SUPPORT

Contact Support

OPEN A TICKET

Integrating Netsparker Standard with Azure Boards

Microsoft Azure is a cloud computing service that offers Azure Boards that covers the entire application lifecycle and enables DevOps capabilities. Its purpose is to help businesses build, deploy, and manage web applications. Part of this web application management includes the ability to track work, issues, and code.

This topic explains how to configure Netsparker Standard to send a detected vulnerability to Azure Boards (including using the wizard).

For further information, see Configuring the User Interface for Custom Send To Actions in Netsparker Standard and Configuring Auto Send To Actions in Netsparker Standard and What Systems Does Netsparker Integrate With?.

Azure Boards Fields

This table lists and explains the Azure Boards fields in the Send to Actions tab.

Button/Section/Field

Description

Add

Select to add an integration.

Delete

Select to delete the integration and clear all fields.

Configure Send To

Select to configure the integration using the Settings Wizard instead of doing it manually.

Create Sample Issue

Once all relevant fields have been configured, select to create a sample issue.

Action

This section contains general fields about the Send to Action.

Display Name

This is the name of the configuration that will be shown in menus.

Mandatory

This section contains fields that must be completed.

Project URL

This is the Azure Boards project web address.

Username

This is the name of the user. If you are using a personal access token (see below), leave this field blank.

Password or Token

This is the password of the user or the personal access token.

Since March 2, 2020, Azure DevOps supports only Access Token.

Vulnerability

This section contains fields with vulnerability details.

Body Template

This is the template file that is used to create description fields.

Title Format

This is the string format that is used to create the vulnerability title.

Optional

This section contains optional fields.

Domain

This is the domain of the user.

Work Item Type

This is the type of the work item. (Default value: Task)

Assigned To

This is the user to whom the issue is assigned.

Tags

These are the work item tags, separated by a semicolon (;).

Custom Fields

These are the custom fields that are defined for the project.

How to Integrate Netsparker Standard with Azure Boards

  1. Open Netsparker Standard.
  2. From the Home tab on the ribbon, select Options Send To Actions.
  3. From the Add drop-down, select Azure Boards.
  4. In the Mandatory section, complete the connection details:
    • Project URL
    • Username
    • Password or Token
If you use a personal access Token, keep the Username field empty. If you have alternative credentials, fill in the Username and Password fields. 

To learn how to create a Token, see Authenticate access with personal access tokens.

  1. In the Vulnerability section, you can specify the Body Template and Title Format.

Body templates are stored in %userprofile%\Documents\Netsparker\Resources\Send To Templates. If you use your own custom templates, store them in this location.

  1. In the Optional section, you can specify:
    • Domain
    • Work Item Type
    • Assigned To
    • Tags
    • Custom fields

To learn about the Work Item Type field, see Add and manage work item types. To learn about Custom fields, see Add and manage fields for an inherited process.

  1. To set custom field values, in the Custom Fields field, select the ellipsis button.
  2. In the Edit Custom Field Value field, enter the relevant value.
  3. Select Create Sample Issue to confirm that Netsparker Standard can connect to the configured system.
  4. Select Apply or OK to save the integration.

How to Integrate Netsparker Standard with Azure Boards Using the Wizard

Instead of configuring the settings manually, the configuration wizard can help you with the settings.
  1. Select Configure Send To to launch the wizard. 
  2. Select Next. The Authentication step is displayed.
  3. Complete the Project URL and Personal Access Token (or Username and Password), and select Test Credentials.
  4. When the confirmation message, Your credentials are confirmed, is displayed, select Next
  5. Select a project, then Next

  1. Select a work item type, then Next
  2. If required, select an assignee, then Next
  3. If required, enter the tags, then Next

  1. Review your settings and select Finish. The Settings are applied automatically. 

How to Delete the Azure Board Integration

  1. Open Netsparker Standard.
  2. From the Home tab on the ribbon, select Options > Send to Actions.
  3. Select Azure Boards.
  4. Select Delete.

How to Export Reported Vulnerabilities to Projects in Azure Boards

Please ensure that you have first configured Azure Boards integration. See How to Integrate Netsparker Standard with Azure Boards.
  1. Open Netsparker Standard.
  2. From the ribbon, select the File tab. Local Scans are displayed. Double-click the relevant scan to display its results.
  3. In the Issues panel, right-click on the vulnerability you want to export and select Send to Azure Boards. (Alternatively, from the ribbon, select the Vulnerability tab, then Send to Azure Boards.) A confirmation message and link are displayed at the bottom of the screen.
Netsparker

Highly accurate, fast & easy-to-use Web Application Security Scanner

Get a demo