What can I do with it?

ORADAD connector allows to import results of Active Directory security auditing into Hackuity Platform. Findings are turned on ANSSI security standards with a set of compliances rules associated to AD Forest, AD Domain and AD objects like accounts.

What can I do with it?

The ANSSI provides regulated operators and the public sphere with a mapping capability of their exposure surface on the Internet through the SILENE service. This service aims to give visibility to these operators on their level of exposure and to accompany them by the progressive application of adequate measures to reduce it. The ANSSI SILENE connector allows users to seamlessly import a .ZIP file and synchronize ANSSI SILENE reports within your Hackuity workspace.

What can I do with it?

AWS Inspector is an automated vulnerability management service that continually scans AWS workloads for software vulnerabilities and unintended network exposure. Connect to the AWS Inspector API (v2) to seamlessly import and synchronize EC2, ECR, Lambda vulnerabilities within your Hackuity workspace.

What can I do with it?

This connector allows you to integrate findings and non-compliances of your AWS accounts into the Hackuity platform. The connector supports all standards present in AWS Security Hub including those of the “AWS Foundations” family, NIST, PCI-DSS [Arriving in imminent release | 1 month +] mention.

What can I do with it?

By using an offensive attacker’s point of view, Ambionics has created an efficient and realistic approach which oversteps the limits of classical manual or automated assessment. Through the combination of its powerful technical platform and its team of experts in breach tactics, Ambionics provides to companies an innovative solution for continuous web application security assessment.

What can I do with it?

This integration enables the vulnerabilities analysed by Trivy to be recovered.

What can I do with it?

This integration enables you to create and follow Azure DevOps Board issues from the Hackuity platform.

What can I do with it?

This integration enables retrieval of assets-related information from BMC Helix CMDB into your Hackuity platform.

What can I do with it?

BeSecure is Vulnerability Management and Assessment platform which continually scans for network and application vulnerabilities. Connect to the BeSecure API to seamlessly import, de-duplicate, normalize, and prioritize vulnerabilities within your Hackuity work environment.

What can I do with it?

Bitsight provides continuous visibility into all your critical external assets. Connect to the BitSight API and to seamlessly import findings within your Hackuity workspace. Findings that are not seen by BitSight for 2 weeks are automatically transitioned to “Fixed” in Hackuity.

What can I do with it?

Board of Cyber Security Rating's principle is to rate the cyber security performance and maturity of an organization thanks to an automated, continuous and reproducible evaluation of observable public data. Connect to theBoard of Cyber Security Rating API to seamlessly import, de-duplicate, normalize, and prioritize vulnerabilities within your Hackuity work environment."

What can I do with it?

Burp Suite Enterprise is the web security tester's toolkit which can be used to automate repetitive testing tasks. Connect to the Burp Suite Enterprise API to seamlessly import, de-duplicate, normalize, and prioritize vulnerabilities within your Hackuity workplace.

What can I do with it?

Burp Suite Professional is the web security tester's toolkit which can be used to automate repetitive testing tasks. Import a Burp scan by uploading a Burp archive in the Hackuity workplace to create a vulnerability assessment mapped with the Burp information.

What can I do with it?

KICS import allows users to create assessments by uploading a .json file to the environment.

What can I do with it?

This integration allows users to retrieve SAST and SCA scan results into your Hackuity platform.

What can I do with it?

This integration allows users to retrieve vulnerabilities on your targets scanned by Cx SAST.

What can I do with it?

This integration allows users to retrieve vulnerabilities on your targets scanned by Cx SCA.

What can I do with it?

This integration enables retrieval of vulnerabilities from industrial devices scanned by Claroty.

What can I do with it?

Crowdstrike Falcon Spotlight provides real-time vulnerabilities visibility across the enterprise by giving relevant and timely information needed to reduce the exposure to attacks with zero impact on the endpoints. Connect to the Crowdstrike Falcon Spotlight API to seamlessly import, de-duplicate, normalize, and prioritize vulnerabilities within your Hackuity workplace.

What can I do with it?

Connect to your CybelAngel platform to seamlessly incorporate assets identified by Asset Discovery and Monitoring module along with their vulnerabilities within your Hackuity platform.

What can I do with it?

Cyberwatch is a complete Vulnerability Management platform, the platform monitors your vulnerabilities and your compliance, from detection to remediation, agent-based or agentless. Connect to the Cyberwatch API to seamlessly import, de-duplicate, normalize, and prioritize vulnerabilities within your Hackuity workplace. Important note: currently, only CVEs are retrieved from the Cyberwatch API (no security defect).

What can I do with it?

