Brinqa

App Vendor: Brinqa

App Category: Data Enrichment & Risk Intelligence

Connector Version: 1.0.0

API Version: 11.31.140

About App

The Brinqa app allows security teams to connect with Brinqa, providing unified visibility into risks across assets, vulnerabilities, and security issues, helping improve overall security posture.

The Brinqa app is configured with Cyware Orchestrate to perform the following actions:

Action Name	Description
Generic Action	This is a generic action used to make requests to any Brinqa endpoint.
Get Assets	This action retrieves assets from Brinqa. You can specify filters to return active or inactive assets, compliant or non-compliant, and other conditions as required.
Get Hosts	This action retrieves host records from Brinqa. You can specify filters to include active or inactive hosts, public or private hosts, and any additional criteria.
Get New Findings	This action retrieves findings from Brinqa based on the specified criteria.
Get Tickets	This action retrieves tickets from Brinqa. You can specify filters to return open or closed tickets, assigned or unassigned tickets, and apply other conditions as required.
Get Vulnerabilities	This action retrieves vulnerabilities from Brinqa. You can specify filters to return active or inactive, critical or non-critical vulnerabilities, and other conditions as required.

Configuration Parameters

The following configuration parameters are required for the Brinqa app to communicate with the Brinqa enterprise application. The parameters can be configured by creating instances in the app.

Parameter	Description	Field Type	Required/Optional	Comments
Base URL	Enter the base URL to access Brinqa. Example: https://<your-brinqa-platform-url>	Text	Required
API Token	Enter the API token for authentication. You must either provide an API token or enter both username and password.	Password	Optional
Verify	Choose to verify SSL/TLS certification.	Boolean	Optional	Allowed value: true and false By default, verification is enabled.
Timeout	Enter the timeout value in seconds. This is the number of seconds that requests will wait to establish a connection with the Brinqa app.	Integer	Optional	Allowed range: 15-120 seconds Default value: 15 seconds
Username	Enter your Brinqa account username for authentication. You must either provide an API token or enter both username and password	Text	Optional
Password	Enter your Brinqa account password for authentication. You must either provide an API token or enter both username and password.	Password	Optional
MFA Code	Enter the multi-factor authentication (MFA) code to verify your identity. This is required when logging in with username and password, and MFA is enabled.	Text	Optional

Action: Generic Action

This is a generic action used to make requests to any Brinqa endpoint.

Action Input Parameters

Parameter	Description	Field Type	Required/Optional	Comments
Limit	Enter the maximum number of records to return.	Integer	Optional	Default value: 10
Filter	Enter conditions to filter the results. Example: `status=active`	Text	Optional
Fields to Retrieve	Enter fields to include in the response. Example: $list[compliancestatus]	List	Optional	Default values: id, categories, complianceFlags, status, lastUpdated, complianceStatus, flowState, displayName, firstSeen, aseRiskScore, dataIntegrationTitles, id, firstSeen, riskRating, macAddresses, statusCategory, displayName, openFindingCount, connectorNames, firstFound, riskRating, type, assigned, buid, dueDate, name, uid
Query Name	Enter any additional fields to include in the response.	Text	Optional	Allowed fields: complianceStatus, displayName, firstSeen, and more.
Dataset Type	Select the Brinqa dataset type to query.	Text	Optional	Allowed values: assets, fields, vulnerabilities, tickets, and hosts. Default value: assets

Action: Get Assets

This action retrieves assets from Brinqa. You can specify filters to return active or inactive assets, compliant or non-compliant, and other conditions as required.

Action Input Parameters

Parameter	Description	Field Type	Required/Optional	Comments
Limit	Enter the maximum number of assets to return.	Integer	Optional	Default value: 10
Filter	Enter conditions to filter assets. Example: `status=active and compliancestatus=non_compliant` returns active assets that are non-compliant	Text	Optional
Fields to Retrieve	Enter specific fields to include in the response. Example: $list[complianceStatus]	List	Optional	Default values: id, status, lastUpdated, complianceStatus, displayName, and firstSeen.

Parameter

Description

Field Type

Required/Optional

Comments

Limit

Enter the maximum number of assets to return.

Integer

Optional

Default value:

Filter

Enter conditions to filter assets.

Example:

`status=active and compliancestatus=non_compliant` returns active assets that are non-compliant

Text

Optional

Fields to Retrieve

Enter specific fields to include in the response.

Example: $list[complianceStatus]

List

Optional

Default values:

id, status, lastUpdated, complianceStatus, displayName, and firstSeen.

