Help Center › “How do I…?” recipe index
The fastest path to the most common tasks. Each row links to the exact step.
| How do I… | Answer |
|---|---|
| …open the app? | Top nav → Open app. Serve over HTTP, not file://. First run. |
| …understand what I’m looking at? | Getting started + the finding-card legend. |
| …find the most urgent work? | Dashboard “Fix these first,” or Findings with KEV-only + Hide-noise. Filters. |
| How do I… | Answer |
|---|---|
| …see my attack surface? | Attack surface tab. Inventory. |
| …authorize a domain/IP to be scanned? | Verify the scope via DNS-TXT or file challenge. Steps. Deferred / hosted |
| …understand why a scan is “blocked”? | Ownership isn’t proven. Diagnose. |
| …run a scan through the pipeline now? | Ingest scan tab → Ingest Nuclei/Trivy. Try it. |
| …catch new exposures (drift)? | Look for the new tag. Drift. Deferred / hosted live re-discovery. |
| How do I… | Answer |
|---|---|
| …filter / search findings? | Findings tab filter bar. Filters. |
| …hide likely false positives? | Check “Hide noise.” Here. |
| …understand a “likely false positive” verdict? | Expand it; read the reason trail. Verdicts. |
| …mark a finding as a false positive? | Expand → Mark false positive. Buttons. |
| …rescue a wrongly-suppressed finding? | Expand → Confirm real. Here. |
| …assign an owner / change status? | Expand a finding; use the Owner field + Status select. Workflow. |
| …accept a risk I won’t fix yet? | Status → Accept risk (reason + expiry). FP vs accept. |
| …re-check a fix? | Expand → Rescan to verify. Deferred / hosted live rescan. |
| How do I… | Answer |
|---|---|
| …export a signed evidence record? | Expand a finding → Signed evidence record. Records. |
| …verify an evidence signature? | Recompute the HMAC over the canonical record. Signing. |
| …see which controls a finding satisfies? | Expand it; read the control chips. Mapping. |
| …generate a PCI / HIPAA / SOC 2 / CMMC report? | Reports / export → pick a pack → Print/save PDF. Packs. |
| …export CSV / JSON? | Reports / export → Export CSV / JSON. |
| …review who changed what? | Audit log tab. Audit. |
| How do I… | Answer |
|---|---|
| …sign in? | Sign in / Cloud tab → Sign in with Clerk. Steps. |
| …sync my triage across devices? | Sign in (Pro) → Sync remediation state up. Here. Deferred / hosted |
| …schedule the daily EPSS/KEV refresh? | Sign in (Pro) → Schedule daily EPSS/KEV refresh. Here. Deferred / hosted |
| …publish evidence to Sightline/Bastion? | Sign in → Publish attack-surface evidence. Here. |
| …turn on AI fix guidance? | AI / Settings → add provider + key. Privacy. |
| …know what data leaves my browser? | The full table. |
| …wipe my local data? | Clear this site’s storage / clear the AI key. Here. |
Can’t find your task? Try Troubleshooting & FAQ or the Help Center home.