
Intigriti
Application Security- Overview
- Setup
- Data & mappings
- Operations & API
The Intigriti connector integrates with the Intigriti bug bounty and vulnerability disclosure platform. It synchronizes bug bounty programs, security submissions (findings), finding definitions, and target sites into the Brinqa platform.
Data retrieved from Intigriti
| Connector Object | Required | Maps to Data Model |
|---|---|---|
| Program | Yes | — |
| Pentest Finding | Yes | Pentest Finding |
| Pentest Finding Definition | Yes | Pentest Finding Definition |
| Site | Yes | Site |
Model relationships
For detailed steps on how to view the data retrieved from Intigriti in the Brinqa Platform, see How to view your data.
Connection settings
When setting up a data integration, select Intigriti from the Connector dropdown and provide the following:
| Setting | Required | Default | Description |
|---|---|---|---|
| Access token | Yes | — | Intigriti API access token(non expiring) |
How to obtain Intigriti credentials
The connector authenticates using a Bearer Token (non-expiring API access token).
Obtain the required credentials (accessToken) from your Intigriti administrator or the Intigriti admin console, then enter them in the connection settings above.
Attribute mappings
Expand the sections below to view the mappings between the source and the Brinqa data model attributes:
Program
| Source Field Name | SDM Attribute |
|---|---|
Instant.now() | LAST_CAPTURED |
ProgramResource.companyHandle | COMPANY_HANDLE |
ProgramResource.companyId | COMPANY_ID |
ProgramResource.confidentialityLevel.value | CONFIDENTIALITY_LEVEL |
ProgramResource.createdAt | CREATED_AT |
ProgramResource.description | DESCRIPTION |
ProgramResource.domain[].description | DOMAIN_DESCRIPTION |
ProgramResource.domain[].endpoint | DOMAIN_ENDPOINT |
ProgramResource.domain[].id | DOMAIN_ID |
ProgramResource.domain[].tier.value | DOMAIN_TIER |
ProgramResource.domain[].type.value | DOMAIN_TYPE |
ProgramResource.handle | HANDLE |
ProgramResource.id | UID |
ProgramResource.inScope.content | IN_SCOPE |
ProgramResource.lastUpdatedAt | LAST_UPDATED_AT |
ProgramResource.maxConfidentialityLevel.value | MAX_CONFIDENTIALITY_LEVEL |
ProgramResource.name | NAME |
ProgramResource.outOfScope.content | OUT_OF_SCOPE |
ProgramResource.rulesOfEngagement.content.description | RULES_OF_ENGAGEMENT |
ProgramResource.state.status.value | STATE_STATUS |
ProgramResource.webLinks.details | WEB_LINKS_DETAILS |
| — | CATEGORIES |
| — | STATUS |
Pentest Finding
| Source Field Name | SDM Attribute |
|---|---|
Instant.now() | LAST_CAPTURED |
SubmissionResource.assignee.email | ASSIGNEE_EMAIL |
SubmissionResource.assignee.role | ASSIGNEE_ROLE |
SubmissionResource.assignee.userId | ASSIGNEE_USER_ID |
SubmissionResource.assignee.userName | ASSIGNEE_USER_NAME |
SubmissionResource.awaitingFeedback | AWAITING_FEEDBACK |
SubmissionResource.code | UID |
SubmissionResource.code | NAME |
SubmissionResource.code | TYPE |
SubmissionResource.createdAt | SOURCE_CREATED_DATE |
SubmissionResource.groupId | GROUP_ID |
SubmissionResource.lastUpdated.lastUpdatedAt | LAST_UPDATED_AT |
SubmissionResource.lastUpdated.lastUpdater.userId | LAST_UPDATED_USER_ID |
SubmissionResource.originators.programId | PROGRAM_ID |
SubmissionResource.report.domain.name | TARGETS |
SubmissionResource.report.endpointVulnerableComponent | VULNERABLE_ENDPOINT_OR_COMPONENT |
SubmissionResource.report.impact | IMPACT |
SubmissionResource.report.ip | IP_ADDRESSES |
SubmissionResource.report.ip | PUBLIC_IP_ADDRESSES |
SubmissionResource.report.ip | PRIVATE_IP_ADDRESSES |
SubmissionResource.report.originalTitle | ORIGINAL_TITLE |
SubmissionResource.report.personalData | PERSONAL_DATA |