Dynatrace combine deep observability, AIOps, and application security in one open, unified platform to continuously deliver precise answers and intelligent automation from data. Connect to the Dynatrace API to seamlessly import, de-duplicate, normalize, and prioritize vulnerabilities within your Hackuity workplace.

What can I do with it?

The Hackuity-Easyvista (ITSM) integration enables you to create and follow issues from the Hackuity App.

What can I do with it?

Connect to the Fortify Software Security Center API to seamlessly import and synchronize SAST vulnerabilities within your Hackuity platform. Note: only vulnerabilities identified by Fortify Static Code Analyzer are retrieved in Hackuity.

What can I do with it?

This integration makes it possible to recover vulnerabilities analysed by CodeQL.

What can I do with it?

This integration allows users to retrieve vulnerabilities on your targets scanned by GitLab Security.

What can I do with it?

This integration enables retrieval of scan results from Github Dependabot into your Hackuity platform.

What can I do with it?

OpenVAS is a full-featured vulnerability scanner. Its capabilities include unauthenticated and authenticated testing, various high-level and low-level internet and industrial protocols, performance tuning for large-scale scans and a powerful internal programming language to implement any type of vulnerability test. The scanner obtains the tests for detecting vulnerabilities from a feed that has a long history and daily updates. Import a OpenVAS scan by uploading a XML OpenVAS output in the Hackuity workplace to create a vulnerability assessment mapped with the OpenVAS information.

What can I do with it?

This connector allows users to import assessment information using the Hackuity assessment Universal method based on CSV format.

What can I do with it?

This connector allows users to import assets information using the Hackuity asset Universal method based on CSV format.

What can I do with it?

The Hardenize connector allows you to import scanned assets along with their associated findings.

What can I do with it?

HelixALM is a modular suite of ALM tools. You can use this application lifecycle management (ALM) suite to trace requirements, tests, and issues. HelixALM provides end-to-end traceability across the application lifecycle. This plugin allows to create and follow HelixALM issues (change requests, feature requests, ...) from Hackuity workplace.

What can I do with it?

IBM Security® QRadar® SOAR, formerly Resilient®, is designed to help your security team respond to cyberthreats with confidence, automate with intelligence and collaborate with consistency. It guides IT team in resolving incidents by codifying established incident response processes into dynamic playbooks. It is a bi-directional connector that allows full integration of IBM Security QRadar SOAR processes into Hackuity.

What can I do with it?

This integration enables retrieval of vulnerabilities on your targets scanned by Acunetix Premium.

What can I do with it?

The Acunetix Premium file upload connector allows user to import scan results into Hackuity.

What can I do with it?

This integration enables you to retrieve websites and related vulnerabilities into your Hackuity platform.

What can I do with it?

This integration enables you to retrieve assets-related information from Ivanti CMDB into your Hackuity environment. [Arriving in imminent release | 1 month +]

What can I do with it?

Create and follow Ivanti Neurons for ITSM incidents, problems and changes from Hackuity. [Arriving in imminent release | 1 month +]

What can I do with it?

Connect to the JFrog XRay API to import SCA vulnerabilities, malicious packages and policies violations found by your JFrog XRay instance.

What can I do with it?

Jira Software is a proprietary issue tracking product developed by Atlassian that allows bug tracking and agile project management. This connector allows you to create and follow Jira Software issues from the Hackuity workplace. It is a bi-directional connector that allows full integration of Jira processes into Hackuity.

What can I do with it?

The Mandiant integration allows users to enrich both SmartEx² and the findings with threat intelligence data.

What can I do with it?

Microsoft Defender for Endpoint is an enterprise endpoint security platform designed to help enterprise networks prevent, detect, investigate, and respond to advanced threats.

What can I do with it?

The OCD Vulnerability Intelligence Watch is a vulnerability monitoring service offered by Orange Cyberdefense. It permits to inform in real time about the vulnerabilities impacting the information system and the patches to be applied. This monitoring service allows to identify the vulnerabilities continuously, prioritize the scope of actions and implement the appropriate recommendations. Connect to the OCD Vulnerability Intelligence Watch API to seamlessly import, de-duplicate, normalize, and prioritize vulnerabilities within your Hackuity work environment.

What can I do with it?

The OWASP® Dependency-Check is a Software Composition Analysis (SCA) tool that attempts to detect publicly disclosed vulnerabilities contained within a project’s dependencies. It does this by determining if there is a Common Platform Enumeration (CPE) identifier for a given dependency. If found, it will generate a report linking to the associated CVE entries. OWASP® Dependency-Check import permits to create assessments by uploading a .json file to your Hackuity workplace.

