Invicti

Application Security

Overview
Setup
Data & mappings
Operations & API
Changelog

Data retrieved from Invicti

Connector Object	Required	Maps to Data Model
Website	Yes	Site
Issue Definition	Yes	Dynamic Code Finding Definition
Scan	Yes	Scan
Issue	Yes	Dynamic Code Finding

Model relationships

note

For detailed steps on how to view the data retrieved from Invicti in the Brinqa Platform, see How to view your data.

Connection settings

When setting up a data integration, select Invicti from the Connector dropdown and provide the following:

Setting	Required	Default	Description
API URL	No	`https://www.netsparkercloud.com`	Invicti enterprise API URL
User ID	Yes	Default - (user input, Required)	Invicti enterprise API user id
API Token	Yes	Default - (user input, Required)	Invicti enterprise API token
Page size	No	`200`	Maximum number of records to get per API request
Parallel requests	No	`min(4, availableProcessors)`	Maximum number of parallel API requests
SSL / TLS	No	`false`	Skip certificate verification
Max retries	No	`10`	Specifies the maximum number of retries permitted during a request. The default value is 10.
Request timeout (secs)	No	`120`	The maximum seconds allotted before a request will time out. Maximum allowed value 300

How to obtain Invicti credentials

[Add connector-specific credential steps. Templated placeholder — review before publish.]

Attribute mappings

Expand the sections below to view the mappings between the source and the Brinqa data model attributes:

Website

Source Field Name	SDM Attribute
`_(generated)_`	CATEGORIES
`_(generated)_`	LAST_CAPTURED
`WebsiteResource.agentMode`	AGENT_MODE
`WebsiteResource.createdAt`	SOURCE_CREATED_DATE
`WebsiteResource.groups[].name`	GROUPS
`WebsiteResource.id`	UID
`WebsiteResource.isVerified`	IS_VERIFIED
`WebsiteResource.licenseType`	LICENSE_TYPE
`WebsiteResource.name`	NAME
`WebsiteResource.name + rootUrl`	DESCRIPTION
`WebsiteResource.rootUrl`	URL
`WebsiteResource.tags`	TAGS
`WebsiteResource.technicalContactEmail`	TECH_CONTACT_EMAIL
`WebsiteResource.updatedAt`	SOURCE_LAST_MODIFIED

Issue Definition

Source Field Name	SDM Attribute
`classification.asvs40, capec, hipaa, disaStig, iso27001, nistsp80053, pci32, wasc`	CLASSIFICATION
`classification.cwe`	CWE_IDS
`classification.cwe`	WEAKNESSES
`classification.owasp*`	OWASP_CATEGORIES
`VulnerabilityTypeResource.actions + remedy`	RECOMMENDATION
`VulnerabilityTypeResource.cvss31VectorString / cvssVector`	CVSS_V3_*
`VulnerabilityTypeResource.cvssVectorString`	CVSS_V2_*
`VulnerabilityTypeResource.description`	NAME
`VulnerabilityTypeResource.externalReferences + remedyReferences`	REFERENCES
`VulnerabilityTypeResource.impact`	DESCRIPTION
`VulnerabilityTypeResource.proofOfConcept`	RESULTS
`VulnerabilityTypeResource.severity`	SEVERITY
`VulnerabilityTypeResource.severity`	SEVERITY_SCORE
`VulnerabilityTypeResource.severity`	SOURCE_SEVERITY
`VulnerabilityTypeResource.skills`	SKILLS
`VulnerabilityTypeResource.summary`	SUMMARY
`VulnerabilityTypeResource.type`	UID
`VulnerabilityTypeResource.type`	CATEGORIES

Scan

Source Field Name	SDM Attribute
`ScanResource.id`	UID
`ScanResource.id`	SYS_ID
`ScanResource.initiated`	Initiated at
`ScanResource.phase`	Phase
`ScanResource.policyName`	Scan policy
`ScanResource.reportPolicyName`	Report policy
`ScanResource.scanType`	Type
`ScanResource.state`	State
`ScanResource.stateChanged`	SOURCE_LAST_MODIFIED
`ScanResource.tags`	Tags
`ScanResource.targetPath`	Target path
`ScanResource.targetUrl`	Target URL
`ScanResource.threatLevel`	Threat level
`ScanResource.websiteId`	WEBSITE_ID
`ScanResource.websiteName`	WEBSITE_NAME

