Versions Compared

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

As of 2.6+, you can create a new scanner source in order to upload vulnerability reports from other 3rd parties or non-natively-supported scanning tools. These require the use of the .ThreadFix file format in order to upload, but you must first create the scanner identifier in ThreadFix. If you don't create the scanner, you'll receive the following error when trying to upload a .ThreadFix file with an unknown source: "Could not determine the scan type."

Note

A maximum of 10 custom scanners is currently supported.

...

  1. Go to Configuration (cog) → Administration → System Settings


  2. From within the Scanner Settings tab, click the 'Create New Scanner' button


  3. Complete necessary details and click the "Create Scanner" button


  4. Although Log out and back in to ThreadFix...although the new scanner will not immediately appear be allowed for import, logging out and back in to ThreadFix will reflect that it is, in fact, allowed...you may now upload a .ThreadFix scan file with the new scanner as the source.