DAST Integrations — Web Application Scanners
Dynamic application security testing produces findings that need context: which application, which environment, how exposed, how exploitable. Centraleyezer imports DAST results from Burp Suite Enterprise, Acunetix, HCL AppScan, Invicti, Detectify, OWASP ZAP and the rest of your web-testing stack — preserving HTTP request/response evidence and mapping every issue to the owning web asset for risk-based prioritisation.
Nessus Professional
Industry-standard vulnerability scanner. Covers network hosts, ports, services, authenticated local checks, web application scanning, and CIS/DISA STIG compliance auditing.
Integration guideQualys VMDR
Qualys Vulnerability Management, Detection and Response — covers network assets, web application DAST, and policy compliance. All POD regions: US, EU, India, Canada, UK, Australia.
Integration guideOutpost 24
Outpost 24 vulnerability assessment findings covering network and web application vulnerabilities. XML import.
Integration guideIntruder
Intruder continuous vulnerability scanner findings covering network exposure and web application issues. CSV import.
Integration guideBurp Suite Enterprise
PortSwigger Burp Suite Enterprise Edition web application DAST. XML and API import with full request/response evidence, OWASP classification, and issue confidence mapping.
Integration guideAcunetix
Acunetix DAST web vulnerability scanner. XML and JSON import covering SQLi, XSS, SSRF, authentication bypass, and 7,000+ web vulnerability checks.
Integration guideDetectify
Detectify continuous DAST and external attack surface management via API. Covers web application vulnerabilities and exposed assets across your domains.
Integration guideHCL AppScan Standard
HCL AppScan Standard desktop DAST scanner — dynamic web application testing results imported via the scanner’s XML report export, with full test HTTP traffic evidence.
Integration guideHCL AppScan on Cloud
HCL AppScan on Cloud (ASoC) — dynamic web application testing and static source code analysis imported over the ASoC API with an API key. XML report import also supported.
Integration guideHCL AppScan 360
HCL AppScan 360 self-managed platform — DAST and SAST results imported over the same AppScan REST API, pointed at your own AppScan 360 deployment.
Integration guideOWASP ZAP
OWASP Zed Attack Proxy open-source DAST findings. XML import covering active and passive scan results with OWASP classification.
Integration guideNetsparker / Invicti
Invicti (formerly Netsparker) web application security scanner findings. XML and JSON import with proof-based scanning results and CVSS mapping.
Integration guideHP WebInspect
OpenText (HP) WebInspect dynamic application security testing findings. XML import covering web vulnerabilities, authentication flaws, and business logic issues.
Integration guideAppSpider (Rapid7)
Rapid7 AppSpider DAST scan results. XML import with full vulnerability detail, attack traffic evidence, and remediation guidance.
Integration guideNikto
Nikto open-source web server scanner findings. XML import covering misconfigurations, dangerous files, outdated software, and server-level vulnerabilities.
Integration guidew3af
w3af open-source web application attack and audit framework findings. XML import with OWASP-classified vulnerabilities.
Integration guideWPScan
WPScan WordPress vulnerability scanner findings. JSON import covering plugin, theme, and core vulnerabilities in WordPress installations.
Integration guideSSL Labs
Qualys SSL Labs API for TLS/SSL configuration assessment. Identifies weak cipher suites, expired certificates, BEAST/POODLE/CRIME exposure, and insecure protocol versions.
Integration guideBarracuda
Barracuda web application scanner findings imported via CSV export with CWE and CVSS mapping.
Integration guide