Supported apps and proof types for Hypersyncs
Hyperproof Hypersyncs support many apps and proof types. Use the information in the tables below for information on evidence you can collect using Hypersyncs.
ADP Workforce Now
See the ADP Workforce Now connection information.
Proof type | Fields | Testable |
|---|---|---|
Employees with Change in Employment Status | Name, Email, Department, Active, Start Date, End Date | Yes |
List of Employees | Name, Email, Department, Active, Start Date, End Date | Yes |
AWS
See the AWS connection information.
Service | Proof type | Fields | Testable |
|---|---|---|---|
Backup | Backup Jobs | Account, Region, Backup Job ID, Status, Resource ID, Creation Time, Start By | Yes |
Backup | Backup Plan Details | Account, Region, Backup Plan Name, Backup Plan ID, Version ID, Last Modified, Last Runtime Backup Rules: Backup Plan Name, Backup Vault, Destination Backup Vault Resource Assignments: Name, IAM Role ARN | No |
Backup | List of Backup Plans | Account, Region, Backup Plan Name, Last Runtime, Last Modified | Yes |
EC2 | Asset Inventory | Account, Region, Instance ID, Agent Type, Agent Version, Computer Name, Instance Status, IP Address, Platform, Platform Type, Platform Version | Yes |
EC2 | List of Images | AMI Name, AMI ID, Source, Visibility, Status, Platform, Root Device Type, Virtualization | Yes |
EC2 | List of Running Instances | Instance ID, Instance Type, Availability Zone, Public IPv4 DNS, Public IPv4 Address, Monitoring, Security Groups, Key Name | Yes |
EC2 | Security Group Details | Security Group Name, Security Group ID, Description, VPC, ID, Owner Inbound Rules: IP version, Protocol, Port, Range, Source, Description Outbound Rules: IP version, Protocol, Port, Range, Destination, Description | No |
EC2 | List of Security Groups | Security Group ID, Security Group Name, VPC ID, Description, Owner, Inbound Rules, Outbound Rules | Yes |
EC2 | List of Snapshots | Snapshot ID, Size, Volume, Description, Status, Started, Progress, Encryption | Yes |
EC2 | List of Volumes | Account, Region, Volume name, Volume ID, State, Status, Encryption | Yes |
EKS | List of Clusters | Account, Region, Name, Status, Kubernetes version, Provider | Yes |
EKS | List of Pod Security Policies | Name, Cluster, Run As User, Run As Group, Run As Non Root, FS Group, FS Group Change Policy, Privileged, Allow Privilege Escalation, Read Only Root FS Run as User: Rule, Ranges Run as Group: Rule, Ranges FS Group: Rule, Ranges | Yes |
EKS | List of Workloads | Name, Namespace, Type, Age, Pod Count, Status, Cluster | Yes |
IAM | Account Password Policy | Account, Policy, Minimum password length, Require symbols, Require numbers, Require uppercase characters, Require lowercase characters, Password expiration requires administrator reset, Users can change their own passwords, Password expiration, Count of passwords to remember to prevent reuse | Yes |
IAM | List of Groups | Account, Group Name, Users, Inline Policy, Creation Time | Yes |
IAM | List of Roles | Account, Role Name, Description, Trusted Entities, Creation Time, Session Duration | Yes |
IAM | List of SAML Providers | Account, Arn, Creation Time, Expiration Time | Yes |
IAM | List of Users | Account, User Name, User ID, Creation Time, Password Last Used | Yes |
IAM | List of Users with MFA Devices | Account, User Name, User ID, Creation Time, Password Last Used, MFA, MFA Devices | Yes |
IAM | List of Users with MFA Settings | Account, User Name, User ID, Creation Time, Password Last Used, MFA | Yes |
IAM | Users, Groups, Roles, and Policies | List of Users: User Name, Creation Time, Arn, Path, Groups, Permissions Boundary, Managed Policies, Inline Policies List of Groups: Group Name, Creation Time, Arn, Path, Managed Policies, Inline Policies List of Roles: Role Name, Creation Time, Role Last Used, Arn, Path, Managed Policies, Inline Policies | No |