Issue

Source Field Name	SDM Attribute
`_(schema only)_`	TAGS
`IssueResource.assigneeName`	ASSIGNEE
`IssueResource.certainty`	CERTAINTY
`IssueResource.firstSeenDate`	FIRST_SEEN
`IssueResource.getState`	PROVIDER_STATUS
`IssueResource.getState`	SOURCE_STATUS
`IssueResource.getState`	STATUS
`IssueResource.getState`	STATUS_CATEGORY
`IssueResource.id`	UID
`IssueResource.isAddressed`	IS_ADDRESSED
`IssueResource.isDetectedByShark`	IS_DETECTED_BY_SHARK
`IssueResource.isPresent`	IS_PRESENT
`IssueResource.isRetest`	IS_RETEST
`IssueResource.isTodo`	IS_TODO
`IssueResource.lastScanId`	LAST_SCAN_ID
`IssueResource.lastSeenDate`	LAST_SEEN
`IssueResource.severity`	SEVERITY
`IssueResource.severity`	SEVERITY_SCORE
`IssueResource.severity`	SOURCE_SEVERITY
`IssueResource.type`	TYPE
`IssueResource.updatedDate`	SOURCE_LAST_MODIFIED
`IssueResource.url`	URL
`IssueResource.websiteId`	TARGETS
`IssueResource.websiteName`	WEBSITE_NAME
`VulnerabilityContent.requestContent`	REQUEST
`VulnerabilityContent.responseContent`	RESPONSE

Operations & API

Expand each connector object to see its operation options, delta-sync behavior, and the API it uses. See connector operation options for how to apply operation options (keys and values are case-sensitive).

Website

Operation options

This object does not support any operation options.

Delta sync

Not supported. The connector performs a full sync of Website on every run and applies no incremental date filter.

API

Type: GraphQL query · Endpoint: POST /api/graphql

Issue Definition

Operation options

This object does not support any operation options.

Delta sync

Not supported. The connector performs a full sync of Issue Definition on every run and applies no incremental date filter.

API

Type: GraphQL query · Endpoint: POST /api/graphql

Scan

Operation options

This object does not support any operation options.

Delta sync

Not supported. The connector performs a full sync of Scan on every run and applies no incremental date filter.

API

Type: GraphQL query · Endpoint: POST /api/graphql

Issue

Operation options

This object does not support any operation options.

Delta sync

Not supported. The connector performs a full sync of Issue on every run and applies no incremental date filter.

API

Type: GraphQL query · Endpoint: POST /api/graphql

Changelog

The Invicti connector has undergone the following changes:

Version	Description	Migration Steps
3.0.9	Improvements - Connector-sourced attribute values now take precedence over non-connector data channels (manual edits, bulk imports, UI input) when the platform consolidates records, so Invicti data is no longer overridden by lower-priority sources. Bug Fixes - Corrected the Issue model's "Last scan ID" attribute to be stored as text (was Boolean), matching the value returned by the Invicti API.	• Issue: the "Last scan ID" attribute changed from Boolean to text. Re-sync the Invicti connector to repopulate issues with the corrected type. ---
3.0.8	Improvements - Added configurable rate limiting via the `rateLimit` OperationOption (requests per minute). The rate limiter is initialized per model at sync time and throttles all paginated list, single-resource GET, and vulnerability type definition API calls.	N/A
3.0.7	Improvements - Added a configurable request timeout setting (up to 300 seconds) to allow for longer response times from the Invicti API.	N/A

Data retrieved from Invicti​

Model relationships​

Connection settings​

Attribute mappings​

Operations & API​

Changelog​

Data retrieved from Invicti

Model relationships

Connection settings

Attribute mappings

Operations & API

Changelog