Integration Ecosystem
Connected where it counts.
From code to cloud, identity to ITSM – Balbix sits at the center of your security universe.
Categories
Application Security
Android
Security scanning focuses on Android app packages and operating system vulnerabilities
Black Duck Coverity – SAST
Static application security testing tool that scans source code to find vulnerabilities
Black Duck Polaris – DAST
Dynamic application security testing scans running web applications and APIs
Black Duck Polaris – SAST
Cloud-based static code analysis service integrated into the Polaris Software Integrity Platform
Black Duck Polaris – SCA
Software composition analysis using Black Duck technology to analyze open-source components
Burp Suite – DAST
Dynamic testing and penetration testing of web applications
Burp Suite – Pen Test
Manual and automated web penetration testing to discover security weaknesses
Checkmarx – SAST
Enterprise solution that scans custom code to uncover security vulnerabilities
Checkmarx – SCA
Software composition analysis scans open-source libraries and components
ImmuniWeb – DAST
AI platform that discovers, tests and protects web and mobile applications using ML-driven dynamic scans
Invicti – DAST
Accurate dynamic scans across websites, applications and APIs to detect vulnerabilities
iOS
Security testing analyzes iOS apps and device configurations for vulnerabilities
MobSF – DAST
Dynamic analysis of mobile applications to test running apps for security issues
MobSF – SAST
Mobile Security Framework performs static analysis of Android and iOS applications
NST Cyber – DAST
Dynamic application security testing to evaluate web applications for vulnerabilities
Qualys WAS – DAST
Cloud-based service that automatically crawls and tests custom web applications
Snyk
Developer security platform for vulnerability scanning and remediation
Veracode – DAST
Dynamic analysis scans running web applications to identify vulnerabilities
Veracode – SAST
Cloud-based service that scans source code to identify security flaws
Veracode – SCA
Software composition analysis examines open-source libraries to detect vulnerabilities
Web
Dynamic testing of web applications to discover security vulnerabilities
Breach and Attack Simulation
Cymulate
Breach and attack simulation platform that automates real-world attack scenarios
XM Cyber
Attack Path Management continuously runs attack simulations across hybrid cloud environments
Cloud Platforms - AWS
Amazon CloudFront
Amazon CloudFront is a global content delivery network
Amazon DynamoDB
Amazon DynamoDB is a managed NoSQL database service
Amazon EC2
Amazon Elastic Compute Cloud provides scalable on-demand virtual servers
Amazon EFS
Amazon Elastic File System is a fully managed file storage service
Amazon EKS
Amazon Elastic Kubernetes Service is a managed service for running Kubernetes
Amazon ElastiCache
Amazon ElastiCache is a fully managed in-memory cache service
Amazon OpenSearch
Amazon OpenSearch Service simplifies deployment and management of OpenSearch clusters
Amazon RDS
Amazon RDS is a managed database service that creates resizable database instances
Amazon Route 53
Amazon Route 53 is a highly available and scalable DNS web service
Amazon SNS
Amazon Simple Notification Service automates sending notifications
Amazon SQS
Amazon Simple Queue Service is a fully managed distributed message queuing service
AWS CloudTrail
AWS CloudTrail records user and API activity across AWS
AWS Lambda
AWS Lambda is a serverless computing service
AWS S3
Amazon Simple Storage Service provides scalable object storage
AWS Secrets Manager
AWS Secrets Manager securely stores and manages secrets like passwords
Cloud Platforms - Azure
Azure App Service
Azure App Service is a fully managed platform for building web applications
Azure Blob Storage
Azure Blob Storage is a massively scalable object storage service
Azure Cache for Redis
Azure Cache for Redis is a fully managed in-memory cache
Azure Container Instances
Azure Container Instances run Docker containers directly on Azure infrastructure
Azure Cosmos DB
Azure Cosmos DB is a globally distributed, multi-model NoSQL database service
Azure Database for MySQL
Azure Database for MySQL is a managed relational database service
Azure Database for PostgreSQL
Azure Database for PostgreSQL is a managed PostgreSQL database service
Azure Functions
Azure Functions is a serverless compute service
Azure Key Vault
Azure Key Vault manages and stores secrets, encryption keys and certificates
Azure Kubernetes Service
Azure Kubernetes Service is a managed Kubernetes platform
Azure Service Bus
Azure Service Bus is a fully managed enterprise message broker
Azure SQL
Azure SQL offers fully managed SQL databases as a service
Azure SQL Managed Instances
Azure SQL Managed Instances provide fully managed instance-level SQL Server compatibility
Azure SQL Virtual Machines