Identity Center | List of SSO Users | GovCloud Account, Region, User Name, User ID, Identity Store ID | Yes |
RDS | Instance Backup Retention Period | Account, Region, Instance Identifier, Instance Backup Retention Period | Yes |
RDS | Instance Storage Encrypted | Account, Region, Instance Identifier, Instance Storage Encrypted | Yes |
S3 | Bucket Access Control List | Account, Bucket, Grantee Name, Grantee Email, Grantee ID, Grantee Type, Permission | Yes |
S3 | Bucket Encryption | Account, Bucket, Encryption Key Type, AWS KMS Key, Bucket Key Enabled | Yes |
S3 | Bucket Lifecycle Configuration | Account, Bucket, Rule, Action, Applies To, Non-Current Versions Retained, Days to Transition, Transition Date, Status | Yes |
S3 | Bucket Object Lock | Account, Bucket, Object Lock Status, Retention Mode, Retention Period | Yes |
S3 | Bucket Policy Status | Account, Bucket, Policy Type | Yes |
S3 | Bucket Replication | Account, Bucket, Replication Rule Name, Status, Destination Bucket, Priority, Scope | Yes |
S3 | Bucket Versioning | Account, Bucket, Bucket Versioning, Multi-factor Authentication Delete | Yes |
Security Hub | Findings | Severity, Workflow status, Record State, Company, Product, Title, Resource type, Resource id, Status, Updated at | Yes |
Security Hub | Integrations Providing Findings | Account, Name, Company Name, Description | Yes |
VPC | List of Client ACLs | Account, Region, Network ACL ID, Associated With, Default, VPC ID, Owner Inbound Rules: Rule Number, Protocol, Port Range, Source, Allow/Deny Outbound Rules: Rule Number, Protocol, Port Range, Destination, Allow/Deny | No |
VPC | List of Client VPN Endpoints | Endpoint ID, State, Client CIDR, Description, Dns Name | Yes |
VPC | List of Subnets | Account, Region, Name, Subnet ID, State, VPC ID, IPv4 CIDR, IPv6 CIDR | Yes |
VPC | List of VPCs | Account, Region, VPC ID, State, IPv4 CIDR, IPv6 CIDR, IPv6 Pool, DHCP Options Set, Tenancy, Default, Owner | Yes |
Azure
See the Azure connection information.
Service | Proof type | Fields | Testable |
|---|---|---|---|
Authorization | List of Role Assignments | ID, Type, Role, Scope, Condition | Yes |
App Configuration | List of Application Configurations | ID, Name, Type, Resource Group, Location, Pricing Tier, Subscription, Creation Date | Yes |
Azure Database for MySQL Server | Backup Configuration | Tenant, Subscription, Resource, Resource Group, Earliest Restore Point, Geo-Redundancy | Yes |
Azure Database for MySQL Server | Backup Retention Days | Tenant, Subscription, Resource, Resource Group, Back-Up Retention Days | Yes |
Azure Database for MySQL Server | Connection Security | Tenant, Subscription, Resource Group, Server, All Trusted Sources | Yes |
Azure Database for MySQL Server | List of Backups | Tenant, Subscription, Resource, Resource Group, Time of Completion, Name, Back-Up Type, Source | Yes |
Azure Database for MySQL Server | List of Databases | Name, Version, Type, Location | Yes |
Azure Database for MySQL Server | Minimum TLS Version | Tenant, Subscription, Resource Group, Server, Minimum TLS Version | Yes |
Azure Database for PostgreSQL Flexible Server | Backup Configuration | Tenant, Subscription, Resource, Resource Group, Earliest Restore Point, Geo-Redundancy | Yes |
Azure Database for PostgreSQL Flexible Server | Backup Retention Days | Tenant, Subscription, Resource, Resource Group, Back-Up Retention Days | Yes |
Azure Database for PostgreSQL Flexible Server | Connection Security | Tenant, Subscription, Resource, Resource Group, All Trusted Sources Allowed Firewall Rules: Name, Start IP, End IP | Yes |
