SUPPORT

24/5 Hotline Support Service

+44 (0)20 3588 3841

Open a Support Ticket

support@netsparker.com

Integrating Netsparker Standard with Kenna

Kenna is an issue tracking system that calculates which vulnerabilities present the highest risk and de-prioritizes those that don't, then notifies the right people of the top vulnerabilities to achieve the greatest possible risk reduction.

This topic explains how to configure Netsparker Standard to send a detected vulnerability to Kenna.

For further information, see Configuring the User Interface for Custom Send To Actions in Netsparker Standard and Configuring Auto Send To Actions in Netsparker Standard and What Systems Does Netsparker Integrate With?.

Kenna Fields

This table lists and explains the Kenna fields in the Send To Actions tab.

Button/Section/Field

Description

Add

Click to add an integration.

Delete

Click to delete the integration and clear all fields.

Create Sample Issue

Once all relevant fields have been configured, click to create a sample issue.

Action

This section contains general fields about the Send to Action.

Display Name

This is the name of the configuration that will be shown in menus.

Mandatory

This section contains fields that must be completed.

Instance URL

This is the Kenna instance URL.

API URL

This is the Kenna API URL.

API Key

This is the API Access Key for authentication.

Vulnerability

This section contains fields with vulnerability details.

Body Template

This is the template file that is used to create description fields.

Title Format

This is the string format that is used to create the vulnerability title.

Optional

This section contains optional fields.

Due Days

This is the number of days between the date the issue was created to the date it's due.

Custom Fields

These are the custom fields that are defined for the project.

How to Integrate Netsparker Standard with Kenna
  1. Open Netsparker Standard
  2. From the Home tab on the ribbon, click Options. The Options dialog is displayed.
  3. Click Send To Actions.

  1. From the Add dropdown, select Kenna. The Kenna fields are displayed.

  1. In the Mandatory section, complete the connection details:
  • Instance URL
  • API URL
  • API Key
  1. In the Vulnerability section, you can change the default Body Template and Title Format.
Body templates are stored in %userprofile%\Documents\Netsparker\Resources\Send To Templates. If you use your own custom templates, store them in this location.

  1. In the Optional section, you can specify:
  • Due Days
  • Custom Fields
  1. To set the custom field values, in the Custom Fields field, click the ellipsis button.
  2. In the Edit Custom Field Value field, enter the relevant value.

  1. Click OK.
  2. Click Create Sample Issue to confirm that Netsparker Standard can connect to the configured system. The Send To Action Test confirmation dialog is displayed.

  1. In the Send To Action Test dialog, click the Issue number link to open the issue in Kenna in the default browser.

How to Export Reported Vulnerabilities to Projects in Kenna

Please ensure that you have first configured Kenna integration (see How to Integrate Netsparker Standard with Kenna).

  1. Open Netsparker Standard.
  2. From the ribbon, select the File tab. Local Scans are displayed. Doubleclick the relevant scan to display its results.

  1. In the Issues panel, right click the vulnerability you want to export and select Send to Kenna. (Alternatively, from the ribbon, click the Vulnerability tab, then Send To Kenna.) A confirmation message and link is displayed at the bottom of the screen.

  1. Click the Kenna Send To Action is executed for the selected vulnerability. link to view the newly-created issue in Kenna.
  2. The vulnerability is automatically exported to Kenna. You can view it in Kenna's Issues tab.

Netsparker

Dead accurate, fast & easy-to-use Web Application Security Scanner

GET A DEMO