Integrations
Furl works by pulling data and taking action through the tools you already run. Every integration has the same three pieces:
- Connection — the API key, OAuth credentials, or service account Furl uses to authenticate with the third-party API. Some integrations (like the Furl Vulnerability Scanner and CIS Benchmark) are built-in and require no connection.
- Datasources — what Furl reads from the tool. Imported data flows into the context graph, where Furl reasons about your environment.
- Actions — what Furl can do in the tool: open tickets, send messages, deploy patches, run scripts, and so on.
Vulnerability management
Section titled “Vulnerability management”- CrowdStrike Falcon Spotlight — Imports hosts and real-time vulnerability findings from CrowdStrike Falcon.
- Furl Vulnerability Scanner — Built-in. Detects CVEs by matching agent-collected software inventory against the National Vulnerability Database.
- Microsoft Defender for Endpoint — Imports device inventory and vulnerability findings from Microsoft Defender for Endpoint.
- Nucleus — Imports asset inventory and consolidated vulnerability findings from your Nucleus projects.
- Qualys — Imports asset inventory and vulnerability findings to inform security posture and remediation prioritization.
- Rapid7 InsightVM — Imports vulnerability scan data so Furl can prioritize and track findings across your managed assets.
- Rapid7 InsightVM Data Warehouse — Direct Postgres access to the InsightVM Data Warehouse for high-volume reporting.
- Tenable.io — Imports asset and vulnerability data to enhance risk management and prioritize remediation.
Compliance
Section titled “Compliance”- CIS Benchmark — Built-in. Evaluates macOS, Linux, and Windows endpoints against CIS Level 1 and Level 2 benchmarks using agent telemetry.
- Vanta — Imports vulnerable assets and vulnerability data from your compliance environment.
Endpoint security & management
Section titled “Endpoint security & management”- Action1 — Endpoint management with autonomous-agent support: deploy packages, run scripts, uninstall software, and query device state.
- SentinelOne — Imports endpoint inventory and application-management risk data from SentinelOne.
Patch management
Section titled “Patch management”- Automox — Patch management with autonomous-agent support: create and run policies, manage device groups, and deploy software at scale.
Identity & user directory
Section titled “Identity & user directory”- Google Workspace — Provides user directory data so Furl can map users to devices and target the right person for manual fixes.
- Okta — Provides user directory data so Furl can map users to devices and target the right person for manual fixes.
Ticketing & change management
Section titled “Ticketing & change management”- Freshservice — Tracks remediation work and communicates planned changes. Reads tickets and workspaces; can create tickets and change requests and add notes.
- Jira — Tracks and prioritizes work across teams. Reads projects and issues; can create issues and comments and react to webhook events.
Collaboration
Section titled “Collaboration”- Slack — Sends notifications, status updates, and action prompts to users and IT teams; can post to channels or direct-message users.
Cloud infrastructure
Section titled “Cloud infrastructure”- AWS — Imports EC2 instances so Furl knows which devices are hosted in AWS.