Compliance & Configuration Audit Integrations
Compliance evidence usually means re-running scans before every audit. Centraleyezer continuously ingests compliance-relevant results — Nessus CIS/DISA audit scans, Wazuh SCA policy checks, Nipper device benchmarks, Lynis hardening audits and Prowler cloud compliance checks — so control failures are tracked findings with owners and SLAs, and the audit trail builds itself.
Nessus Professional
Industry-standard vulnerability scanner. Covers network hosts, ports, services, authenticated local checks, web application scanning, and CIS/DISA STIG compliance auditing.
Integration guideTenable.io SC (Security Center)
Tenable Security Center with distributed sensor architecture for continuous network vulnerability and compliance assessment at enterprise scale.
Integration guideQualys VMDR
Qualys Vulnerability Management, Detection and Response — covers network assets, web application DAST, and policy compliance. All POD regions: US, EU, India, Canada, UK, Australia.
Integration guideOpenVAS / Greenbone
Open-source network vulnerability scanner (OpenVAS / Greenbone Community Edition). CSV export import covering hosts, services, and authenticated OS checks with CVE correlation.
Integration guideGFI Languard
GFI Languard network security scanner findings — covers patch status, missing hotfixes, and network vulnerability alerts. XML import.
Integration guideNipper
Nipper network device security audit results for routers, switches, and firewalls. XML and CSV import with CIS/DISA benchmark mapping.
Integration guideProwler
Prowler cloud security posture findings for AWS, Azure, GCP, and Kubernetes — imported live from the Prowler App API or via Prowler CLI OCSF output files.
Integration guideWazuh
Wazuh agent-based security monitoring deployed on endpoints and servers. Feeds vulnerability data, security events, and SCA compliance check results into Centraleyezer.
Integration guideLynis
Lynis host security audit findings covering system hardening, configuration weaknesses, and compliance checks across Linux and Unix systems.
Integration guideAppDetectivePro
Application Security AppDetectivePro database vulnerability scanner. CSV import covering Oracle, SQL Server, MySQL, PostgreSQL, and DB2 misconfigurations and patch levels.
Integration guideImperva Scuba
Imperva Scuba free database vulnerability scanner. File-based import covering database configuration weaknesses, patch levels, and CIS benchmark compliance across Oracle, SQL Server, MySQL, PostgreSQL, and DB2.
Integration guideIBM Guardium
IBM Guardium database vulnerability assessment and activity monitoring findings. Covers misconfigurations, patch levels, privilege abuse, and compliance policy violations.
Qualys Database Security
Qualys database vulnerability and compliance module covering major RDBMS platforms and CIS/DISA benchmark checks.
OpenSCAP / SCAP Workbench
OpenSCAP findings against DISA STIG, CIS Benchmarks, and PCI-DSS profiles. XCCDF/ARF result import for OS hardening compliance tracking.
CIS-CAT Pro
CIS-CAT Pro benchmark assessment results — maps configuration compliance findings to CIS Controls v8 and specific OS/application benchmark profiles.