To report/remove a false positive:
-
Copy the IP or domain name of the asset(s) you would like to report as false positive (e.g., assets that do not belong to your organization). You can also look for the asset detail under the vulnerabilities you were notified about
-
Navigate to Attack Surface > Assets on the left-hand navigation
-
Select the Domains or IP Addresses tab depending on the asset you are trying to report
-
Locate the asset via the Search feature or by scrolling through the assets
-
Check the “source” field of the asset to see the reason why we detected it. Please remove the asset from your DNS entry.
-
If you still believe it is not yours:
-
Select "Remove" under the Actions column
- You can also select the asset and hit the "Remove" button on the side panel that pops out
-
- You will have to enter a valid reason and the security team will approve or reject your request within 48 hours.