Action: Get Hosts

This action retrieves host records from Brinqa. You can specify filters to include active or inactive hosts, public or private hosts, and any additional criteria.

Action Input Parameters

Parameter	Description	Field Type	Required/Optional	Comments
Filter	Enter conditions to filter hosts. Example: "status=active and riskrating=critical returns active hosts with riskrating critical.	Text	Optional
Limit	Enter the number of records to return.	Integer	Optional	Default value: 10
Fields to retrieve	Enter fields to include in the response. Example: $list[id]	List	Optional	Default values: baseriskscore, dataintegrationtitles, id, firstseen, riskrating, macaddresses, statuscategory, displayname, openfindingcount

Parameter

Description

Field Type

Required/Optional

Comments

Filter

Enter conditions to filter hosts.

Example:

"status=active and riskrating=critical returns active hosts with riskrating critical.

Text

Optional

Limit

Enter the number of records to return.

Integer

Optional

Default value:

Fields to retrieve

Enter fields to include in the response.

Example:

$list[id]

List

Optional

Default values:

baseriskscore, dataintegrationtitles, id, firstseen, riskrating, macaddresses, statuscategory, displayname, openfindingcount

Action: Get New Findings

This action retrieves findings from Brinqa based on the specified criteria.

Action Input Parameters

Parameter	Description	Field Type	Required/Optional	Comments
Limit	Enter the number of records to return.	Integer	Optional	Default value: 10
Filter	Enter the condition to filter findings. Example: "ageindays < 30" to fetch findings discovered within the last 30 days	Text	Optional
Fields to Retrieve	Enter fields to include in the response. Example: $list[id]	List	Optional	Default values: connectorNames, firstFound, id, riskRating, statusCategory, type, and recommendation.

Parameter

Description

Field Type

Required/Optional

Comments

Limit

Enter the number of records to return.

Integer

Optional

Default value:

Filter

Enter the condition to filter findings.

Example:

"ageindays < 30" to fetch findings discovered within the last 30 days

Text

Optional

Fields to Retrieve

Enter fields to include in the response.

Example: $list[id]

List

Optional

Default values:

connectorNames, firstFound, id, riskRating, statusCategory, type, and recommendation.

Action: Get Tickets

This action retrieves tickets from brinqa. you can specify filters to return open or closed tickets, assigned or unassigned tickets, and apply other conditions as required.

Action Input Parameters

Parameter	Description	Field Type	Required/Optional	Comments
Filter	Enter conditions to filter tickets. Example: `status=open` returns tickets that are currently open.	Text	Optional
Limit	Enter the maximum number of tickets to return.	Integer	Optional	Default value: 10
Fields to Retrieve	Enter fields to include in the response. Example: $list[uid]	List	Optional	Default values: assigned, buid, complianceStatus, riskRating, dueDate, name, uid.

Parameter

Description

Field Type

Required/Optional

Comments

Filter

Enter conditions to filter tickets.

Example:

`status=open` returns tickets that are currently open.

Text

Optional

Limit

Enter the maximum number of tickets to return.

Integer

Optional

Default value:

Fields to Retrieve

Enter fields to include in the response.

Example:

$list[uid]

List

Optional

Default values:

assigned, buid, complianceStatus, riskRating, dueDate, name, uid.

Action: Get Vulnerabilities

This action retrieves vulnerabilities from Brinqa. You can specify filters to return active or inactive, critical or non-critical vulnerabilities, and other conditions as required.

Action Input Parameters

Parameter	Description	Field Type	Required/Optional	Comments
Filter	Enter conditions to filter vulnerabilities. Example: `status=active and riskrating=critical` returns active vulnerabilities with a critical risk rating.	Text	Optional
Limit	Enter the maximum number of vulnerabilities to return.	Integer	Optional	Default value: 10
Fields to Retrieve	Enter fields to include in the response. Example: $list[description]	List	Optional	Default values: riskScore, id, description, connectorNames, complianceStatus, ageInDays

Parameter

Description

Field Type

Required/Optional

Comments

Filter

Enter conditions to filter vulnerabilities.

Example:

`status=active and riskrating=critical` returns active vulnerabilities with a critical risk rating.

Text

Optional

Limit

Enter the maximum number of vulnerabilities to return.

Integer

Optional

Default value:

Fields to Retrieve

Enter fields to include in the response.

Example:

$list[description]

List

Optional

Default values:

riskScore, id, description, connectorNames, complianceStatus, ageInDays

Brinqa

About App

Configuration Parameters

Action: Generic Action

Action: Get Assets

Action: Get Hosts

Action: Get New Findings

Action: Get Tickets

Action: Get Vulnerabilities

Search results