Import web application vulnerability scan results from Invicti (formerly Netsparker) into the Praetorian Guard platform, consolidating your DAST findings alongside your attack surface data in a single unified view.

Highlights

• Comprehensive Vulnerability Import — Imports present and revived vulnerabilities from Invicti's AppSec platform, including XSS, SQL injection, server misconfiguration, and hundreds of other web application security findings

• 8 Compliance Framework Mappings — Every finding is enriched with CWE, OWASP Top 10 (2017 and 2021), OWASP API Top 10, PCI DSS 4.0, NIST SP 800-53, HIPAA, and DISA STIG classifications — ready for compliance reporting out of the box

• Dual CVSS Scoring — Supports both CVSS 3.1 and CVSS 4.0 scores and vector strings, with Invicti's certainty percentage preserved for confidence-aware triage

• Smart Filtering — Automatically excludes fixed, closed, and accepted-risk findings, and skips issues not seen in the last 30 days so your dashboard reflects current risk, not historical noise

• Asset and Webpage Modeling — Discovered vulnerable domains are imported as Guard assets, with individual vulnerable URLs tracked as Webpage entities for precise remediation targeting

Get Started

To integrate, go to Integrations > Application Security Testing > Invicti, then connect with your API Base URL, User ID, and API Token (found on your Invicti account page). Invicti authenticates via HTTP Basic Auth — the integration validates your credentials before syncing.

Documentation

https://docs.praetorian.com/en/articles/7589520-invicti