Every pentester relies on their toolkit – whether that’s a big brand like Nessus or Qualys or something a little more under the radar. At Cyver, we want to ensure we offer support for your full toolkit, no matter what you’re using to pentest. That’s why we have a policy of “you ask, we build it” when it comes to importers.
It’s also why we’re continuously working to add new native importers to Cyver Core. As of July, you can automatically import files from pentest tools like HCL Appscan, Scout Suite, Prowler, and Purple Knight. Our users asked, and we listened!
New Importers in Cyver Core
- Prowler
- HCL Appscann
- Scout Suite
- Purple Knight
- Snyk
- Checkmarx
Importing Findings in Cyver Core
Cyver Core’s native importer allows you to directly import findings exported from your tooling without making additional changes to the file, formatting, or descriptions. Instead, you can seamlessly import everything from the tool and have it collected and reformatted into Cyver’s ticketing system for you.
- Export your findings to an XML from the tool
- Click “Pentests” from the Cyver Core portal and choose the relevant pentest
- Select “Import/Export” and choose “Import from File”
- Click the relevant tool
- Import your file. It will import everything from the tool, including code, ADs, evidence, etc.
Make sure you have your findings settings in place before import. For example, if you want to auto-fill your CWE/CVSS, Compliance Norms, merge data from your vulnerability library, or even auto-generate descriptions with our GenAi copilot. If your settings are correct there, everything will happen automatically, and your findings will import as tickets, complete with as much available information as possible automatically filled into the document. All you’ll have to do is a final manual check before publishing it to the client.
See our full list of importers here! If you’d like to know more about native importers in our pentest management portal, contact us for a demo of Cyver Core.