SUPPORT

24/5 Hotline Support Service

+44 (0)20 3588 3841

Open a Support Ticket

support@netsparker.com

Integrating Netsparker Enterprise with Kafka

Apache Kafka is a distributed streaming platform. Kafka provides a unified, high-throughput, low-latency platform for handling real-time data feeds.

This topic explains how to configure Netsparker Enterprise to send a detected vulnerability to your Kafka cluster.

For further information, see Configuring the User Interface for Custom Send To Actions in Netsparker Enterprise and Configuring Auto Send To Actions in Netsparker Enterprise and What Systems Does Netsparker Integrate With?.

Kafka Fields

This table lists and explains the Kafka Fields in the New Kafka Integration window.

Button/Section/Field

Description

Name

This is the name of the configuration that will be shown elsewhere.

Mandatory

This section contains fields that must be completed.

Topic

This is the topic of the message.

Data Serialization

  • Select the JSON Serialized type to produce the message as a complex JSON object.
  • Select the JSON Serialized (Flattened) type to produce the message as a flattened JSON object.
  • Select the Avro Serialized type if you want the message to be produced as a defined binary format. If this is enabled, then you must specify the Schema Registry Url.

Scheme Registry Url

This is the url for schema registry of Avro serialization.

Custom Fields

This section contains user-defined custom fields.

New Custom Field

Click to create a new custom field.

Name

Enter a name for the value containing the new custom field identifier.

Value

Enter a value for the new custom field identifier.

Dropdown

Click the dropdown to change the input type. The options are:

  • Text
  • Password
  • Textarea
  • File upload

Create Sample Issue

Once all relevant fields have been configured, click to create a sample issue.

How to Integrate Netsparker Enterprise with Kafka

  1. Log in to Netsparker Enterprise.
  2. From the main menu, click Integrations, then New Integration.

  1. From the Issue Tracking Systems section, click Kafka. The New Kafka Integration window is displayed.

  1. In the Name field, enter a name for the integration.
  2. In the Mandatory section, complete the connection details:
    • Topic
  3. In the Data Serialization field, do one of the following:
    • Select JSON Serialized
    • Select JSON Serialized (Flattened)
    • Select Avro Serialized
  4. The Kafka Producer API has detailed configuration options. You can add them using Custom Fields. (If you want to specify path based producer configuration, upload the relevant file. Use the dropdown to switch the file type to File upload.)
    • Bootstrap.servers
    • Security.protocol
    • Ssl.keystore.password
    • Ssl.keystore.location

  1. Click Create Sample Issue to confirm that Netsparker Enterprise can connect to the configured system and create a sample issue. A confirmation message is displayed to confirm that the sample issue has been successfully created.

Here is a sample JSON Serialized message that was produced by Netsparker Enterprise.

  1. Click Save.

How to Export Reported Vulnerabilities to Projects in Kafka

There are several ways to send issues to Kafka with Netsparker Enterprise:

  • Once notifications have been configured, you can configure Netsparker Enterprise to automatically send vulnerabilities after scanning has been completed (see How to Configure a Notification to Report Vulnerabilities to an Issue Tracking System).
  • You can send one or more issues from the Issues window:
    • You must have Manage Issue permission.
    • From the main menu, select Issues. The Issues window is displayed.
    • Select one or more issues you want to send.
    • Click Send To, then Kafka.

    • A popup is displayed, with a link to the issue you have sent to Kafka. If there is an error, this information will be displayed instead.

  • You can send an issue from the Recent Scans window:
    • From the main menu, click Scans then Recent Scans.

    • Next to the relevant scan, click Report. The report is displayed.
    • Scroll down to the Technical Report section.
    • From the list of detected vulnerabilities, click to select an issue and display its details.

    • Click Send To, then Kafka.
Netsparker

Dead accurate, fast & easy-to-use Web Application Security Scanner

GET A DEMO