Add Custom RSS Advisory Sources
Notice
This feature is available in CSAP v3.7.2.0 onwards.
RSS advisories are open-source advisories from trusted sources, such as government agencies, security blogs, organizations and other sources in the cybersecurity industry. They continuously share the latest information as feeds, including cyber threats and events, as well as other critical updates.
RSS feeds are available both in the Analyst and Member Portal in the RSS Feeds and Feeds sections respectively. Analysts can enable required RSS sources to make them available in CSAP. Additionally, analysts can also add new RSS sources in the CSAP Analyst Portal. Advisory sources are grouped into different advisory categories based on the kind of information they share.
You can use RSS feeds in the Analyst Portal to create alerts and share them with members.
Before you Start
Ensure you have the View, Create and Update permissions for RSS Feeds in User Management.
Ensure you have configured advisory categories in Settings. For more information, see Advisory Settings.
Ensure that the new source does not already exist in the RSS Advisory section. Use the search option to verify.
Steps
To add new RSS advisory sources in the Analyst Portal, do the following:
Sign in to the Analyst Portal.
Click Administration > Advisory Management in the lower-left corner and navigate to RSS Advisory.
In the upper-right corner, click Add New. Use the following information while adding new RSS advisory sources:
Source name: Enter the name of the advisory source. For example, Veracode, and Naked Security.
URL: Enter the URL of the RSS advisory source. Make sure that the URL is valid and it does not already exist as part of other RSS sources.
Note
You cannot edit the URL after you have added the source.
Description: Enter a description that gives more context about the advisory source.
Category: Select the advisory category to which the source belongs. A few examples of advisory categories are Vulnerabilities, Security News, Personal Blogs and others. You can add custom advisory categories in Advisory Settings. For more information, see Advisory Settings.
Image: Upload the image for the source. You can view this image in the RSS Advisory section in the Analyst Portal. Supported image formats are jpeg, jpg and png.
Select the checkbox for Verify SSL to validate the SSL certificate of the URL. If the SSL certificate is not valid, the RSS source is not added. Recheck the URL and try again. By default, this checkbox is selected.
Review the details of the RSS advisory source, and click Submit. The advisory source is now added. Navigate to the category of the source, and turn on the toggle for the source to enable it in CSAP.
Manage RSS Advisory Sources
To manage RSS advisory sources, you must have the View and Update permissions. You can choose and subscribe to required feeds for members and analysts. You can perform the following actions to manage categories:
You can edit the custom RSS advisory sources that you have added by clicking the source > Edit. You can edit the source name, description, category and image of the source. You can also select the Verify SSL checkbox if you have not previously verified the SSL certificate of the URL.
Turn on the Enable in Member Portal toggle to ensure that the Feeds section is available in the Member portal.
Turn on the toggle for individual RSS sources that you want to enable in CSAP. After making the changes, click Update to save your changes. Members can view and follow active RSS advisory feed sources.
Search for existing RSS sources using the search option.
Once members subscribe to an RSS source they can directly leverage the information and view them as advisories in RSS Feeds in the Member portal. Analysts can view the same RSS Feeds in the Analyst Portal.