INTEGRATION

REQUEST INTEGRATION

  • ACUNETIX
    ACUNETIX

    Acunetix is an automated web application security testing tool that audits your web applications by checking for vulnerabilities like SQL Injection, Cross-site scripting and other exploitable vulnerabilities.

  • API IMPORT
    API IMPORT

    Custom Import of Users, Vulnerabilities via API / CSV.

  • ATLASSIAN JIRA
    ATLASSIAN JIRA

    Automatically create, assign and track Jira tickets containing the right fix to each vulnerability.

  • AWS ECR
    AWS ECR

    Ingest Docker container data from AWS ECR to enrich asset risk posture and better prioritize vulnerabilities.

  • AWS ECS
    AWS ECS

    Ingest container data from AWS ECS to enrich asset risk posture and better prioritize vulnerabilities.

  • AWS INSPECTOR
    AWS INSPECTOR

    Prioritize and fix vulnerability scan findings across applications deployed on AW.

  • AWS SECURITY HUB
    AWS SECURITY HUB

    AWS Security Hub centralizes alerts from a number of security scanners in AWS and gives you a comprehensive view of your security alerts and security posture across your AWS accounts.

  • BLACKDUCK
    BLACKDUCK

    Black Duck Maps string, file, and directory information to the Black Duck KnowledgeBase to identify open source and third-party components in applications.

  • BUGCROWD
    BUGCROWD

    Prioritize and fix pen-testing and bug-bounty findings discovered by Bugcrowd.

  • BURP SUITE
    BURP SUITE

    Prioritize and fix Burpsuite application security findings across web applications and code projects.

  • CHECK POINT CLOUDGUARD
    CHECK POINT CLOUDGUARD

    The Check Point CloudGuard platform provides you cloud native security, with advanced threat prevention for all your assets and workloads – in your public, private, hybrid or multi-cloud environment – providing you unified security to automate security everywhere.

  • CHECKMARX CXSAST
    CHECKMARX CXSAST

    Prioritize all Checkmarx application scan findings across code projects.

  • CLOUD CONFORMITY
    CLOUD CONFORMITY

    Cloud Conformity is a SaaS tool providing clients unparalleled visibility, control, governance, and reporting into their Public Cloud Infrastructure within seconds. Cloud Conformity provides 500+ Rules across 50+ AWS Services with a step by step resolution instructions for each of these rules.

  • DEPENDENCY CHECKER
    DEPENDENCY CHECKER

    Dependency-Check is a Software Composition Analysis (SCA) tool that attempts to detect publicly disclosed vulnerabilities contained within a project’s dependencies. It does this by determining if there is a Common Platform Enumeration (CPE) identifier for a given dependency. If found, it will generate a report linking to the associated CVE entries.

  • FORTIFY CODE SECURITY SCANNER
    FORTIFY CODE SECURITY SCANNER

    Fortify on Demand (FoD) is a complete Static Code analysis solution Fortify on Demand covers in-depth mobile app security testing, open-source analysis, and vendor application security management.

  • FORTIFY DAST
    FORTIFY DAST

    Prioritize and fix Fortify security findings across web applications.

  • FORTIFY SAST
    FORTIFY SAST

    Prioritize and fix Fortify application scan findings across code projects.

  • FORTIFY WEBINSPECT
    FORTIFY WEBINSPECT

    Fortify on Demand (FoD) – Dynamic Web Analysis is a complete Web Black Box Testing Code analysis solution Fortify on Demand covers in-depth mobile app security testing, open-source analysis.

  • GITHUB DEPENDABOT
    GITHUB DEPENDABOT

    Dependabot is a free and open source solution that alleviates that pain by updating your dependencies automatically, so you can spend less time updating dependencies and more time building. Up until now, the Dependabot features we’ve brought to GitHub have focused on automated security updates, which update packages that have known vulnerabilities.

  • HACKERONE
    HACKERONE

    Prioritize and fix pen-testing and bug-bounty findings discovered by HackerOne.

  • JFROG XRAY
    JFROG XRAY

    Prioritize and fix container and application security findings discovered by JFrog.

  • JIRA CLOUD
    JIRA CLOUD

    Automatically create, assign and track Jira tickets containing the right fix to each vulnerability.

  • JIRA SERVER
    JIRA SERVER

    Automatically create, assign and track Jira tickets containing the right fix to each vulnerability.

  • MICROSOFT TEAMS
    MICROSOFT TEAMS

    Automatically share crucial vulnerability data to the relevant Teams channels.

  • NETSPARKER
    NETSPARKER

    Web application Proof-Based Scanning To Find Real Vulnerabilities in web and API

  • NMAP
    NMAP

    Nmap (Network Mapper) is a free and open-source network that can be used to discover hosts and services on a computer network by sending packets and analyzing the responses.

  • OWASP NETTACKER
    OWASP NETTACKER

    OWASP Nettacker project was created to automate information gathering, vulnerability scanning and in general to aid penetration testing engagements.

  • OWASP ZAP
    OWASP ZAP

    OWASP ZAP (short for Zed Attack Proxy) is an open-source web application security scanner. It is one of the most active Open Web Application Security Project (OWASP) projects and has been given Flagship status.

  • PRISMA CLOUD
    PRISMA CLOUD

    Prisma™ Cloud is a cloud native security platform that enables you to secure your cloud native infrastructure and cloud native applications using single dashboard.

  • QUALYS
    QUALYS

    Qualys Web Application Scanning (WAS) is a cloud-based service that provides automated crawling and testing of custom web applications to identify vulnerabilities including cross-site scripting (XSS) and SQL injection.

  • SERVICENOW ITSM
    SERVICENOW ITSM

    Automatically create, assign and track ServiceNow incidents containing the right fix to each vulnerability

  • SLACK
    SLACK

    Automatically share crucial vulnerability data to the relevant Slack channels.

  • SNYK
    SNYK

    Prioritize and fix vulnerabilities in open source libraries and containers discovered by Snyk.

  • SONARQUBE
    SONARQUBE

    SonarQube (formerly Sonar) is an open-source platform developed by SonarSource for continuous inspection of code quality to perform automatic reviews with static analysis of code to detect bugs, code smells, and security vulnerabilities on 20+ programming languages.

  • SONATYPE
    SONATYPE

    Sonatype helps enterprises identify and remediate vulnerabilities in open source library dependencies and release more secure code.

  • TENABLE.IO WAS
    TENABLE.IO WAS

    Prioritize and fix dynamic web application scan findings across websites.

  • VERACODE SAST
    VERACODE SAST

    Prioritize and fix Veracode application scan findings across code projects.

  • WHITEHAT
    WHITEHAT

    Prioritize and fix WhiteHat application security findings across web applications and code projects.

  • WHITESOURCE
    WHITESOURCE

    WhiteSource is a Software Composition analysis security scanners that automates the entire process of open source component selection, approval and management, including detection and remediation of security and compliance issues.