SubmissionResource.report.pocDescription | POC_DESCRIPTION |
SubmissionResource.reward.totalPayout.value | TOTAL_PAYOUT |
SubmissionResource.state.acceptedAt | FIRST_FOUND |
SubmissionResource.state.archivedAt | ARCHIVED_AT |
SubmissionResource.state.closedAt | LAST_FIXED |
SubmissionResource.state.closeReason | CLOSE_REASON |
SubmissionResource.state.status.value | STATUS |
SubmissionResource.state.status.value | PROVIDER_STATUS |
SubmissionResource.state.status.value | SOURCE_STATUS |
SubmissionResource.state.status.value | STATUS_CATEGORY |
SubmissionResource.state.validatedAt | VALIDATED_AT |
SubmissionResource.submitter.identityChecked | SUBMITTER_IDENTITY_CHECKED |
SubmissionResource.submitter.ranking.rank | SUBMITTER_RANK |
SubmissionResource.submitter.ranking.reputation | SUBMITTER_REPUTATION |
SubmissionResource.submitter.ranking.streak.value | SUBMITTER_STREAK_VALUE |
SubmissionResource.submitter.role | SUBMITTER_ROLE |
SubmissionResource.submitter.userName | SUBMITTER_USERNAME |
SubmissionResource.tags | TAGS |
SubmissionResource.title | TITLE |
SubmissionResource.webLinks.details | WEB_LINKS_DETAILS |
Pentest Finding Definition
| Source Field Name | SDM Attribute |
|---|---|
Instant.now() | LAST_CAPTURED |
SubmissionResource.code | UID |
SubmissionResource.report.recommendedSolution | RECOMMENDATION |
SubmissionResource.report.type.category | CATEGORIES |
SubmissionResource.report.type.cwe | CWE_IDS |
SubmissionResource.report.type.cwe | WEAKNESSES |
SubmissionResource.report.type.name | FINDING_TYPE |
SubmissionResource.severity.id | SEVERITY_ID |
SubmissionResource.severity.value | SEVERITY |
SubmissionResource.severity.value | SOURCE_SEVERITY |
SubmissionResource.severity.value | SEVERITY_SCORE |
SubmissionResource.severity.vector | CVSS_* |
SubmissionResource.title | NAME |
| — | TAGS |
Site
| Source Field Name | SDM Attribute |
|---|---|
| "active" | STATUS |
| ASSET_CATEGORY_WEB_APPLICATION | CATEGORIES |
Instant.now() | LAST_CAPTURED |
SubmissionResource.report.domain.description | DESCRIPTION |
SubmissionResource.report.domain.motivation | REPORT_DOMAIN_MOTIVATION |
SubmissionResource.report.domain.name | UID |
SubmissionResource.report.domain.name | NAME |
SubmissionResource.report.domain.tier.id | REPORT_DOMAIN_TIER_ID |
SubmissionResource.report.domain.tier.value | REPORT_DOMAIN_TIER_VALUE |
SubmissionResource.report.domain.type.id | REPORT_DOMAIN_TYPE_ID |
SubmissionResource.report.domain.type.value | REPORT_DOMAIN_TYPE_VALUE |
Operations & API
Expand each connector object to see its operation options, delta-sync behavior, and the API it uses. See connector operation options for how to apply operation options (keys and values are case-sensitive).
Program
Operation options
This object does not support any operation options.
Delta sync
The connector README does not document sync behavior for this object.
API
The connector README does not document a data source for this object.
Pentest Finding
Operation options
This object does not support any operation options.
Delta sync
The connector README does not document sync behavior for this object.
API
The connector README does not document a data source for this object.
Pentest Finding Definition
Operation options
This object does not support any operation options.
Delta sync
The connector README does not document sync behavior for this object.
API
The connector README does not document a data source for this object.
Site
Operation options
This object does not support any operation options.
Delta sync
The connector README does not document sync behavior for this object.
API
The connector README does not document a data source for this object.