Skip to main content

Integrating Invicti Standard with Zapier

This document is for:
Invicti Standard

Zapier is a web-based service that allows end users to integrate the web applications they use and automate their workflows. Zapier applications can help you capture, track, manage and fix bugs and other issues that arise when building or managing a web project.

This topic explains how to configure Invicti Standard to send a detected vulnerability to Zapier, enabling automated workflow integration with hundreds of supported applications and services for streamlined vulnerability management.

Related Information

For further information, see Configuring the User Interface for Custom Send To Actions in Invicti Standard and Configuring Auto Send To Actions in Invicti Standard and What Systems Does Invicti Integrate With?.

Zapier Fields

The following table lists and explains the Zapier fields available in the Send to Actions configuration:

Button/Section/FieldDescription
AddClick to add an integration.
DeleteClick to delete the integration and clear all fields.
Create Sample IssueOnce all relevant fields have been configured, click to create a sample issue.
Display NameThis is the name of the configuration that will be shown in menus.
MandatoryThis section contains fields that must be completed.
Webhook URLThis is the WebHook URL to which issues are sent (see How to Configure a Webhook in Zapier).
VulnerabilityThis section contains fields with vulnerability details.
Body TemplateThis is the template file that is used to create description fields.
Title FormatThis is the string format that is used to create the vulnerability title.

How to Integrate Invicti Standard with Zapier

Follow these steps to configure Zapier integration for automated vulnerability workflows:

  1. Open Invicti Standard
  2. From the Home tab on the ribbon, click Options. The Options dialog is displayed
  3. Click Send To Actions
Invicti Standard Options dialog showing Send To Actions menu selection for Zapier integration
  1. From the Add dropdown, select Zapier. The Zapier fields are displayed
Add dropdown menu showing Zapier option selection for integration setup

  1. In the Mandatory section, complete the connection details:

    • WebHook URL

  2. In the Vulnerability section, you can change the Body Template and Title Format

Template Location

Body templates are stored in %userprofile%\Documents\Invicti\Resources\Send To Templates. If you use your own custom templates, store them in this location.

  1. Click Create Sample Issue to confirm that Invicti Standard can connect to the configured system. The Send To Action Test dialog is displayed
Create Sample Issue button and test dialog for Zapier connection verification
Webhook Behavior

Zapier does not return any URL for the issue. Webhook is used as a trigger to send the issue data to other applications. For more information see Zapier Webhooks Help.

How to Configure a Webhook in Zapier

Before integrating with Invicti Standard, you need to set up a webhook in Zapier:

  1. Login to Zapier
  2. Click Make a Zap!. Then search for WebHook as illustrated
Zapier interface showing Make a Zap button and webhook search functionality
  1. From the results, click WebHooks
Zapier search results showing WebHooks option selection
  1. From the radio buttons, select Catch Hook. Catch Hooks waits for the requests
  2. Zapier generates a WebHook URL. Copy this URL to use later in Invicti
Zapier Catch Hook configuration showing generated webhook URL for copying
  1. Back in Invicti Standard, paste this URL into the WebHook URL field (see How to Integrate Invicti Standard with Zapier)
  2. Click Create Sample Issue to send a sample request to Zapier. After this request, the body and title fields will be shown as illustrated
Zapier interface showing received sample data with body and title fields after test
  1. In Zapier, click Continue to complete the trigger
Zapier interface showing received sample data with body and title fields after test
  1. Then, create an Action, as with any Zapier Application like sending email (see the Zapier Platform Action Quickstart)
Action Configuration

After setting up the trigger, you can configure actions to automatically send vulnerability data to various applications such as Slack, email, project management tools, or custom webhooks for comprehensive workflow automation.

How to Export Reported Vulnerabilities to Projects in Zapier

After configuring the Zapier integration, follow these steps to export specific vulnerabilities:

  1. Open Invicti Standard
  2. From the ribbon, select the File tab. Local Scans are displayed. Double-click the relevant scan to display its results
  3. In the Issues panel, right click the vulnerability you want to export to Zapier and select Send to Zapier. (Alternatively, from the ribbon, click the Vulnerability tab, then Send to Zapier.) A confirmation message and link is displayed at the bottom of the screen.
Send to Zapier
  1. Click the Zapier Send to Action is executed for the selected vulnerability link to view the newly-created issue in Zapier
  2. The vulnerability is automatically exported to Zapier. You can view it in Zapier

Need help?

Invicti Support team is ready to provide you with technical help. Go to Help Center

Was this page useful?