Platform
Endpoints
User facing data paths mapped to code
Endpoints are the user facing data paths that the Exorcist engine has identified in your codebase.
| Attribute | Description |
|---|---|
| Method | The HTTP method (e.g. GET, POST, PUT, DELETE, etc.) |
| Path Template | The URL path and parameters (e.g. /api/v1/users/{id}) |
| Authorization | The authorization mechanism (e.g. Bearer, Basic, OAuth, etc.) |
| Sensitive Data | Sensitive data categories handled (e.g. PII, PHI, PCI, etc.) |
| Files | The source code files that handle requests on the data path. |
Endpoints play a critical role in directing vulnerability class agents to relevant code to analyze.
Findings
All findings are associated with an endpoint. But not all endpoints have findings. In fact, you may find that most endpoints have no findings. When viewing details of a Repo, you can find a breakdown of the number of endpoints and findings. In this view, you can quickly filter by finding or by endpoint.
The Ghost Exorcist engine is designed to produce more signal and less noise. This means that you will find far fewer low severity findings than you are used to seeing in other tools.