Azure Database for PostgreSQL Flexible Server | List of Backups | Tenant, Subscription, Resource, Resource Group, Time of Completion, Name, Back-Up Type, Source | Yes |
Azure Database for PostgreSQL Flexible Server | List of Databases | Name, Version, Type, Location | Yes |
Azure Database for PostgreSQL Flexible Server | Minimum TLS Version | Tenant, Subscription, Resource, Resource Group, Minimum TLS Version, Require Secure Transport | Yes |
Azure Database for PostgreSQL Flexible Server | Peerings | Peering Name, Peering State, Gateway Transit Enabled, Remote Virtual Network | No |
Azure Database for PostgreSQL Server | Backup Configuration | Tenant, Subscription, Resource, Resource Group, Earliest Restore Point, Geo-Redundancy | Yes |
Azure Database for PostgreSQL Server | Backup Retention Days | Tenant, Subscription, Resource, Resource Group, Back-Up Retention Days | Yes |
Azure Database for PostgreSQL Server | Connection Security | Allow trusted services Allowed Firewall Rules: Name, Start IP, End IP | No |
Azure Database for PostgreSQL Server | Log collection | Tenant, Subscription, Resource, Resource Group, Log File Name, Size in KB, Last Modified | Yes |
Azure Database for PostgreSQL Server | Minimum TLS Version | Minimum TLS Version | Yes |
Defender for Cloud | Azure Firewalls | Name, Type, Resource Group, Location, Subscription | Yes |
Defender for Cloud | Recommendations | Severity, Description, Name, Status, Resource Type, Unhealthy Resources | Yes |
Key Vault | Access Configuration | Role-based Access Control, Virtual Machine Access, Disk Encryption Access, Resource Manager Access | Yes |
Key Vault | Deletions | Soft Delete: Enabled / Disabled Soft Delete Retention: Days Purge Protection: Enabled / Disabled | Yes |
Key Vault | Firewalls and Virtual Networks | Public Network Access, Allow Trusted Services Virtual Networks: Network Name, Subnet Name, Subnet Address Prefix Firewall: Allowed IP Ranges | Yes |
Key Vault | Private Endpoint Connections | Endpoint Name, Endpoint Connection Name, Subnet, Connection State, Connection Description | Yes |
Network Gateway | List of Virtual Network Gateways | Name, ID, Location, Type, IP Configurations, Active | Yes |
Recovery Services | LIst of Backup Jobs | ID, Workload Name, Type, Status, Start Time, End Time | Yes |
Recovery Services | List of Backup Policies | Name, Frequency, Interval | Yes |
Resources | List of Locks | Resource, Lock Name, Lock Level, Lock Scope | Yes |
Resources | List of Resource Groups | Resource, Location | Yes |
Resources | List of Resources | Resource Group, Resource Type, Resource, Location | Yes |
Security Center | LIst of Alerts | Severity, Alert Title, Affected Resource, Resource Type, Activity Start Time, MITRE ATT&CK Tactics, Status | Yes |
SQL Server | Backup Configuration | Tenant, Subscription, Resource Group, Server, Database, Earliest Restore Point, Back-Up Storage Redundancy | Yes |
SQL Server | Backup Retention Days | Tenant, Subscription, Resource Group, Server, Database, Back-Up Retention Days | Yes |
SQL Server | Connection Security | Tenant, Subscription, Resource Group, Server, All Trusted Sources Allowed Firewall Rules: Name, Start IP, End IP | Yes |
SQL Server | List of Databases | Name, Version, Type, Location | Yes |
SQL Server | Minimum TLS Version | Tenant, Subscription, Resource Group, Server, Minimum TLS Version | Yes |
Storage Account | Minimum TLS Version | Minimum TLS Version | Yes |
Storage Account | Networking Configuration | Allow access to trusted services, Allow read access to storage logging Allowed IP Address Ranges: IP ranges | No |
Storage Account | Peerings | Virtual Network, Subnet Name, Address Prefix | Yes |
