Cyver Core natively imports XML files from Nmap.
Nmap is a network discovery and security auditing tool that identifies live hosts, open ports, services, and (optionally) OS fingerprints and NSE script results. Those network scan results can be imported to Cyver Core manually via the Findings Importer or automated through the API. Just export your Nmap scan with XML output and import it into Cyver Core to create assets and findings that you can triage, assign, and track through remediation.
Findings Field Mapping
| Field | Values | Fields |
| Code | Affects | |
| Title | <port><state state="open"/></port> + <port portid="80"/> + <port protocol="tcp"/> + <service name="http"/> | |
| Type | Vulnerability Observation | <script><table><elem key="state">VULNERABLE</elem></table></script |
| Assets | <address addr="80.95.174.155"/> + <hostname name="example.com"/> | |
| Description | <port portid="80"/> + <state state="open"/> + <port protocol="tcp"/> + <service name="http"/> | |
| Occurrence | New Occurrence Reoccurrence | |
| Labels | ||
| Severity | Info Low Medium High Critical default: Info | |
| CVSS20Score | ||
| CVSS20Vector | ||
| CVSS30Score | ||
| CVSS30Vector | ||
| CVSS31Score | ||
| CVSS31Vector | ||
| CVSS40Score | ||
| CVSS40Vector | ||
| Impact | 0 1 2 3 4 5 default: 0 | |
| ImpactDescription | ||
| Likelihood | 0 1 2 3 4 5 default: 0 | <service conf="10"/> |
| LikelihoodDescription | ||
| VulnerabilityTypes | DoS CodeExecution Overflow MemoryCorruption SqlInjection XSS DirectoryTraversal HttpResponseSplitting BypassSomething GainInformation GainPrivileges CSRF FileInclusion | |
| CWEList | for example: CWE-1; CWE-721 | |
| CVEList | for example: CVE-1; CVE-721 | |
| MITRE ATT&CK Techniques | ||
| MITRE ATT&CK Mitigations | ||
| MITRE ATT&CK Tactics | ||
| Controls | ||
| Compliance Status | ||
| Compliance Comment | ||
| BackgroundInformation | ||
| Recommendation | ||
| External References | ||
| Status | Draft PendingFix Fixed ReadyRetest Accepted ToReview Reviewed default: Draft | |
| Evidence Title | <script id="ssl-cert"/> | |
| Evidence Location | ||
| Evidence Version | ||
| Evidence Reproduction | ||
| Evidence Results | <script output="Subject: commonName=..."/> | |
| Evidence Issue Details |
Important Notes & Limitations
- The maximum number of findings that can be imported in a single upload is 5,000 findings.
- If your file exceeds this limit, the import may fail depending on the selected import options (e.g., aggregation settings or filtering by severity).