JupiterOne + Detectify Integration
Navigate SecOps complexity by leveraging JupiterOne’s Detectify integration to consolidate vulnerability scan findings including OWASP Top 10, CORS, Amazon S3 Bucket and DNS misconfigurations and mapping them to the corresponding code repos, projects, and developers.
Overview of the Detectify Integration
JupiterOne provides an open source integration with Detectify. This integration consolidates findings from Detectify with other vulnerability and code scanners into a centralized vulnerability management dashboard.
JupiterOne maps the findings to corresponding code repos, application projects, and the developers. Using simple queries, security teams can easily identify the code owner/maintainer to remediate the findings.
Configure the integration by providing an API Key from your Detectify account. JupiterOne by default ingests findings from the past 30 days. The configuration can be changed to ingest findings from the latest scan reports (this option requires Enterprise Plan from Detectify).
Detectify Ingested Resources
| Detectify Resources | _type of the Entity | _class of the Entity |
|---|---|---|
| Account | detectify_account |
Account |
| Service | detectify_service |
Service |
| Asset (Domain) | web_app_domain |
Application |
| Asset (Subdomain) | web_app_endpoint |
ApplicationEndpoint |
| Scan Profile | detectify_scan_profile |
Configuration |
| Finding | detectify_finding |
Finding |
| Scan Report | detectify_scan |
Assessment |
Providing Complete Visibility for Leading Cloud-Native Organizations
Providing Complete Visibility for Leading Cloud-Native Organizations
