---
title: Reflectiz
description: The Reflectiz integration provides security insights for your website.
breadcrumbs: Docs > Integrations > Reflectiz
---

# Reflectiz
Supported OS Integration version1.0.0  Web Exposure Rating DashboardWeb Exposure Alerts Dashboard
## Overview{% #overview %}

Reflectiz's innovative agentless solution monitors and detects vulnerabilities in all 1st, 3rd, and 4th party applications within your online ecosystem, providing complete visibility into your web risk exposure. It efficiently prioritizes and remediates risks and compliance issues using its proprietary exposure rating system.

This integration enhances your website's security by introducing **Web Exposure Rating** and **Web Exposure Alerts** in Datadog, enabling proactive assessment and mitigation of security risks.

The integration provides a combination of logs and metrics to support both ratings and alerts.

### Features{% #features %}

- **Web Exposure Rating**: Gain a clear and comprehensive security rating for your website components. The Reflectiz Rating feature provides an at-a-glance evaluation of your website's security status, helping you understand where you stand and where improvements are needed.
- **Web Exposure Alerts**: Be informed in real time about potential risks and vulnerabilities. The integration generates detailed alerts that notify you of misconfigurations, suspicious activity, and emerging threats so that you can take immediate action.
- **Seamless integration with Datadog**: View both the Reflectiz Rating and Risk Alerts directly within your Datadog environment. This allows you to monitor your website's security alongside performance and infrastructure metrics, all in one centralized platform.
- **Prioritize what matters most**: With the Reflectiz Rating and actionable alerts, you can easily identify and prioritize the most critical risks, focusing your efforts on the areas that need attention the most.

## Setup{% #setup %}

### In Datadog{% #in-datadog %}

1. Navigate to the **Integrations** tab in Datadog.
1. Find the **Reflectiz** tile and click **Install Integration**.
1. Click **Connect Accounts** to start the authorization process, which redirects you to the Reflectiz Platform.

### In the Reflectiz Platform{% #in-the-reflectiz-platform %}

1. Enter your Reflectiz credentials to access your account.
1. Choose the appropriate license for the integration.

Once this flow is complete, Web Exposure Alerts and Rating data are available within the included dashboards.

### Link Reflectiz sites with hosts{% #link-reflectiz-sites-with-hosts %}

To make your data more efficient and meaningful, you can link each of your Reflectiz sites to a host in Datadog:

1. Open the Datadog [host list](https://app.datadoghq.com/infrastructure).
1. Select a host.
1. Add a tag under the **User tag** section. The tag should follow the format `reflectiz.host.site:{domain}`, where `domain` is Reflectiz site you want to link in the format `example.com`.If you want to add additional sites to a single host, you can add more tags following the format `reflectiz.host.site.1:{domain}`, `reflectiz.host.site.2:{domain}`, and so on.

Once you complete these steps, all metrics and logs are tagged with the appropriate host.

## Uninstallation{% #uninstallation %}

1. In Datadog, navigate to **Integrations** > select the Reflectiz tile > click **Uninstall Integration**.
1. Additionally, ensure that all API keys associated with this integration have been disabled by searching for the integration name on the [API Keys page](https://app.datadoghq.com/organization-settings/api-keys?filter=Reflectiz).

## Data Collected{% #data-collected %}

### Logs{% #logs %}

The Reflectiz integration sends different types of logs to Datadog, each associated with a specific service. These logs provide detailed insights into scans, app risks, and domain risks, helping you monitor your website's security effectively.

#### Scan logs{% #scan-logs %}

- **Log service name**: `reflectiz.v1.scan`
- **Tags**:
  - `reflectiz.site`: The site being scanned.
  - `reflectiz.scan`: The identifier of the scan.
  - `reflectiz.scan.number`: The identifier of the scan as an integer (for more filtering options).

These logs trigger each time a scan is run on a website.

#### Alert logs{% #alert-logs %}

- **Log service name**: `reflectiz.v1.alerts`
- **Tags**:
  - `reflectiz.site`: The site being scanned.
  - `reflectiz.scan`: The identifier of the scan.
  - `reflectiz.scan.number`: The identifier of the scan as an integer (for more filtering options).
  - `reflectiz.app`: The app that is related to the alert, if present.
  - `reflectiz.domain`: The domain that is related to the alert, if present.