Storage Account | Primary and Secondary Endpoints | Primary Location, Secondary Location | Yes |
Virtual Machine | Details for Network Security Group | Name, Location, Type Default Security Rules: Priority, Name, Access, Direction, Protocol, Src Port Range, Dest Port Range Security Rules: Priority, Name, Access, Direction, Protocol, Src Port Range, Dest Port Range | No |
Virtual Machine | List of Network Security Groups | Name, Location | Yes |
Virtual Machine | List of Virtual Machines | Name, Type, Status, Location | Yes |
Virtual Machine | Peerings | Peering Name, Peering State, Gateway Transit Enabled, Remote Virtual Network | No |
Virtual Network | Address Space | Tenant, Subscription, Resource Group, Virtual Network, Address Prefix | Yes |
Virtual Network | Connected Devices | Tenant, Subscription, Resource Group, Virtual Network, Device Name, Private IP Address, Subnet | Yes |
Virtual Network | Firewall Policies | Name, ID, Location, Threat Intel Mode | Yes |
Virtual Network | IDPS Signatures | Signature ID, Group, Description, Mode, Severity, Direction, Last Updated, Alert Only | Yes |
Virtual Network | Peerings | Tenant, Subscription, Resource Group, Virtual Network, Peering Name, Peering State, Gateway Transit Enabled, Remote Virtual Network | No |
Virtual Network | Service Endpoints | Tenant, Subscription, Resource Group, Virtual Network, Service, Subnet, Locations | Yes |
Virtual Network | Subnets | Tenant, Subscription, Resource Group, Subnet Name, Address Prefix, Private Endpoint Network Policies | Yes |
Azure DevOps
See the Azure DevOps connection information.
Proof type | Fields | Testable |
|---|---|---|
Deployments in an Environment | Stage, Release, Build, Branch, Deployed By, Approved By, Queued On, Completed On | Yes |
Deployment Approval Policy | Enabled, Approval Order, Timeout, Approvers Approval policies: <Approval policy true or false> | Yes |
List of Users | Name, Email, Access Level, Date Added, Last Accessed | Yes |
Members in Permission Group | Display Name, Member Of | Yes |
Azure Kubernetes
See the Azure Kubernetes connection information.
Proof type | Fields | Testable |
|---|---|---|
List of AKS Clusters | Name, Location, Kubernetes version, API server address, Network type (plugin), Pod CIDR, Service CIDR, DNS service IP, Docker bridge CIDR, Network Policy, Load balancer, Private cluster, Authorized IP Ranges | Yes |
List of Deployments | Name, Namespace, Ready, Up-to-date, Available, Age | Yes |
BambooHR
See the BambooHR connection information.
Proof type | Fields | Testable |
|---|---|---|
Employees with Change in Employment Status | Name, Email, Department, Active, Start Date, End Date | Yes |
List of Employees | Name, Email, Department, Active, Start Date, End Date | Yes |
Bitbucket
See the Bitbucket connection information.
Proof type | Fields | Testable |
|---|---|---|
List of Commits | Commit Hash, Project, Repository, Author, Description, Created On | Yes |
List of Pull Requests | Pull Request Id, Project, Repository, Description, Author, Status, Created On, Updated On | Yes |
List of Users | Name, User Id, Repository, Permissions, Access Type, Last Login |
bob
See the bob connection information.
Proof type | Fields | Testable |
|---|---|---|
Employees with Change in Employment Status | Name, Email, Department, Active, Start Date, End Date | Yes |
List of Employees | Name, Email, Department, Active, Start Date, End Date | Yes |
Checkmarx CxOne
See the Checkmarx CxOne.
Proof type | Fields | Testable |
|---|---|---|
Create Report | Name, Username, Email, Creation Date, Last Login Date, Active, Roles | Yes |
List All Projects | Name, Risk Level, Last Scan, Source Origin, Source, Project ID | Yes |
Checkmarx SCA
See the Checkmarx SCA.
