Cyver Core directly imports findings to projects or the vulnerability library from Purple Knight. Purple Knight's Active Directory and Extra ID security assessment tool allows you to identify vulnerabilities across hybrid AD environments. With Cyver Core, you can export your entire library for use across other projects, import findings directly to a project for remediation and tracking, or import individual vulnerabilities.
In addition, you can set up automated Purple Knight imports to Cyver Core with the API.
Findings Field Mapping
| Field | Fields | Values |
| Code | ||
| Title | Name | <Name>Password Policy Compliance</Name> |
| Type | ||
| Assets | Target | <Target>DC01.domain.local</Target> |
| Description | Description | <Description>This check evaluates...</Description> |
| Occurrence | ||
| Labels | ||
| Severity | Severity | <Severity>High</Severity> |
| CVSS20Score | ||
| CVSS20Vector | ||
| CVSS30Score | ||
| CVSS30Vector | ||
| CVSS31Score | ||
| CVSS31Vector | ||
| CVSS40Score | ||
| CVSS40Vector | ||
| Impact | ||
| ImpactDescription | ||
| Likelihood | ||
| LikelihoodDescription | Likelihood of compromise | <Likelihood of compromise>High likelihood of compromise</Likelihood of compromise> |
| VulnerabilityTypes | ||
| CWEList | ||
| CVEList | ||
| MITRE ATT&CK Techniques | ||
| MITRE ATT&CK Mitigations | ||
| MITRE ATT&CK Tactics | ||
| Controls | ||
| Compliance Status | ||
| Compliance Comment | ||
| BackgroundInformation | ||
| Recommendation | Remediation | <Remediation>Enable password complexity requirements...</Remediation> |
| External References | ||
| Status | ||
| Evidence Title | Result | <Result>Policy Check Failed</Result> |
| Evidence Location | ||
| Evidence Version | ||
| Evidence Reproduction | ||
| Evidence Results | ResultMessage | <Result message>Password complexity is not enforced on the domain</Result message> |
| Evidence Issue Details |
Important Notes & Limitations
- The maximum number of findings that can be imported in a single upload is 5,000 findings.
- If your file exceeds this limit, the import may fail depending on the selected import options (e.g., aggregation settings or filtering by severity).