Quick Start
Connect your first scanner, review findings, and create your first work item.
By the end of this guide, you’ll have a scanner connected, findings imported, and your first work item tracking a real remediation.
- A Basirah instance (cloud or self-hosted)
- API credentials for at least one supported scanner (Tenable, Qualys, Snyk, etc.)
- Admin or Integration Manager role in Basirah
Add a scanner integration
Open the integrations page and add a new connection. Select your scanner type, enter the required credentials, and test the connection. Each scanner has its own configuration fields — see the integration docs for details.
Run your first sync
Trigger an initial sync to import findings from the scanner. Basirah normalizes results into a common format and deduplicates across sources automatically.
Review findings
Browse imported findings filtered by severity, source, asset, or date range. Findings from multiple scanners that describe the same vulnerability on the same asset are grouped together so you won’t create duplicate work.
Create a work item
Select one or more findings and create a work item to start the remediation cycle. Assign an owner, and Basirah applies SLA deadlines based on severity. Optionally dispatch the work item to Jira, ServiceNow, or Linear for external tracking.
After the fix is applied, trigger verification to confirm the vulnerability is gone.