Discover Assets

The Discover Assets feature helps you find and manage your public-facing assets including web applications and APIs. It gives you full visibility into these assets and displays details such as public IP addresses, subdomains, and hosting data centers. This helps you maintain an accurate and up-to-date inventory for stronger security.

How to Access Discovered Assets

To view newly discovered assets:

  1. Select the All Domains filter.
  2. Go to Applications & Groups > Discover & Manage.

Note: If you select an individual domain in the filter, the tab name changes to Manage Assets. The tabs under this section differ from those under Discover and Manage.

Discovered Root & Sub Domains

 The discovery results show:

  1. The date of the last scan
  2. Total number of root and subdomains
  3. Subdomain count for each root domain
  4. Number of included TLDs (Top-Level Domains)

  

Configure Domain Discovery Settings by TLDs

Fine-tune domain discovery settings by managing TLDs.

  1. Go to Discover Summary > Configure Domain Discovery.
  2. Review the list of TLDs with checkboxes. All are selected by default.
  3. To exclude a TLD, uncheck the box next to it.
  4. To include a specific TLD, use the search bar and check the box.
  5. Click Save to apply your changes.

  

Discover Applications

To initiate a discovery scan:

  1. In the Discover Summary, click Discover Applications.
  2. A confirmation pop-up appears showing the number of root domains that will be scanned.
  3. Choose to include or exclude specific root domains.
  4. Click Start to begin the scan.

NoteDiscovery may take up to 72 hours to complete and identify all related subdomains 

 

List of Subdomains 

After the scan completes, you will see a list of discovered subdomains for each root domain, along with the following details:

ParameterDescription
SubdomainName of the subdomain.
IP AddressSubdomain's public IP.
Data CenterHosting location.
Discovered OnDate discovered.
TypeType of Subdomain discovered (e.g., Website, API)
Enable ProtectionOne Click Onboarding of unprotected Subdomains to AppTrana.
ActionClick Ignore to move subdomain Ignored Tab.

 

Configure Root Domains

Manage whether a root domain is included in future scans.

  1. Navigate to the Root Domains section.
  2. Use the search bar to locate the domain.
  3. Use the toggle switch to Include or Exclude the domain.

 

4. To ignore a domain completely, click Configure > Ignore.

Excluded Root & Sub Domains 

Excluded Root Domains 

ParameterDescription
Root DomainName of the excluded root domain.
IP AddressIP address of the domain.
Data CenterHosting location.
Discovered OnDate of discovery.
ActionClick Restore to re-include in protection.

Restore Root Domain

To restore:

  1. Locate the domain in the table.
  2. Click Restore in the Actions column.
  3. Confirm restoration in the pop-up
     

Excluded Subdomains

View ignored subdomains that can be restored.

ParameterDescription
SubdomainName of the subdomain.
IP AddressSubdomain's public IP.
Data CenterHosting location.
Discovered OnDate discovered.
ActionClick Restore to move subdomain back into protection.

Protected Subdomains

Lists onboarded subdomains and their security metrics.

ParameterDescription
Asset NameProtected subdomain name.
Last ScanDate of the most recent scan.
Open VulnerabilitiesNumber of unresolved issues by severity.
Bandwidth UsageData used by the application.
Total AttacksNumber of detected attacks.
WAF StatusCurrent Web Application Firewall mode.
API Policy CreationDisplays the number of API sites protected using Positive Security Rules. This metric is shown only when the site type is set to API or Hybrid.
PlanSubscription plan assigned (e.g., Premium, Advanced).
ActionsIncludes options like Unprotect or Download Report.

You can group subdomains for better management and view metrics per group.


 

Add a New Application

To onboard a new subdomain:

  • Click Add Application from the application list view.

Edit Group

  • Selecting a group updates the dashboard to show group-specific data.
  • Click Edit Group (available only for custom groups) to modify the group.

Create a Group

Creating a custom application group helps you organize related subdomains or applications under a single dashboard view. This allows security teams to monitor metrics, manage vulnerabilities, and apply security policies more efficiently across specific business units, regions, or application types.

To create a custom application group: 

Step 1: Enter Basic Details

  1. Go to Groups > Create Group.
  2. Enter the Group Name and Description.
  3. Click Next.

Step 2: Select Applications

  1. Use the checkboxes to select subdomains.
  2. Use the search bar to filter.
  3. Click Save.

The new group appears alongside All Sites

Was this helpful?