Vulnerability Response Integration with Invicti imports applications and application vulnerabilities using Application Vulnerability Response. Application Vulnerability Response is a feature in Vulnerability Response that helps you prioritize and remediate application vulnerabilities.
Import applications and application vulnerabilities from Interactive Application Security Testing (IAST) and Dynamic Application Security Testing (DAST) with the Invicti Vulnerability Integration into the Application Vulnerability Response application. This integration supports the following features:
- Data import - Import applications, scan summaries, and application vulnerable items with scheduled jobs that run automatically.
- CI Lookup Rules - Search your CMDB with lookup rules for data on configuration items (CIs) that matches imports from the Invicti Vulnerability Integration.
- A Configuration page enables you to authenticate your API access.
- Invicti integrations that enable you to import the following information:
- Application List Integration - Applications that are scanned by Invicti.
- Scan List Integration - Data about the date and time a scan was run.
- Application Vulnerable Item - Invicti vulnerable item data.
Changed:
Enhancements to support a date format that you can specify from the Invicti configuration screen in your Now Platform instance.
-
The following app for Vulnerability Response must be installed and activated:
- Vulnerability Response
For information on Vulnerability Response application compatibility see, "Vulnerability Response and Configuration Compliance Compatibility Matrix" under Supporting Links and Docs.
Permissions and roles- Role required: System Admin (admin) or Application Security Manager (User part of App-Sec Manager group)