Pentera
Integrate Pentera security test results and vulnerabilities
The Pentera connector allows you to integrate your automated security test results and exploitable vulnerabilities into OverSOC.
Overview
The Pentera connector enables you to collect the following information:
- Security test results
- Exploitable vulnerabilities
- Remediation recommendations
Prerequisites
- Access to a Pentera instance
- User account with API permissions
- Pentera server URL accessible
Information to provide in OverSOC
| Field | Description |
|---|---|
| Server URL | URL of your Pentera server (e.g., https://pentera.example.com) |
| API Port | API port (typically 443 for HTTPS) |
| Client ID | Client ID for API authentication |
| TGT Token | Ticket Granting Token for authentication |
Procedure
Create an API Client in Pentera
- Log in to your Pentera instance.
- Navigate to Administration > Integrations > API Clients.
- Click Create New Client.
- Name the client (e.g., "OverSOC Connector").
- Click Issue TGT to generate a Ticket Granting Token.
- Note the Client ID and TGT Token (the token is displayed only once).
Configure the Connector in OverSOC
- In OverSOC, go to Data Sources Settings > Sources.
- Select Pentera and click Configure.
- Fill in the required fields:
- Server URL (e.g., https://pentera.example.com)
- API Port (typically 443)
- Client ID
- TGT Token
- Click Save Configuration.
Security Best Practices
- Use a dedicated API client for the OverSOC integration
- Store the TGT token securely — it is shown only once during creation
- Rotate the TGT token periodically
Official Documentation
For more information, see the Pentera Platform. The API documentation is available from within the Pentera console or through your Pentera support contact.