Product
Resources
Company
Product
Resources
Company
Product
Resources
Company
Integrations Library
Connect Zynap to the tools you already use.
Automate access decisions, policy enforcement, and traffic controls by integrating Cloudflare Zero Trust directly into your workflows.
Use Google Sheets in NINA to read, write, and update spreadsheets, automate reporting, and process data across your workflows.
Pull threat intelligence from OpenCTI to enrich workflows with context, indicators, and structured security data.
Manage policies, compliance data, directory objects, and system insights by bringing JumpCloud actions into your NINA automations.
Automate identity tasks with Entra ID, including lifecycle events, group updates, and governance workflows.
Use Microsoft Graph Security to track and manage alerts, incidents, indicators, and response actions across Microsoft 365.
Create, update, and manage issues, comments, attachments, and user records by linking Jira directly into your workflows.
Submit URLs, retrieve analysis results, screenshots, and scan histories automatically through urlscan.io.
Check IP reputation, submit abuse reports, perform CIDR lookups, and retrieve blacklist data using AbuseIPDB.
Submit files, retrieve sandbox results, and access automated malware analysis reports with ANY.RUN as part of your workflows.
Use the API node to call external APIs, exchange data, and integrate third-party systems seamlessly.
Read, write, and manage S3 buckets and objects within your automated workflows.
Trigger XSOAR playbooks, incidents, and enrichment steps to orchestrate end-to-end investigation and response workflows.
Upload, download, search, and manage files and folders in Dropbox from inside your workflows.
Connect to the full CrowdStrike Falcon platform to automate threat detection and response, endpoint protection, vulnerability management, identity security, cloud and container security, compliance monitoring, malware analysis, and platform operations.
Query, insert, update, delete, and aggregate MongoDB documents programmatically in your workflows.
Use MISP to manage events, attributes, tags, and collaborative threat intelligence sharing within NINA.
Upload, download, list, delete, and rename files using FTP and SFTP within your workflows.
Send, receive, and organize emails, threads, labels, and drafts by integrating Gmail actions into your automations.
Create, update, and manage events or check availability automatically with Google Calendar.
Create, update, share, and organize files, folders, and shared drives through Google Drive.
Translate text, detect languages, and process multilingual content automatically using Google Translate.
Send messages, manage channels, look up users, run searches, and automate communication tasks using Slack.
Automate email, calendar, and contact workflows through Outlook using the Microsoft Graph API.
Send messages, manage chats, transfer files, and handle callbacks through Telegram.
Send HTTP requests with custom headers and payloads to integrate any external service using the Webhook node.
Search repositories, manage issues and pull requests, update files, and access user data by connecting GitHub directly into your workflows.
Search projects, manage issues and merge requests, update repository files, and work with user data by connecting GitLab directly into your workflows.
Pull threat intelligence from Feedly to bring in articles, CVE data, TTPs, threat actors, and indicators of compromise directly into your workflows.
Search Intelligence X to pull OSINT and threat intelligence into your workflows, including leaked credentials, exposed data, domain information, and other searchable data sources.
Connect to SharePoint Online to manage sites, search and retrieve files, handle documents and metadata, and run bulk operations directly within your workflows.
Use Microsoft Teams in NINA to manage teams, channels, messages, users, and files, and to automate communication and collaboration workflows across your organization
Use Recorded Future in NINA to enrich IOCs, search threat actors, pull MITRE ATT&CK TTPs, and access targeting insights directly within your security workflows.
Manage boards, lists, cards, checklists, labels, and attachments in Trello, and run searches across your workspace directly within your workflows.
Analyze files, URLs, domains, and IP addresses with VirusTotal to detect malware and security threats using aggregated intelligence from multiple security engines.
Search for leaked credentials, retrieve exposure data and statistics, visualize credential relationships, and track validation results directly within your security workflows.
Search for exposed credit card data, retrieve breach datasets, and analyze leaked financial information directly within your security workflows.
Search and retrieve CVE and CPE data to track vulnerabilities, assess impact, and enrich vulnerability management and security workflows.
Retrieve assets, IPs, domains, services, certificates, endpoints, CVEs, and findings to monitor and manage your external attack surface within security workflows.
Search forum threads and posts to monitor threat actor discussions, gather underground intelligence, and enrich threat intelligence and research workflows.
Analyze malware samples and hashes using Zynap Sandbox to scan threats, retrieve analysis results, and enrich security workflows with internal malware intelligence.
Generate Python scripts automatically from natural language prompts to process, analyze, and transform data across your workflows.
