Login
    Contents x
    Wiz
    • 10 Sep 2024
    • 1 Minute to read
    • Contributors
    • Print
    • Dark
      Light
    Contents

    Wiz

    • Updated on 10 Sep 2024
    • 1 Minute to read
    • Contributors
    • Print
    • Dark
      Light
    Article summary

    Wiz is a unified cloud security that enables prevention, active detection and response. Wiz is used by security and development teams that includes to reduce risk, gain unmatched visibility, prioritization risk and enable business agility.

    Integration Capabilities

    DataBee connects to Wiz APIs for the purpose of retrieving the security information. Wiz uses the Graph API, which means the API endpoint will be same for all the events. The GraphQL query and variables will vary.

    Integration Method: API

    Tables: Vulnerability Finding, Detection Finding, Data Security Finding, Device Inventory, Scan Activity

    This integration has been tested against Wiz GraphQL API v1.0.

    Wiz Configuration

    1. Login to wiz platform.

    1. Navigate to Settings > Access Management > Service Accounts.

    1. Click Add Service Account.

    1. Enter the Name and Description for the service account.

    2. Select the Type as a Custom Integration (GraphQL API)

    3. Under API     Scopes, the following permissions need to be granted to fetch all the     events.  DataBee requires read permissions

    Event Type

    Permission

    Vulnerability Findings

    read:vulnerabilities

    CloudConfiguration Finding

    read:cloud_configuration

    Network Explore

    read:network_exposure

    Issues

    read:issues

    System Activity Log

    read:system_activities

    Host Configuration Finding

    read:host_configuration

    External Attack Surface

    read:endpoint_attack_surfaces

    Data Finding

    read:data_findings


    1. Click on Save.

    2. Copy your secret credentials as they will only be shown once.

    Wiz API URL

    To get the API tenant, go to Tenant Info

    Copy the API URL info. This will be used when configuring DataBee datasource.

    DataBee Configuration

    1. Log into the DataBee console, navigate to Dataand click on Add New Data Source.

    1. Search for Wiz

    2. Select API Ingest

    3. While configuring data source in Databee UI,select the Token Url Auth option from the Authorization Methoddropdown.

      Use the following URLs

      Authorization URL: https://auth.app.wiz.io/oauth/token

      API: https://api.<wiz_datacenter_id>.app.wiz.io/graphql Replace <wiz_datacenter_id> with your own domain instance. Steps to retrieve this was in the previous step.

    1. Provide the saved Client Key and ClientSecret in the Key Id and Secret Key text boxes respectively.Leave the others blank.

    Was this article helpful?
    What's Next
    Change password!
    Changing your password will log you out immediately. Use the new password to log back in.
    Change profile
    Success!
    First name must have atleast 2 characters. Numbers and special characters are not allowed.
    Last name must have atleast 1 characters. Numbers and special characters are not allowed.
    Enter a valid email
    Enter a valid password
    Your profile has been successfully updated.
    Logout
    ESC

    Eddy AI, facilitating knowledge discovery through conversational intelligence