Overview
Wiz is a cloud-native application protection platform (CNAPP) that provides agentless scanning across cloud environments. The Pwnbook integration pulls Wiz issues and vulnerabilities so cloud security findings live alongside your other security data.Prerequisites
- A Wiz account with API access
- A Wiz service account client ID and secret (with
read:issuesandread:vulnerabilitiesscopes) - Admin or Owner access in Pwnbook
Setup
Create a Wiz service account
- In the Wiz portal, go to Settings → Service Accounts.
- Click Add Service Account.
- Assign the read:issues and read:vulnerabilities permissions.
- Copy the Client ID and Client Secret.
What gets synced
| Data | Description |
|---|---|
| Issues | Misconfiguration and toxic combination findings with severity and affected resource |
| Vulnerabilities | CVEs found in cloud workloads and container images |
| Cloud resources | Resource context attached to each finding |
| Severity | Critical, High, Medium, Low, Informational |