The public Cobalt API gives you REST access to Cobalt Orgs, Assets, Pentests, Findings, Events, and more. It is currently a read-only API.
- API Documentation
- OpenAPI Specification
- API Usage Guide
- Importing Pentest Analytics to Google Data Studio with the Cobalt API
- Import Your Findings to Google Sheets
- Cobalt Launches Public API to Further Modernize Pentesting
Native integrations can be found and configured in the Cobalt platform. These integrations allow you to push Cobalt data into third-party applications.
Jira: Synchronize Cobalt findings with Jira tickets bi-directionally
GitHub: Create issues in GitHub for Cobalt findings
Slack: Communicate with pentesters during a pentest
Partner integrations can be found and configured in third-party applications. These integrations leverage the Cobalt API to pull in data from Cobalt for various purposes.
Tugboat Logic: Pull Cobalt assets, pentests, and findings as evidence for security audits
Jupiter One: Analyze pentest data using JupiterOne's query and visualization tools
DefectDojo: Get an overview of your findings and risk in DefectDojo.
Kenna Security: Get an overview of your findings and risk in Kenna Security
Request an Integration
If your company has an application that you would like to have integrated with the Cobalt platform, you can submit a request using the “Suggest an Integration” form on the Integrations page. Our team will follow up with any questions, and we’ll keep you posted on our implementation roadmap through our monthly newsletter.