00",
"subjectName": "C=US,O=Let's Encrypt,CN=R3"
},
{
"dnsName": [],
"endDate": "2035-06-04 11:04:38",
"issuerName": "C=US,O=Internet Security Research Group,CN=ISRG Root X1",
"keyAlgorithm": "RSA",
"keyLength": 4096,
"serialNumber": "111111",
"signatureAlgorithm": "SHA256WITHRSA",
"startDate": "2015-06-04 11:04:38",
"subjectName": "C=US,O=Internet Security Research Group,CN=ISRG Root X1"
}
]
},
"final_location": "https://www.examplename.com/",
"geo_ip_location": "US",
"country": "United States",
"grade": "GOOD",
"observed_ips": [
"xxx.xxx.231.89:443"
],
"remediations": [],
"sample_timestamp": "2023-04-30T05:18:27Z",
"vulnerabilities": [],
"dest_port": 0,
"rollup_end_date": "2023-04-30",
"rollup_start_date": "2023-03-20",
"searchable_details": "111111,111111,111111,C=US,O=Let's Encrypt,CN=R3,C=US,O=Internet Security Research Group,CN=ISRG Root X1,C=US,O=Internet Security Research Group,CN=ISRG Root X1"
},
"evidence_key": "www.examplename.com",
"first_seen": "2023-03-20",
"last_seen": "2023-04-30",
"related_findings": [],
"risk_category": "Diligence",
"risk_vector": "ssl_certificates",
"risk_vector_label": "SSL Certificates",
"rolledup_observation_id": "vziCwIklft1xPiw8gli-Ug==",
"severity": 1,
"severity_category": "minor",
"tags": [],
"remediation_history": {
"last_requested_refresh_date": null,
"last_refresh_status_date": null,
"last_refresh_status_label": null,
"last_refresh_reason_code": null
},
"duration": null,
"comments": null,
"remaining_decay": 59,
"remediated": null
},
{
"temporary_id": "A9Jq47BBje9ab082c2922d4fbccca1cbf34cff308d",
"affects_rating": true,
"assets": [
{
"asset": "xxx.xxx.231.89",
"identifier": null,
"category": "critical",
"importance": 1,
"is_ip": true
}
],
"details": {
"cvss": {
"base": []
},
"check_pass": "",
"diligence_annotations": {
"modal_data": {
"type": "incomplete-version"
},
"modal_tags": {
"Type": "Apache",
"OS family": "Unknown",
"Upstream version": "",
"HTTP Server header": "Apache"
},
"server": "Apache",
"version": ""
},
"geo_ip_location": "US",
"country": "United States",
"grade": "NEUTRAL",
"observed_ips": [
"xxx.xxx.231.89"
],
"port_list": [
80,
443
],
"remediations": [
{
"message": "Software version is incomplete",
"help_text": "BitSight could not determine whether the version of software is supported because the server is configured to report an incomplete version. As this is arguably a security best practice, the grade strictly reflects the fact that the software’s support status is unknown.",
"remediation_tip": ""
}
],
"sample_timestamp": "2023-04-30T05:18:27Z",
"vulnerabilities": [],
"dest_port": 443,
"rollup_end_date": "2023-04-30",
"rollup_start_date": "2022-03-01",
"searchable_details": "Software version is incomplete,Apache,"
},
"evidence_key": "xxx.xxx.231.89",
"first_seen": "2022-03-01",
"last_seen": "2023-04-30",
"related_findings": [],
"risk_category": "Diligence",
"risk_vector": "server_software",
"risk_vector_label": "Server Software",
"rolledup_observation_id": "6ynAuuKCd7b1MCsylFwH_w==",
"severity": 1,
"severity_category": "minor",
"tags": [],
"remediation_history": {
"last_requested_refresh_date": null,
"last_refresh_status_date": null,
"last_refresh_status_label": null,
"last_refresh_reason_code": null
},
"duration": null,
"comments": null,
"remaining_decay": 59,
"remediated": null
}
]
}
Workflow Library Example
List Company Findings with Bitsight and Send Results Via Email
Preview this Workflow on desktop