What can I do with it?

Oligo connector allows to import container images and associated vulnerabilities to Hackuity platform. Dependencies linked to container images are processed as vulnerable softwares to allow a consolidated view.

What can I do with it?

Outpost24 offers all the tools, insights and data you need to uncover security risk exposure across your entire attack surface.

What can I do with it?

Outpost24 offers all the tools, insights and data you need to uncover security risk exposure across your entire attack surface.

What can I do with it?

Cortex™ XSOAR is a comprehensive security orchestration, automation and response (SOAR) platform that unifies case management, automation, real-time collaboration and threat intel management to serve security teams across the incident lifecycle. This connector needs to be setup in the Palo Alto Cortex XSOAR interface. From a war-room, query your Hackuity cockpit in order to seamlessly retrieve information related to your vulnerability stock. This integration was integrated and tested with version 1.25.0 of Hackuity.

What can I do with it?

Connect to the PaloAlto Cortex XDR API to seamlessly import and synchronize vulnerabilities identified on your endpoints within your Hackuity platform.

What can I do with it?

Connect to the PaloAlto Cortex Xpanse to seamlessly import and synchronize vulnerabilities data within your Hackuity platform.

What can I do with it?

This connector import and synchronize assets, qualified vulnerabilities and risks insights from Patrowl API into your Hackuity environment [Arriving in imminent release | 1 month +].

What can I do with it?

The integration consists of an off-the-shelf PowerBI project, which enables deep data analytics and reporting on your vulnerability stock.

What can I do with it?

This integration allows users to retrieve cloud resources (container images, machines) data from Prisma Cloud as well as its related vulnerabilities.

What can I do with it?

Purplemet is a Web Application Security monitoring platform to follow the web security exposure over time. Connect to the Purplemet API to seamlessly import, de-duplicate, normalize, and prioritize vulnerabilities within your Hackuity work environment.

What can I do with it?

This Connector allows user to import CSAM assets into Hackuity platform. This connector doesn't manage findings.

What can I do with it?

Qualys VMDR is a cloud-based service that gives global visibility into where IT systems might be vulnerable to the latest Internet threats and how to protect them. Connect to the Qualys VM API to seamlessly import, de-duplicate, normalize, and prioritize vulnerabilities within your Hackuity work environment.

What can I do with it?

Qualys WAS gives you visibility and control by finding official and “unofficial” apps throughout your environment, and letting you categorize them. Connect to the Qualys WAS API to seamlessly import, de-duplicate, normalize, and prioritize vulnerabilities within your Hackuity work environment.

What can I do with it?

Connect to the Rapid7 InsightAppSec API to seamlessly import and synchronize Web Applications & related Vulnerabilities data within your Hackuity platform.

What can I do with it?

Rapid7 InsightVM Nexpose is a vulnerability management solution with visibility, analytics, and automation delivered through the Insight cloud. The solution simplify the complex, allowing security teams to work more effectively with IT and development to reduce vulnerabilities. Connect to the Rapid7 Nexpose API to seamlessly import, de-duplicate, normalize, and prioritize vulnerabilities within your Hackuity workplace.

What can I do with it?

Rapid7 InsightVM scan import allows user to create assessments by uploading a XML v2 export file to the environment.

What can I do with it?

Connect to the Rapid7 InsightVM (Cloud-based) API to seamlessly import, de-duplicate, normalize, and prioritize vulnerabilities within your Hackuity workplace.

What can I do with it?

This integration allows users to retrieve intelligence data from Recorded Future.

What can I do with it?

Red Hat Advanced Cluster Security (RHACS) integration allows you to import security findings associated with cloud infrastructures, Kubernetes clusters, deployment elements (Kubernetes deployment) as well as non-compliance information against standards supported by RHACS.

What can I do with it?

SALT Security integration allows to import security results for scanned API's endpoints based on "Posture Gaps" categories.

What can I do with it?

This integration allows users to retrieve vulnerabilities from Snyk.

What can I do with it?

SecurityScorecard instantly empowers you with the trust and confidence to make smarter, faster decisions. Gain an outside-in view of your security posture so you can take preventative action. Connect to the SecurityScorecard API to seamlessly import, de-duplicate, normalize, and prioritize vulnerabilities within your Hackuity workplace.

What can I do with it?

One platform for superior visibility and enterprise-grade prevention, detection, and response across your attack surface, from endpoints and servers to mobile devices.

What can I do with it?

This integration enables you to retrieve assets-related information from SNow CMDB into your Hackuity platform.

What can I do with it?

