Cobalt
Last updated
Last updated
© 2024 PlexTrac, Inc. All rights reserved.
Cobalt is an integrated pentesting platform facilitating communication between development and security teams. Cobalt helps developers identify and mitigate security vulnerabilities in their code by specifying security policies and checking compliance. The tool can detect many vulnerabilities, including buffer overflows, integer overflows, and format string vulnerabilities.
Cobalt findings can be imported into a PlexTrac report.
This is a licensed feature.
Below are the field mappings from Cobalt to PlexTrac, broken up by findings and assets.
Tables include the following columns:
Cobalt Field: the field name that appears in Cobalt
PlexTrac Field: the field name that appears in PlexTrac
Direction: displays the direction in the flow of data occurring for the integration (a value of "x" means that the value is not imported)
Required: denotes if a value is required for the import to be successful
Notes: additional information
If a duplicate finding title is found during import, the finding title in PlexTrac is appended with the finding unique identifier value pulled from Cobalt in parenthesis at the end of the finding title.
Step 1: From the Admin Dashboard, click Integrations under "Tools & Integrations."
Step 2: Click Connect within the Cobalt box.
If the integration is not licensed and thus unavailable, the message "License required" will appear.
Step 3: If existing connections exist, they are listed on this page. To set up a new integration, click the New connection button.
Step 4: A modal appears with four tabs. Enter a name for the integration, the Cobalt URL, and the Cobalt API key. Click Continue.
Step 5: Select the Cobalt organization value from the pulldown menu. Click Continue.
Step 6: A list of the field mappings from Cobalt to PlexTrac is displayed. Click Save.
None of these fields can be edited and are displayed for visibility.
Step 7: A log of integration attempts is listed. Since an attempt to synchronize is attempted after entering configuration information on the first tab, at least one entry will be listed. Click Close.
Cobalt integrations can be edited by clicking Edit under the "Actions" column.
Cobalt integrations can be disabled by clicking the toggle bar under the "Enabled" column.
Cobalt integrations can be manually synchronized by clicking Sync under the "Actions" column.
Cobalt integrations can be deleted by clicking the three dots under the "Actions" column and then clicking Delete. A modal will appear, asking for confirmation of the action.
Cobalt Field | Direction | PlexTrac Field | Required? | Notes |
---|
Cobalt Field | Direction | PlexTrac Field | Required? | Notes |
---|
The Cobalt Organization value is found within Cobalt. Visit on how to generate an API key.
Finding Title | --> | Finding Title | yes |
Finding Suggested Fix | --> | Recommendations | yes |
Finding Descriptions, Type Category | --> | Finding Description | yes |
Finding State | --> | Finding Status | yes |
Status | Has multiple values, listed below in italics. |
Triaging | --> | Finding="OPEN" | no |
Pending Fix | --> | Finding="OPEN" | no |
Ready for Retest | --> | Finding="OPEN" | no |
Resolved | --> | Finding="OPEN" | no |
Vulnerability Remediation | --> | Finding Recommendations | yes |
Log [Created] | --> | Created At | yes |
Finding Severity | --> | Finding Severity | yes |
Severity | Has multiple values, listed below in italics. |
Informational | --> | Informational | no |
Low | --> | Low | no |
Medium | --> | Medium | no |
High | --> | High | no |
Critical | --> | Critical | no |
Pentest Name | --> | Finding Custom Field "Cobalt Pentest Report Name" | yes |
Cobalt Proof of Concept | --> | Finding Custom Field "Cobalt Proof of Concept" | no | Any images or html in this field will be imported (images as Base64). |
Finding Affected Targets | --> | Affected Assets | yes | IP or Hostname |