Azure SQL Virtual Machines run full SQL Server instances on Azure VMs
Azure Storage Accounts
Azure Storage Accounts provide a namespace for storing Azure data services
Azure Synapse Analytics
Azure Synapse Analytics is an analytics platform combining big data and data warehousing
Azure Virtual Machine Scale Sets
Azure Virtual Machine Scale Sets deploy and manage a set of identical VMs
Azure Virtual Machines
Azure Virtual Machines provide on-demand computing resources in Azure
Cloud Platforms - GCP
Cloud Functions
Google Cloud Functions provides a serverless execution environment
Cloud KMS
Google Cloud KMS manages cryptographic keys used to protect data
Cloud SQL
Google Cloud SQL is a fully managed relational database service
Cloud Storage
Google Cloud Storage provides durable, highly available object storage
Compute Engine
Google Compute Engine offers virtual machine instances in Google Cloud
GCP IAM
Google Cloud IAM provides role-based access control across GCP resources
Google Kubernetes Engine
Google Kubernetes Engine is a managed Kubernetes service
Pub/Sub
Google Cloud Pub/Sub is a messaging service for asynchronous communication
Secret Manager
Google Secret Manager securely stores API keys and other secrets
CMDB
Cherwell CMDB
Configuration Management Database provides full visibility into infrastructure and services
ServiceNow CMDB
Configuration Management Database provides full visibility into infrastructure and services
Configuration Assessment
Qualys Policy Compliance
Audits configurations of IT assets against security benchmarks and regulatory policies
Tenable Policy Compliance
Audits configurations of IT assets against security benchmarks and regulatory policies
CSPM
Aqua Security
Containerized cloud native applications security from development to production
Lacework
Unified code-to-cloud visibility, risk prioritization, and workload protection
Orca Security
Agentless cloud security using SideScanning for comprehensive visibility
Trend Micro Cloud One Workload Security
Maximum protection on workloads with file integrity monitoring and intrusion prevention
Wiz
Unified cloud security platform using agentless approach with contextual analysis
Datacenter
Balbix Datacenter
Ingests asset and vulnerability data from on-premises data center environments
Endpoint Management
Jamf Pro
Automated Apple device management and security for Mac, iPhone and iPad devices
Kandji
Device management platform for Apple devices with automated configuration
Microsoft Intune
Cloud-based unified endpoint management service for corporate and BYOD devices
Tanium Asset
Asset Discovery and Inventory provides complete visibility into devices
Tanium Comply
Configuration compliance assessments and vulnerability scanning on endpoints
Tanium Patch
Automates distribution and installation of operating system and application patches
VMware Workspace One UEM
Unified Endpoint Management manages devices across mobile and desktop platforms
Endpoint Protection
Broadcom Carbon Black
Endpoint detection and response platform that monitors endpoints
Broadcom Symantec Endpoint Security
Antivirus, intrusion prevention and advanced endpoint protection
Cisco AMP
Advanced Malware Protection for Endpoints monitors endpoint activity
CrowdStrike Falcon
Endpoint protection with antivirus, EDR and threat intelligence
CrowdStrike Spotlight
Continuously identifies software vulnerabilities and misconfigurations across endpoints
Microsoft Defender
Built-in antivirus and endpoint detection and response capabilities
Palo Alto Networks Cortex XDR
Extended detection and response platform that correlates endpoint, network and cloud telemetry
SentinelOne
Autonomous endpoint protection with AI-based threat detection
Sophos
Endpoint security with antivirus, EDR and anti-ransomware protection
Trend Micro Apex One Endpoint Security
Comprehensive endpoint security with antivirus, EDR and vulnerability protection
External Attack Surface Management
BitSight
Security leaders rapidly identify exposure and detect threats
Black Kite
Third-party cyber risk ratings and continuous monitoring of vendors
Flexible Connector
Balbix Flexible Connector
Generic ingestion mechanism for importing data from various sources
Forwarder Service
Balbix Forwarder Service
Collects and forwards data from on-premises or cloud sources to Balbix platform
Identity and Access Management
Active Directory
On-premises directory service for Windows domain networks
Azure Entra (Azure AD)
Microsoft’s cloud-based identity and access management service
CyberArk
Privileged access management platform
Okta
Identity and access management platform
PingIdentity
Identity and access management solutions
IoT/OT
Armis
Agentless device security platform for unmanaged devices, IoT, OT and IT assets
Claroty
Cyber-physical systems security platform for OT, IoT, and connected medical devices, unifying visibility, risk management, and threat detection.
