Reports

New reports have been added to the platform:

MITRE CWE Top 25

This report summarizes findings related to the MITRE CWE Top 25 Most Dangerous Software Weaknesses. The MITRE CWE Top 25 details severe software vulnerabilities that pose significant security risks, detailing weaknesses often exploited by attackers. The report includes a breakdown of findings and their statuses, impacted APIs, and the events that triggered these findings.

MITRE ATT&CK Techniques

This report is a summary of findings related to MITRE ATT&CK Enterprise Techniques. The Mitre ATT&CK techniques details how attackers achieve their goals during a cyberattack, organized under broader tactics. The report includes a breakdown of findings and their statuses, links to impacted APIs, and details of the events that triggered the findings.

MITRE ATT&CK Enterprise Tactics

This report maps security findings to MITRE ATT&CK Enterprise Tactics, which represent the high-level objectives adversaries aim to achieve during a cyberattack. The report provides a summary of vulnerabilities, including a breakdown of findings, their status, and associated events.

CIS API Guide (Draft)

This report gives a summary of findings related to the CIS API Guide (draft version). The CIS API Guide has been created by FireTail to aid in securing API deployments following industry best practices.

Platform Usage Report

This report provides real-time summary of your usage limits and remaining availability for various features. The report details how many limits have been used and how many remain, with data updated at the moment of generation and available for download as a PDF.

Code to Cloud

Added capabilities to link code repositories to APIs both manually and with FireTail automation.

Code to Spec

Introduced AI-driven capabilities to generate fully defined specifications in Python with more language support coming soon.

New Detections

17 new detections added:

• AWS Secrets Found in Logs
• Basic Authentication Found in Logs
• Facebook Secrets Found in Logs
• GitLab Secrets Found in Logs
• Google Secrets Found in Logs
• GraphQL Injection Found in Logs
• Mailgun Secrets Found in Logs
• PayPal Secrets Found in Logs
• Malicious Activity Found in Logs
• PHP Injection Found in Logs
• SendGrid Secrets Found in Logs
• Slack Secrets Found in Logs
• SQL Injection Found in Logs
• Stripe Secrets Found in Logs
• Suspicious Activity Found in Logs
• Twilio Secrets Found in Logs
• XSS Attempt Found in Logs

New Frameworks

New frameworks have been added and mapped to the Findings feature in the FireTail platform:

• MITRE CWE Top 25
• MITRE ATT&CK Techniques
• MITRE ATT&CK Tactics
• CIS API Guide (Draft)

Log Sequencing

Added the ability to see previous log requests by IP address.

API Contract Testing

Introduced the ability to compare an OpenAPI specification against an API endpoint and receive observations for mismatches, including:

• Limits not enforced
• Server errors
• Undocumented methods
• Undocumented status codes
• Undocumented content types
• Unexpected GraphQL Response
• GraphQL server error
• GraphQL client error
• JSON deserialization error
• Response violates schema
• Response time limit exceeded

API Tag Enrichment

Tags have been added to API Cards:

• Tags added to API cards for better categorization and management
• Ability to click and filter by tags

Managed Alerting

Users can now select predefined alerts with specific filters.

UI Improvements

• Added filter options for different alert types for navigating alerts
• Added IP address and country information to the general API log view

Bug Fixes and Performance Improvements

General bug fixes made throughout the FireTail platform.