The Resolve platform is comprised of modules that provide distinct feature sets and workflows for vulnerability management and platform administration.


  1. Data from third-party sources, such as scanners, are imported to Resolve. This can be done automatically through API integrations or manually from flat files.

    Resolve parses, transforms, and correlates vulnerability data, updating existing Resolve entities or creating new ones as needed.

  2. Finding and asset data becomes available in the Resolve interface.
    • Unverified findings are managed and reviewed in the Workbench module.
    • Verified findings are managed and reviewed in the Track module. Verified findings assume no false positives are present.
  3. Team members, such as penetration testers, review unverified findings using the Workbench module. If a finding is determined to exist as reported by the scanner, the reviewing pentester marks the finding as final and ready for publishing. Pentesters can also manually create findings, such as findings found during manual penetration testing.
  4. Verified, final findings are published to the Track module.
  5. Vulnerability managers use the Track module to assign verified findings to remediators, such as developers or system administrators. When a vulnerability is addressed at the source, the remediator marks the finding as remediated.
  6. Resolve's built-in reporting system can generate DOCX, PDF, and HTML reports based on finding and entity data. Reports can be shared with team members and key stakeholders.
  7. Administrators use the Administration module to configure the Resolve platform, including user authentication and authorization. The Administration module also allows for orchestration administration, such as managing finding definitions.