Create custom notifications
As an Organization Administrator, you can set notification defaults, or create custom notifications.
To create a custom notification:
Select Organization settings > Notifications > Create notification at the top of the Custom notifications list. In the window that appears, fill out the following form fields.
Use the radio buttons to choose Vulnerability or Attack.
Choose a Name for the notification.
Use the dropdown to set the notification Interval as
Daily,Weekly, orOn Event.Enter a Description for the notification's purpose.
Click in the multiselect field to choose the Applications for which this notification applies.
Choose the Application Tags for which this notification applies.
Choose which organization Users should receive the notifications.
Use the dropdowns to choose your Conditions.
Click the Add Condition link to add a row.
Contrast supports these conditions for custom notifications:
Notification types
Condition
Description
Category
Is or Is Not
Categories are high-level groupings of rule types such as Authentication, Injection, Cryptography, etc. There are 11 categories within Contrast rule types.
Impact
Is, Is Lower Than, Is Higher Than
Impact is measured in High, Medium and Low ratings based on how a rule type affects a given organization. Every rule type has a default impact configuration setting which can be customized.
Likelihood
Is, Is Lower Than, Is Higher Than
Likelihood is measured in High, Medium and Low ratings based on how frequent a rule type may occur. Every rule type has a default likelihood configuration setting that can be customized.
URL
Is, Contains, Starts With
A specific URL from an application.
Class
Is, Contains, Starts With
A specific Java or .NET class.
Method
Is, Contains, Starts With
A specific Java or .NET method.
Important
If you choose multiple conditions, Contrast uses AND logic for the notifications. Contrast generates the notifications when all selected conditions apply to the situation.