Security Connectors

An ongoing collection of our security tool integrations. Use your vulnerability and pentest results with our real-time threat feeds in order to improve your security posture.


Atlassian JIRA lets you prioritize, assign, track, report and audit your issues, whatever they may be: from software bugs and help-desk tickets to project tasks and change requests.


Beyond Security's testing solutions accurately assess and manage security weaknesses in networks, web applications, industrial systems and networked software, and can augment pentest results. We help businesses and governments improve and simplify their network and application security thus reducing their vulnerability to attack and data loss.


BeyondTrust Retina Network Security Scanner identifies known and zero-day vulnerabilities to protect an organization’s valuable assets. The Retina Scanner provides security risk assessment, as well as enables security best practices, policy enforcement and regulatory audits.


Portswigger Burp web scanner is a state-of-the-art vulnerability scanner for web applications. It is designed with security testers in mind, to integrate closely with your existing techniques and methodologies for manual and automated pentesting.


Cenzic Hailstorm provides software and SaaS products to protect websites against hacker attacks. Unlike network security and SSL solutions, Hailstorm tests for security defects at the web-application level, where 75% of attacks occur.


HP Fortify accurately tests the security of any third-party or internal applications across 16 different programming languages and detects more than 100 different types of security vulnerabilities.


HP WebInspect performs web application security testing and assessment for complex web applications, built on emerging technologies. Through platform-independent dynamic security analysis against running applications, WebInspect delivers fast scanning capabilities, broad security assessment coverage and accurate scanning results.


IBM AppScan automates application security testing by scanning applications, identifying vulnerabilities and generating reports with intelligent fix recommendations to ease remediation. It can align with best practice pentesting as well.


McAfee Vulnerability Manager performs authenticated and unauthenticated checks, automatically updated 24/7 by McAfee Labs.


Metasploit software helps security and IT professionals identify security issues, verify vulnerability mitigations, and manage expert-driven security assessments.


Tenable Nessus is a network and host security scanner for various flavors of operating systems and out-of-the-box software. It performs over 900 remote security checks, and suggests solutions for security problems.


Netsparker Web Application Security Scanner can find and report security issues and vulnerabilities such as SQL injection and cross-site scripting (XSS) in all web applications regardless of the platform and the technology they are built on.


Rapid7 Nexpose identifies vulnerabilities across networks, operating systems, databases, web applications and a wide-ranges of system platforms through an integrated, intelligent scan engine. Learn More →


Nmap is a free and open source utility for network exploration or security auditing. Upload XML reports from Nmap to our Connector page to provide a full picture of your assets in Risk I/O.


NTOSpider is a dynamic application security testing (DAST) solution that is capable of testing mobile and web applications that leverage technologies like REST, AJAX, JSON and GWT.


OpenVAS is a framework of several services and tools offering a comprehensive and powerful vulnerability scanning and vulnerability management solution.


Qualys QualysGuard automates the lifecycle of network auditing and vulnerability management across the enterprise, including network discovery and mapping, asset prioritization, vulnerability assessment reporting and remediation tracking. Learn More →


Tenable SecurityCenter provides centralized management of distributed Nessus vulnerability scanners, creating visibility into enterprise-wide risk.


As a component of the security risk and compliance management suite, Tripwire comprehensively profiles all networked devices and includes coverage for over 40,000 conditions (including operating systems, applications, vulnerabilities, and configurations).


Veracode provides automated static and dynamic application security testing software and remediation services. This connector works with the Veracode API to pull in report data.


w3af is an open-source web application attack and audit framework with the stated goal of becoming the best open-source web application scanner.


WhiteHat Sentinel is a web-based subscription service that combines advanced proprietary scanning technology with expert analysis, allowing customers to identify, prioritize, manage and remediate website vulnerabilities as they occur.

Want to see your data contextualized with Risk I/O’s threat intelligence?
Give us an hour and 1,000 assets—we’ll show you unparalleled insight.

Sign up for a 30-day trial.

Start Your Free Trial Now

Questions? Ask us →