cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 

Dynatrace Application Security Integrations

Ahmed_Khaled
Helper

With the introduction of Application security, I wanted to know if it is possible to have it integrated with other scanning tools that any client would have like Tenable or Nessus for example. if yes how is it done and if it is not possible at the moment is it something that is being developed?

Certified Dynatrace Associate | Vas Integrated Solutions
3 REPLIES 3

michiel_otten
Mentor

Dynatrace AppSec uses the OneAgent to scan potential vulnerable code and components, matching it against the Snyk database. 

Security vulnerabilities are exportable via the API and can be pushed to every tool if you write a simple script and have API access there f.e.

From other tools you can use the dynatrace api to import metrics from there and create problems within Dynatrace. I can't answer the question if Dynatrace will support other tooling but I think this won't be something they'll work on probably.

#Performance matter!

Esam_Eid
Advisor

Hi Michiel,

We have integrated AppSec notifications using webhook with Splunk SIEM. The custom payload fields allows only certain fields but our customer is looking for more fields like

  • CVE (for known vulnerability) or Reference ID (for misconfigurations)
  • CVE Severity
  • CVE ID
  • Host Name
  • IP
  • Pod / Node
  • Container

any suggestion?

Hi there,

The custom webhook will just do some notiication indeed. If you want to integrate further you could try using the API. F.e.:

Vulnerabilities API - GET vulnerabilities - Dynatrace Docs

Using a workflow you can set up your own integration to SIEM where you finetune the notification.

#Performance matter!

Featured Posts