update

Author: manuel-sommer

dojo/tools/cycognito/parser.py

@@ -1,7 +1,7 @@
 import json
 from datetime import datetime
 
-from dojo.models import Finding
+from dojo.models import Endpoint, Finding
 
 
 class CycognitoParser:
@@ -164,5 +164,7 @@ def get_findings(self, file, test):
                 finding.unsaved_vulnerability_ids = []
                 for cve_id in cve_ids:
                     finding.unsaved_vulnerability_ids.append(cve_id)
+            finding.unsaved_endpoints = []
+            finding.unsaved_endpoints.append(Endpoint(host=affected_asset.replace("ip/", "").replace("webapp/", "").replace("cert/", "").replace("domain/", "")))
             findings.append(finding)
         return findings

unittests/scans/cycognito/many_vuln.json

@@ -9,7 +9,7 @@
         ],
         "confidence": 30,
         "mitre_attack_next_technique_name": "Credential Access: Network Sniffing",
-        "affected_asset": "ip/1.2.3.4",
+        "affected_asset": "domain/asdf.com",
         "package": "ASM",
         "cis_controls": [
             "7.6",
@@ -155,7 +155,7 @@
         ],
         "confidence": 30,
         "mitre_attack_next_technique_name": "Credential Access: Network Sniffing",
-        "affected_asset": "ip/1.2.3.4",
+        "affected_asset": "cert/fjwfjewiofjweofijewoifj0oi",
         "package": "ASM",
         "cis_controls": [
             "7.6",
@@ -311,7 +311,7 @@
         ],
         "confidence": 30,
         "mitre_attack_next_technique_name": "Credential Access: Network Sniffing",
-        "affected_asset": "ip/2.3.4.5",
+        "affected_asset": "webapp/afe.com",
         "package": "ASM",
         "cis_controls": [
             "7.6",