Skip to main content
Wiz

Overview

Wiz is a cloud-native application protection platform (CNAPP) that provides agentless scanning across cloud environments. The Pwnbook integration pulls Wiz issues and vulnerabilities so cloud security findings live alongside your other security data.

Prerequisites

  • A Wiz account with API access
  • A Wiz service account client ID and secret (with read:issues and read:vulnerabilities scopes)
  • Admin or Owner access in Pwnbook

Setup

1

Create a Wiz service account

  1. In the Wiz portal, go to Settings → Service Accounts.
  2. Click Add Service Account.
  3. Assign the read:issues and read:vulnerabilities permissions.
  4. Copy the Client ID and Client Secret.
2

Configure in Pwnbook

  1. Go to Organization Settings → Marketplace → Wiz.
  2. Enter your Client ID, Client Secret, and API endpoint URL (shown in your Wiz tenant settings).
  3. Click Save & Test.

What gets synced

DataDescription
IssuesMisconfiguration and toxic combination findings with severity and affected resource
VulnerabilitiesCVEs found in cloud workloads and container images
Cloud resourcesResource context attached to each finding
SeverityCritical, High, Medium, Low, Informational