Work with Labels

WAS labels organize your web applications, pages and vulnerabilities. For example, you could have a label for server-side web applications and another for easy-to-fix vulnerabilities.

You can create and assign custom labels to your assets and vulnerabilities. Fortra VM also does this for you based on preset criteria (that is, Smart Labels).

When labels are applied, you can quickly find specific data about assets and vulnerabilities in your environment.
See related: Find Information in WAS

Smart Labels

Smart Labels are automatically applied to vulnerabilities, pages, or web apps during a scan based on preset criteria.

  1. From the navigation menu, select Scan Settings > Labels.
  2. Select the Smart Labels tab. From here, you can manage WAS pre-configured Smart Labels or create your own.

The following Smart Labels are pre-configured in WAS and are enabled by default. You can also create your own Smart Labels.

  • PageVuln: VulnDictionary: Adds the vuln dictionary labels to the page vulnerability.
  • PageVuln: WebApp Content: Adds the webapp context labels to the page vulnerability.
  • WebApp: Asset group name: Adds the webapp asset group name to the webapp on scan completion.

Toggle ON or OFF next to the Smart Label to enable or disable it for future scans.

NOTE: Disabling a Smart Label will not delete any labels already applied to web apps, pages or vulnerabilities during previous scans. Navigate to the Active Labels tab to delete labels that have already been applied.

  1. Select + New smart label.

  2. On the Create New Smart Label page, enter the following information:

    1. Details

      1. Name: Enter the label name that will be applied
      2. Description: Required
      3. Apply label to: Select to apply the label to web apps, pages, or vulnerabilities.
      4. Color: Identify a color for the label. The default color is blue.

    2. Dynamic filters

      Filters identify which apps, pages or vulnerabilities the label will be applied to.

      1. Select a property, search operator and value for the filter. You can apply more than one filter.

  3. Select Save Changes. The new Smart Label will now be available for future scans and is enabled by default.

  • To modify a Smart Label, select the label's name or select the Edit button .
  • To delete a Smart Label, select the label's name or select the Edit button , and then select Delete.
NOTE: Only user-created Smart Labels can be modified or deleted. Modifications will only apply to labels generated in future scans. Labels that have already been applied will not be changed.

User-assigned Labels

Labels can be manually created and assigned directly to web apps and vulnerabilities.

  1. From the navigation menu, select Active View.
  2. From the Web Applications list, select an application.

  3. Under the Details tab, scroll to the Web App Labels section. Here, you can perform the following:

    1. Create a new label: Select Add a label, enter a label name, select a color, and then select Add.

      TIP: You can create multiple labels at once by separating label names with commas. Assign a different color to your label by hover over the label and clicking the tab that appears beneath it.

    2. Select an existing label: As you begin typing, existing labels appear that you can select.

    3. Delete a label:

      1. Select the Lock button to unlock it .

      2. Select the labels you want to delete, and then select Edit selected.

      3. Select the Delete the label checkbox, and then select Update.

        NOTE: This will only delete the label from this web application. To delete all instances of the label, navigate to the Active Labels page under Scan Settings > Labels.

  1. Navigate to a list of vulnerabilities by performing one of the following:

    1. For all vulnerabilities: From the navigation menu, select Active View and then select the Vulnerabilities tab.

    2. For web app specific vulnerabilities: From the navigation menu, Active View, select a web app from the Web Applications list, and then select the Vulnerabilities tab.

  2. Toggle the following views based on how you want to assign labels to vulnerabilities:

    1. Group by vulnerability: View vulnerabilities by type. When you add a label in this view, it applies to all instances of the selected vulnerabilities.

    2. Show all instances: View each vulnerability instance. When you add a label in this view, it applies only to the selected instances.

  3. You can add a label for a vulnerability by doing either of the following:

    1. Select the checkbox for each vulnerability that requires a label, and then select Add Label. Enter a label name, select a color, and then select Add.

    2. Select a vulnerability's name, select the Labels tab, select Add a label, enter a label name, select a color, and then select Add.

  4. In the Add Labels dialog, you can perform the following actions:

    1. Create a new label: Enter a new label name and select ENTER.

    2. Select an existing label: When you begin typing, existing labels appear that you can select.

  5. To delete a label from a vulnerability, do the following:

    1. Select the Lock button to unlock it .

    2. Select the labels you want to delete, and then select Edit selected.

    3. Select the Delete the label checkbox, and then select Update.

      NOTE: This will only delete the label from this web application. To delete all instances of the label, navigate to the Active Labels page under Scan Settings > Labels.
TIP: You can create multiple labels at once by separating label names with commas. Assign a different color to your label by hovering over the label and clicking the tab that appears beneath it.

Active Labels

Active Labels are those that have been applied to web apps, pages and vulnerabilities. This includes labels that have been applied manually by a user or applied automatically as a Smart Label.

  1. From the navigation menu, select Scan Settings > Labels.
  2. Select the Active Labels tab to view and delete active labels (you cannot create or assign a label on this page).

  1. From the navigation menu, select Scan Settings > Labels.
  2. Select the labels you want to remove from your WAS account.
NOTE: WAS-generated Smart Labels are automatically recreated and reassigned during the next scan unless the related Smart Label is disabled.