Nozomi Networks
Operational technology and IoT security by monitoring network traffic
IT Asset Management
Device42
IT asset management and discovery for data centers and cloud
Flexera
Software asset management and vulnerability insights
Lifecycle and End-of-Life Information
EOL Lifecycle
End-of-life dates aggregated from vendor advisories, MITRE, NVD, and endoflife.date
Microsoft Lifecycle
Microsoft Product Lifecycle information (contributes to overall EOL data)
Open Source and Application Advisories
Apache Httpd
Apache HTTP Server vulnerability advisories
Apache Tomcat
Apache Tomcat security vulnerabilities
Jenkins
Jenkins Security Advisories
Mariadb
MariaDB Security Vulnerabilities database
Mongodb
MongoDB Security Vulnerabilities and advisories
Mozilla
Mozilla Security Advisories for Firefox and products
OpenSSL
OpenSSL Security Advisories
PHP
PHP Security Advisories and vulnerability reports
Pivotal
Pivotal Security Advisories (now part of VMware Tanzu)
Postgre SQL
PostgreSQL Security Information
Videolan
VideoLAN Security Advisories for VLC Media Player
Wireshark
Wireshark Security Advisories
Operating System and Distribution Advisories
Amazon Linux
Amazon Linux Security Advisories
Centos
CentOS Security Advisories and errata
Debian
Debian Security Advisory (DSA) database
Oracle Linux
Oracle Linux Security Advisories
Redhat
Red Hat Security Advisories (RHSA)
Suse
SUSE Security Updates and advisories
Ubuntu
Ubuntu Security Notices (USN)
Owner Management
Balbix Owner Hierarchy
Imports hierarchical ownership metadata to map assets to business owners
SASE
Cisco Umbrella
Cloud-delivered security platform that blocks malicious internet requests at DNS layer
Security Awareness Training
Cofense
Phishing defense and security awareness training
KnowBe4
Security awareness training and phishing simulation
PhishingBox
Phishing simulation and security awareness training platform
Proofpoint
Email security and security awareness training
Server Virtualization
VMware vCenter
Centralizes management of VMware vSphere environments
SFTP
Balbix SFTP Server
Enables ingestion of files such as vulnerability reports through secure file transfer
Subnet
Balbix Subnet
Discovery and grouping of assets based on network subnets
IPAM
Discovery and grouping of assets based on network subnets
Threat Intelligence and Exploit Databases
Attck
MITRE ATT&CK Framework for adversary tactics and techniques
Exploitdb
Offensive Security Exploit Database
GHSA
GitHub Security Advisory Database
Gitlab
GitLab Security Advisories and vulnerability database
RF
Recorded Future threat intelligence platform
Vuldb
VulDB vulnerability database
Vulncheck
VulnCheck exploit and vulnerability intelligence
Ticketing
JIRA Ticketing
Creates and updates Jira issues for vulnerability remediation workflows
ServiceNow ITSM
Creates incidents and change requests from Balbix findings
Vendor Security Advisories
Adobe
Adobe Security Bulletins and vulnerability advisories
Apple
Apple Security Updates and vulnerability disclosures
Atlassian
Atlassian Security Advisories for their product suite
Autodesk
Autodesk Security Advisories and product vulnerabilities
Cisco
Cisco Security Advisories and vulnerability disclosures
Dell
Dell Security Advisories and firmware vulnerabilities
F5
F5 Networks Security Advisories
Fortinet
Fortinet Security Advisories and FortiGuard Labs intelligence
Google Security Bulletins and Chrome vulnerabilities
Juniper
Juniper Networks Security Advisories
Mcafee
McAfee Security Bulletins and vulnerability advisories
Microsoft
Microsoft Security Response Center (MSRC) advisories
Netapp
NetApp Security Advisories and vulnerability disclosures
Oracle
Oracle Critical Patch Updates and security alerts
Palo Alto Networks
Palo Alto Networks Security Advisories
SAP
SAP Security Notes and vulnerability advisories
Splunk
Splunk Security Advisories and vulnerability disclosures
Symantec
Symantec/Broadcom Security Response advisories
Vmware
VMware Security Advisories and vulnerability disclosures
Zoom
Zoom Security Advisories and vulnerability bulletins
Vulnerability Assessment
AWS Inspector
Automated security assessment service that scans AWS workloads
Qualys Asset Management
Discovers and inventories IT assets and monitors changes
Qualys VMDR
Integrated solution that discovers assets, detects vulnerabilities, assigns risk scores
Rapid7 InsightVM
Uses lightweight agent to collect endpoint data continuously
Rapid7 Nexpose
Automated vulnerability scanner that discovers open ports and applications
Tenable Security Center
Centralized vulnerability assessment and compliance management
Tenable Vulnerability Management
Cloud-based platform that discovers and assesses assets
Vulnerability Databases and Standards
CIS
Center for Internet Security benchmarks and advisories
CISA
CISA Known Exploited Vulnerabilities Catalog
CVE.ORG
MITRE Common Vulnerabilities and Exposures database
NVD
NIST National Vulnerability Database
Vulnerability Prioritization
Cisco Vulnerability Management
Aggregates vulnerability data from scanners and prioritizes remediation
from integration to impact
All data. One source of truth.
Every connector feeds the Balbix AI brain—turning noisy telemetry into prioritized action.