Overview
Synack is a security testing platform that provides actionable results via crowdsourcing. With the Nucleus / Synack integration, the gap between vulnerability management and crowd-sourced security testing is bridged. You can inject Synack-sourced security testing data into the vulnerability management process, which enhances your security visibility.
Establish connection
Before you begin
Synack will verify that API calls with your API key come from the IP address you specify when creating the key. You may either:
- Contact Nucleus support to obtain the static IP for your Nucleus instance.
- Contact Synack to request that they disable IP verification for your API key.
- From within a Nucleus project, navigate to Integration Hub > Connector Setup.
- Navigate to the Scanners section and click the Synack icon.
- In the Create Synack Connector popup, enter in the following:
| Field | Description |
|---|---|
| Name | Name to identify the connector in Nucleus |
| Description | Optional description to add some details about the connector for other users |
| Synack API Key | The API Key you create in your Synack account |
- Click Verify Credentials and wait for the success message.
- Click Save & Finish and wait for the success message.
Import data
- Go to Integration Hub > Import via Connector.
- Select the Synack connector you just created.
- Select from the options to import by Assessment, Vulnerability Tag, or Vulnerability Status
- Click Next and select what you would like to import.
- Click Next and select how often you want to import, either one-time or auto-imported on a schedule.
- Click Save & Finish.
- Once your scan has finished importing, visit the Data Ingest > Import History page to view the results.
If you have any questions, please contact us through the support center.