Contents hide
1 Sections
2 Managing Detections
Feature Deep Dives

Bolster Insights

The Insights page displays when you drill into findings/detections. For example, you can click the URL for a finding in your Scan page results.

Use the Insights page to:

  • review the evidence sent for automatic takedown requests
  • manage detections

Sections

Scan Results

The Scan Results section displays the basic data points collected for the website. This is the information that Bolster sends to the abuse contact listed for the site when requesting a takedown. Click Add Tag to categorize the results. See Using Tags to Annotate Detections.

Screenshot

The screenshot shows the appearance of the website. The Bolster platform captures a screenshot on a daily basis for each website on the scan list. The screenshot can support claims that your brand is being abused.

Geolocation

The Geolocation map indicates the location of the detected IP address. This information is a useful component of takedown requests. It can also inform your prioritization for neutralizing a given threat.

Threat Intelligence

The Threat Intelligence section provides information that fleshes out the nature of the threat posed by the site. It includes the number of other threats detected for the same IP address and URL.

Timeline

The Timeline provides a graphic map to the overall defense process for this detection. You can quickly see the status of neutralizing this threat. Note that, even after takedown is complete, the Bolster platform continues to scan to ensure that the threat remains neutralized.

DOM Tree

The DOM Tree section displays the document object model for the site, if available. DOM has raw source code which can shed light on other indicators of compromise, including outgoing links to phishing kits, malware, information on threat actors infrastructure, etc.

Whois Info

The Whois section provides the domain lookup information from Whois.com – Domain Names & Identity for Everyone .

Managing Detections

From the Insights page, you can:

  • request a takedown
  • dispute the disposition

Requesting a Takedown

Though Bolster automatically requests a takedown for identified threats, you can click Request Takedown to make your own request and include additional evidence.

Disputing the Disposition

If you disagree with the disposition arrived at by our machine learning features and other detection features, you can click Dispute to explain why you believe the disposition is incorrect. In addition to prompting another review, disputing a disposition gives us the information we need to correct our model training.

Updated on February 23, 2024
Was this article helpful?
Yes No
Thanks for your feedback
Related Articles
Enhanced Role-Based Access Control (RBAC) System

Overview This release introduces enhanced access control, allowing for module-level Read-Write and Admin access. The system now supports four distinct…
Save Custom Filters

You have the ability to save and reuse filter combinations, referred to as “views.” You can name these views and…
Custom Tags

This feature allows you to create a custom tag for a finding, which can then be saved for personal use…