Proof type | Fields | Testable |
|---|---|---|
List of Projects | Name, Branch, Team, Project Created, Last Successful Scan, Days Since Last Successful Scan, High Vulnerabilities, Medium Vulnerabilities, Low Vulnerabilities | Yes |
List of Users | Name, Username, Email, Creation Date, Last Login Date, Active, Roles | Yes |
List of Vulnerabilities | ID, CWE, Description, Package Name, Version, Repository, Severity, New in Report, Ignored, Publication Date | Yes |
Cloudflare
See the Cloudflare connection information.
Proof type | Fields | Testable |
|---|---|---|
Account Details and Members | Account Type, Member 2FA enforcement, CreatedMembers: Name, Role, Status, 2FA | No |
Account Roles and Permissions | Role Name, Description Permissions: Organization, Zone, SSL, DNS Records, Web Application Firewall, Analytics, Zone Settings, Cache Purge, Logs, Load Balancer, App, Access, Subscription, Worker, Member, Billing, Webhooks, Legal, Stream, Audit Log, Teams | No |
Firewall Rules | Action, Description, Disabled, Rule Expression | Yes |
Zone Details | Zone ID, Account ID, Name, Status, Original Registrar, Name Servers SSL/TLS: SSL/TLS Encryption Mode, Always Use HTTPS, Minimum TLS Version, TLS 1.3, Automatic HTTPS Rewrites HTTP Strict Transport Security: Enable HSTS, Max Age Header, Apply HSTS policy to subdomains, Preload, No-Sniff Header Caching Configuration: Caching Level, Browser Cache TTL, Always Online, Development Mode Scrape Shield: Email Address Obfuscation, Server-side Excludes, Always Online Speed Optimization: Brotli, Rocket Loader Auto Minify: Javascript, CSS, HTML Mobile Redirect: Status, Mobile Subdomain, Strip URI Network: HTTP/2, HTTP/3 (with QUIC), 0-RTTConnection Resumption, IPv6 Compatibility, WebSockets, Onion Routing, Pseudo IPv4, IP Geolocation, Maximum Upload Size | No |
Crowdstrike Falcon
See the Crowdstrike Falcon connection information.
Proof type | Fields | Testable |
|---|---|---|
Endpoint Detections | Vulnerability, Severity, First Detected, Status, Hours to Resolution, Hostname, Platform | Yes |
List of Host Groups | Name, Description, Group Type, Created On, Number of Hosts, Assignment Rule | Yes |
List of Hosts | Hostname, Platform, Platform criteria, OS Version, OS Build, System Manufacturer, System Product Name, Containment Status, Last Seen | Yes |
List of Users | Name, Email, Roles | Yes |
Prevention Policies | Name, Description, Platform Name, Enabled, Created On, Groups | Yes |
Sensor Update Policies | Name, Description, Platform Name, Enabled, Created On, Sensor Version, Uninstall Protection, Groups | Yes |
Datadog
See the Datadog connection information.
Proof type | Fields | Testable |
|---|---|---|
List of Active Users | Name, Email, Roles, Created On | Yes |
List of Hosts | Name, Platform, Status, CPU, IO Wait, Load 15, Apps | Yes |
List of Monitors | Priority, Status, Name, Tags | Yes |
Dayforce
See the Dayforce connection information.
Proof type | Fields | Testable |
|---|---|---|
Employees with Change in Employment Status | Name, Email, Department, Active, Start Date, End Date | Yes |
List of Employees | Name, Email, Department, Active, Start Date, End Date | Yes |
Elastic Cloud
See the Elastic Cloud connection information.
Proof type | Fields | Testable |
|---|---|---|
Deployment Instances | Instance, Name, Resource, Zone, Disk Available, Disk Used, Disk (%), Memory, Memory (%), Running, Health | Yes |
Deployments | Id, Name, Applications, Region | Yes |
User List | Id, Full Name, Email Address, Roles | Yes |