Connect workflows to leading AI providers - OpenAI, Anthropic, Google Gemini, and Microsoft Copilot - to enable text generation, conversation, and analysis.
Access curated cybersecurity news feeds with threat intelligence filtering, IOC extraction, and AI-generated summaries directly within your security workflows.
Automatically convert raw data outputs into integration-ready formats by intelligently mapping fields to target service schemas within your workflows.
Search alerts, manage investigation cases, assess asset risk, and run advanced threat queries across Exabeam's Security Operations Platform.
Block IPs and domains, manage firewall policies, isolate compromised devices, and automate network security operations with FortiGate.
Extract text from images using Google Cloud Vision OCR, supporting base64 content, Cloud Storage URIs, and public URLs within your workflows.
Manage security alerts, incidents, threat indicators, and automated security responses across Microsoft 365 environments within your workflows.
Create, update, and manage URL lists for blocking malicious domains, IPs, and URLs in your Netskope security policies directly within your workflows.
Search and retrieve threat actor profiles filtered by aliases, IOCs, MITRE ATT&CK techniques, malware, CVEs, and targeted sectors within your workflows.
Connect Apify to your NINA workflows to start and manage web scraping actors and tasks, monitor run status and wait for completion, read and write structured data to datasets and key-value stores, and create or update cron-based schedules for automated data collection and ETL pipelines.
Run AttackIQ FireDrill breach and attack simulations directly from your NINA workflows to schedule and execute assessments, browse MITRE ATT&CK-mapped attack scenarios, track test results and validation outcomes per asset, manage asset groups, and continuously measure security control effectiveness across your environment.
Integrate Burp Suite Enterprise into your NINA workflows to manage DAST scan sites, schedule and monitor scans, retrieve vulnerability findings with full HTTP request and response evidence, filter issues by severity and confidence, and generate detailed HTML or XML compliance reports for stakeholder distribution.
Use Cyberint in your NINA workflows to manage and triage external attack surface alerts, bulk-update alert statuses with closure reasons, download analyst reports and attachments, look up IOCs against threat intelligence, ingest daily indicator feeds, and extract deduplicated asset exposure lists from your alert data.
Pull Cybersixgill Darkfeed intelligence into your NINA workflows to ingest IOC bundles, enrich IPs, domains, URLs, file hashes, and threat actors with dark web context, manage actionable alerts, query the DVE exploit feed for actively exploited vulnerabilities, and scope all operations per organisation for MSSP multi-tenant deployments.
Bring Microsoft Defender for Endpoint into your NINA workflows to manage alerts, query device inventory and vulnerabilities, trigger response actions including network isolation, antivirus scans, and file quarantine, create custom threat intelligence indicators, and track TVM security recommendations and remediation tasks across Windows, macOS, Linux, Android, and iOS endpoints.
Use Microsoft OneDrive for Business in your NINA workflows to upload, download, list, search, and delete files across personal and shared drives, handle large files up to 250MB with resumable uploads, filter results with OData expressions, and automate document archival, compliance scanning, and cross-drive synchronisation.
Connect PAN-OS firewalls and Panorama to your NINA workflows to create and manage address objects, custom URL categories, and security policies, then commit configuration changes to block IOCs, isolate devices, and automate threat response across your firewall infrastructure.
Automate Prisma Access configuration across your NINA workflows to manage security and decryption rules, policy objects, security profiles, identity and certificate settings, network connections, GlobalProtect mobile agent configuration, and push candidate configuration changes to your cloud-delivered SASE environment across single or multi-tenant folder structures.
Connect Qualys VMDR to your NINA workflows to launch and schedule vulnerability scans, query host detections and knowledge base entries, manage asset groups and scan option profiles, assess policy compliance posture, track remediation tickets, and generate reports across VMDR, PC, PCI, SCAP, and Patch modules.
Send emails through any SMTP-compatible mail server from your NINA workflows, including Office 365, Gmail, AWS SES, and self-hosted servers, with support for plain text and HTML content, file attachments, inline images via CID references, To/CC/BCC control, and TLS encryption for incident alerts, automated reports, and stakeholder notifications.
Pull Shodan's internet-wide intelligence into your NINA workflows to discover exposed assets, monitor network perimeters, run DNS reconnaissance, trigger on-demand scans, and set real-time alerts for vulnerabilities, malware, open databases, and SSL expiry across your clients' environments.
Bring Wiz into your NINA workflows to query cloud security issues, investigate vulnerabilities, trigger forensic snapshots, and surface WizDefend threat detections across single or multi-tenant cloud environments.