These logs highlights alerts triggered during the site's scan.

#### Rating scan logs{% #rating-scan-logs %}

- **Log service name**: `reflectiz.v1.scan`
- **Tags**:
  - `reflectiz.site`: The site being scanned.
  - `reflectiz.scan`: The identifier of the scan.
  - `reflectiz.scan.number`: The identifier of the scan as an integer (for more filtering options).

These logs trigger each time a scan is run on a website and the ratings are calculated, and they can be useful when filtering the rating data.

#### App risks logs{% #app-risks-logs %}

- **Log service name**: `reflectiz.v1.rating.app.risks`
- **Tags**:
  - `reflectiz.site`: The site being scanned.
  - `reflectiz.scan`: The identifier of the scan.
  - `reflectiz.scan.number`: The identifier of the scan as an integer (for more filtering options).
  - `reflectiz.app`: The application being assessed.

These logs highlight risks related to specific applications on your site, helping you pinpoint vulnerabilities.

#### Domain risks logs{% #domain-risks-logs %}

- **Log service name**: `reflectiz.v1.rating.domain.risks`
- **Tags**:
  - `reflectiz.site`: The site being scanned.
  - `reflectiz.scan`: The identifier of the scan.
  - `reflectiz.scan.number`: The identifier of the scan as an integer (for more filtering options).
  - `reflectiz.domain`: The domain being assessed.

These logs focus on risks related to domains, providing a clear picture of domain-specific vulnerabilities.

### Metrics{% #metrics %}

|  |
|  |
| **reflectiz.v1.rating.overall**(gauge)                        | The overall security rating for the entire site, combining insights from all evaluated components.                                                                           |
| **reflectiz.v1.rating.app**(gauge)                            | The security rating for the applications running on the site.                                                                                                                |
| **reflectiz.v1.rating.domain**(gauge)                         | The security rating for the domains associated with the site.                                                                                                                |
| **reflectiz.v1.rating.site**(gauge)                           | The security rating for the site based on different website structure factors.                                                                                               |
| **reflectiz.v1.rating.industry\_overall**(gauge)              | The overall security rating of the site when compared against industry benchmarks.                                                                                           |
| **reflectiz.v1.rating.industry\_app**(gauge)                  | The average application security rating for websites in the same industry.                                                                                                   |
| **reflectiz.v1.rating.industry\_domain**(gauge)               | The average security rating for domains within the same industry.                                                                                                            |
| **reflectiz.v1.rating.industry\_site**(gauge)                 | The average security rating for website structures in the same industry.                                                                                                     |
| **reflectiz.v1.rating.app.specific**(gauge)                   | A detailed security rating for a specific application on the site. Applications can be filtered by the tag `reflectiz.app`.                                                  |
| **reflectiz.v1.rating.domain.specific**(gauge)                | A security rating focused on a specific domain associated with the site. Domains can be filtered by the tag `reflectiz.domain`.                                              |
| **reflectiz.v1.rating.site.specific**(gauge)                  | A security rating focused on a specific website structure category associated with the site.                                                                                 |
| **reflectiz.v1.rating.numberOfExternalItem**(gauge)           | Tracks the number of external items for each category present on the site. Category can be filtered using the tag `reflectiz.structure.category`.                            |
| **reflectiz.v1.rating.industry\_numberOfExternalItem**(gauge) | The average number of external items found on websites in the same industry for different categories. Category can be filtered using the tag `reflectiz.structure.category`. |
| **reflectiz.v1.alerts.count**(gauge)                          | The number of alerts triggered during a specific scan. This metric can be filtered by the tags `reflectiz.site`, `reflectiz.scan`, and `reflectiz.alert.severity`.           |

## Support{% #support %}

For support or feature requests, contact Reflectiz through the following channels:

- Support: [support@reflectiz.com](mailto:support@reflectiz.com)
- Sales: [inbound@reflectiz.com](mailto:inbound@reflectiz.com)
- Website: [reflectiz.com](https://reflectiz.com)