Understanding Metrics¶
Learn how to interpret dashboard metrics and key performance indicators.
Overview¶
The Hive dashboard displays real-time metrics about your security posture.
Key Metrics¶
Asset Metrics¶
Total Assets: - Count of all discovered assets - Includes: URLs, sites, hosts, ports, IPs, DNS records - Updates in real-time as scans complete
Asset Growth: - New assets discovered over time - Trend line shows discovery rate - Helps track attack surface expansion
Asset Types Breakdown: - Distribution by asset type - Pie chart or bar graph - Click to filter by type
Vulnerability Metrics¶
Total Vulnerabilities: - Count of all identified vulnerabilities - Includes all severity levels - Updates as scans complete
By Severity: - Critical: CVSS 9.0-10.0 (red) - High: CVSS 7.0-8.9 (orange) - Medium: CVSS 4.0-6.9 (yellow) - Low: CVSS 0.1-3.9 (blue) - Info: CVSS 0.0 (gray)
Vulnerability Trend: - New vs. remediated over time - Shows if improving or declining - 30/60/90 day views
Scan Metrics¶
Active Scans: - Currently running scans - Progress indicators - Estimated completion time
Completed Scans: - Total scans run - Success rate - Average duration
Scan History: - Recent scan activity - Success/failure status - Quick access to results
Risk Metrics¶
Risk Score: - Overall security posture score (0-100) - Lower is better - Calculated from vulnerabilities and exposure
Risk Trend: - Risk score over time - Shows improvement or degradation - Color-coded: Green (improving), Red (worsening)
Top Risks: - Highest priority issues - Ranked by severity and exploitability - Quick links to details
Metric Calculations¶
Asset Count¶
Unique Assets Only: - Duplicates removed - Based on unique identifiers - Cross-referenced across scans
Vulnerability Count¶
Deduplication: - Same vulnerability on multiple assets counted separately - Same vulnerability found multiple times counted once per asset - Remediated vulnerabilities removed from count
Risk Score¶
Factors: - Severity: CVSS base score - Exploitability: Public exploits available - Asset Value: Business criticality - Exposure: Internet-facing vs. internal
Score Ranges: - 0-20: Low risk (green) - 21-40: Medium risk (yellow) - 41-60: High risk (orange) - 61-100: Critical risk (red)
Time-Based Metrics¶
Trend Analysis¶
30-Day Trend: - Last 30 days of data - Daily granularity - Quick overview
90-Day Trend: - Last 90 days of data - Weekly granularity - Longer-term patterns
Custom Range: - Select date range - Flexible granularity - Export data
Comparison Metrics¶
Week over Week: - Compare to previous week - Percentage change - Up/down indicators
Month over Month: - Compare to previous month - Trend direction - Growth rate
Year over Year: - Annual comparison - Seasonal patterns - Long-term trends
Engagement Metrics¶
Per-Engagement View¶
Engagement Selector: - Filter metrics by engagement - Compare engagements - Track progress
Engagement Metrics: - Assets in scope - Vulnerabilities found - Scans completed - Time to remediation
Campaign Metrics¶
Campaign View: - Aggregate across engagements - Campaign-level KPIs - Progress tracking
Campaign KPIs: - Total coverage - Vulnerability density - Remediation rate - Time to detect
Real-Time Metrics¶
Live Updates¶
Auto-Refresh: - Metrics update automatically - Configurable interval (30s, 1m, 5m) - Manual refresh available
Live Indicators: - Pulsing icon for active scans - Real-time progress bars - Instant notifications
Scan Progress¶
Active Scan Details: - Scan name and target - Progress percentage - Modules completed - Estimated time remaining - Assets discovered so far - Vulnerabilities found so far
Metric Widgets¶
Widget Types¶
Counter Widgets: - Single number display - Trend indicator (up/down) - Color-coded status - Click for details
Chart Widgets: - Line charts (trends) - Bar charts (comparisons) - Pie charts (distribution) - Interactive tooltips
List Widgets: - Recent activity - Top vulnerabilities - Latest assets - Failed scans
Status Widgets: - System health - Scan queue - API status - Integration status
Widget Configuration¶
Customize Widgets: 1. Click widget menu (â‹®) 2. Select Configure 3. Adjust settings: - Time range - Filters - Display options - Refresh rate 4. Click Save
Filtering Metrics¶
Filter Options¶
By Organization: - Select organization - View org-specific metrics - Compare organizations
By Engagement: - Select engagement - Engagement-specific view - Track engagement progress
By Time Range: - Last 24 hours - Last 7 days - Last 30 days - Last 90 days - Custom range
By Severity: - Filter vulnerabilities - Focus on critical/high - Exclude info findings
Saved Filters¶
Create Saved Views: 1. Apply filters 2. Click Save View 3. Name the view 4. Access from dropdown
Shared Views: - Share with team - Organization defaults - Personal favorites
Exporting Metrics¶
Export Options¶
Export Formats: - CSV (data) - PDF (report) - JSON (API) - PNG (charts)
Export Data: 1. Select metric/widget 2. Click Export 3. Choose format 4. Download file
Scheduled Reports¶
Automated Exports: 1. Navigate to Intelligence → Reports 2. Create scheduled report 3. Select metrics to include 4. Set frequency (daily/weekly/monthly) 5. Configure recipients
Metric Alerts¶
Alert Configuration¶
Set Thresholds: 1. Click metric widget 2. Select Configure Alerts 3. Set conditions: - Metric exceeds value - Metric drops below value - Percentage change - Trend direction 4. Configure notification
Alert Examples: - Critical vulnerabilities > 5 - Risk score > 60 - Failed scans > 3 - Asset growth > 20%
Best Practices¶
Monitoring¶
✅ Check Daily: Review key metrics daily
✅ Track Trends: Monitor week-over-week changes
✅ Set Alerts: Configure for critical thresholds
✅ Review Weekly: Deep dive into metrics weekly
✅ Compare Periods: Look for patterns
Interpretation¶
✅ Context Matters: Consider business context
✅ Investigate Spikes: Understand sudden changes
✅ Validate Data: Verify unexpected metrics
✅ Correlate Events: Link metrics to activities
✅ Document Findings: Note significant changes
Troubleshooting¶
Metrics Not Updating¶
Check: - Scans completing successfully - Data sync working - Browser cache cleared - Auto-refresh enabled
Incorrect Counts¶
Verify: - Filters applied correctly - Time range appropriate - Deduplication working - Data fully processed
Missing Data¶
Investigate: - Scans ran successfully - Results processed - No errors in scan logs - Database sync complete
Related: Dashboard Overview | Customizing Views | Reports