ServiceNow IT Service Management provides a cloud computing platform to help companies manage digital workflows for enterprise operations. This connector allows users to create and follow ServiceNow IT Service Management issues from the Hackuity workplace. It is a bi-directional connector that allows full integration of ServiceNow IT Service Management processes into Hackuity.

What can I do with it?

SonarCloud is a cloud-based code analysis service designed to detect code quality issues in 25 different programming languages, continuously ensuring the maintainability, reliability and security of your code. Connect to the SonarCloud API to seamlessly import and synchronize static application security testing (SAST) information within your Hackuity Workspace.

What can I do with it?

SonarQube is an open-source platform developed by SonarSource for continuous inspection of code quality to perform automatic reviews with static analysis of code to detect bugs and code smells on 29 programming languages. SonarQube offers reports on duplicated code, coding standards, unit tests, code coverage, code complexity, comments, bugs, and security recommendations

What can I do with it?

Automatically find and fix open source vulnerabilities at every stage of the software developpment lifecycle (SDLC). The Sonatype Nexus Lifecycle connector permits to seamlessly import and synchronize Software Composition Analysis reports within your Hackuity workspace.

What can I do with it?

Black Duck is a software composition analysis (SCA) witch helps teams manage the security, quality, and license compliance risks that come from the use of open source and third-party code in applications and containers.

What can I do with it?

This integration allows users to retrieve assets-related data from Tanium into your Hackuity platform.

What can I do with it?

Nessus Professional is a vulnerability scanner which performs its scans by utilizing plugins, which run against each host on the network in order to identify vulnerabilities. Plugins can be thought of as individual pieces of code that Nessus uses to conduct individual scan types on targets. Plugins are numerous and wide in their capabilities. Import a Nessus Professional scan by uploading a .nessus archive in the Hackuity workplace to create a vulnerability assessment mapped with the Nessus plugins information.

What can I do with it?

Tenable.sc is a on-prem Vulnerability Scanner. Connect to the tenable.sc API to seamlessly import, de-duplicate, normalize, and prioritize vulnerabilities within your Hackuity workplace.

What can I do with it?

Tenable.io is a cloud based Vulnerability Scanner. Connect to the tenable.io API to seamlessly import, de-duplicate, normalize, and prioritize vulnerabilities within your Hackuity workplace.

What can I do with it?

Accurately identify, investigate and prioritize vulnerabilities managed in the Cloud.

What can I do with it?

Tenacy is a solution dedicated to the CISO for the global management of cybersecurity and risks within organizations. This connector needs to be setup in the Tenacy interface. From the Tenacy interface, query your Hackuity cockpit in order to seamlessly retrieve information related to your vulnerability stock. This integration was integrated and tested with version 1.25.0 of Hackuity.

What can I do with it?

This integration allows users to enrich Hackuity with adversaries and malware data from ThreatQ [Arriving in imminent release | 1 month +] mention.

What can I do with it?

Connect to the Traceable API to seamlessly import and synchronize APIs and related vulnerabilities within your Hackuity platform.

What can I do with it?

The Hackuity - Trend Micro Deep Security integration allows user to synchronize multiple information about the assets monitored by Deep Security into your Hackuity platform.

What can I do with it?

This integration allows users to retrieve vulnerabilities on your targets scanned by Veracode SAST & SCA.

What can I do with it?

The WPScan CLI tool is a free, for non-commercial use, black box WordPress security scanner written for security professionals and blog maintainers to test the security of their sites. The CLI can use the WordPress Vulnerability Database API to retrieve WordPress vulnerability data in real time. Import a WPScan scan by uploading a .JSON WPScan output in the Hackuity workplace to create a vulnerability assessment mapped with the WPScan information.

What can I do with it?

This integration allows users to retrieve cloud resources (container images, machines) data from Wiz.io as well as its related vulnerabilities.

What can I do with it?

Bug Bounty Application - It provides a crowdsourced platform for bug bounty programs where ethical hackers can report security exploits and vulnerabilities.

What can I do with it?

Yogosha is an Offensive Security Testing Platform. Agilely launch and manage your security tests from end to end with this vulnerability management platform and its Strike Force of 800+ cybersecurity experts. This integration allows users to retrieve VDP and Bug Bounty reports from Yogosha into your Hackuity platform.

What can I do with it?

HTTPCS vulnerability scanner analyse and sort every URLs found on a website or a web application and theirs links to explore in priority the most relevant pages based on data partition algorithm, links analytics and language processing applied to URLs. Connect to the HTTPCS API and to seamlessly import and synchronize vulnerabilities within your Hackuity workspace.