Get connected in under 10 minutes.

Pull users, groups and group memberships from your Okta org.

Sync users and groups from Microsoft Entra ID. Also pulls device inventory, MFA coverage, and app credential expiration via the discovery service.

Inventory IAM users, roles and policies via cross-account role assumption. Also pulls console + AssumeRole sign-in events from CloudTrail.

Inventory database roles and login users.

Pull Secure Score posture findings and Defender alerts.

Pull org members, teams, and team memberships from GitHub. Also discovers Action secrets and bot users via the discovery service.

Sync users, groups, and group memberships from Google Workspace. Also discovers OAuth clients, service accounts, and domain-wide delegation grants.

Surface Falcon detections and incidents in ComplianceScout. Test verifies credentials; alert ingestion is in an upcoming release.

Pull threats and alerts from SentinelOne. Test verifies credentials; alert ingestion is in an upcoming release.

Sync workspace members and public channels from Slack. Also discovers bot tokens, OAuth apps, and bot user accounts via the discovery service.

Discover KV secrets from HashiCorp Vault. Populates the secrets inventory with path names, version metadata, and rotation timestamps. Secret values are never read.

Discover secrets from AWS Secrets Manager. Populates the secrets inventory with names, ARNs, rotation status, and rotation schedule. Secret values are never read.

Discover secrets from Azure Key Vault. Populates the secrets inventory with names, enabled state, and expiry-based rotation metadata. Secret values are never read.

Pull Mac and iOS device inventory, FileVault/firewall/SIP compliance status, and certificate inventory from Jamf Pro. Apple Business Manager (ABM/DEP) enrollment status is included automatically.

Pull users and user groups from ServiceNow. Uses OAuth 2.0 client credentials to authenticate against your instance.

Sync users and profiles from Salesforce. Uses OAuth 2.0 client credentials via a Connected App.

Pull CRM owners and team memberships from HubSpot using a Private App token.

Pull employee records from NetSuite SuiteTalk REST API. Uses OAuth 1.0a Token-Based Authentication (TBA).

Inventory users, roles, and role grants from Snowflake using key-pair JWT authentication.

Sync workspace users and groups from Databricks via SCIM 2.0. Works with both Databricks on AWS/Azure/GCP and Azure Databricks.

Pull users and role assignments from Datadog using API key + Application key authentication.

Pull user accounts and role assignments from Splunk Enterprise or Splunk Cloud using a bearer token.

Sync users and groups from 1Password via SCIM Bridge. Requires a self-hosted or 1Password-hosted SCIM Bridge deployment.

Pull workspace members from Notion using an integration token. Syncs human members only (bots excluded).

Pull workspace users and team memberships from Linear using a personal API key.

Pull groups and group memberships from Confluence Cloud using Atlassian API token authentication.

Pull users and group memberships from GitLab (cloud or self-hosted) using a personal access token.

Pull workspace members and permission levels from Bitbucket Cloud using an app password.

Pull users and team memberships from PagerDuty using a REST API token.

Ingest joiner/mover/leaver HR events from Workday. Uses RaaS reports or the REST worker feed. Triggers the JML rules engine automatically.

Ingest joiner/mover/leaver HR events from BambooHR. Uses the employee changed feed to detect lifecycle transitions.

Pull Teams and members from Microsoft 365 via Graph API.

Sync users and groups from Zoom via Server-to-Server OAuth 2.0.

Pull enterprise users and groups from Box using a developer token.

Sync team members and groups from Dropbox Business using a team API token.

Pull users and team memberships from Asana workspaces using a personal access token.

Sync users and teams from Monday.com via the GraphQL API.

Pull workspace members and roles from ClickUp using a personal API token.

Pull organization members and roles from Trello using an API key and token.

Pull workspace collaborators and permission levels from Airtable.

Pull team members and roles from a Figma team.

Pull organization members and roles from Miro.

Pull users and groups from Lucidchart via the Lucid public API.

Sync people and admin role assignments from Webex.

Pull organization memberships and roles from Calendly.

Pull users and permission profiles from DocuSign via JWT Grant authentication.

Pull team members and roles from Stripe using a restricted API key.

Pull company users and roles from QuickBooks Online via OAuth 2.0.

Pull users and org roles from Xero via OAuth 2.0 client credentials.

Pull users and departments from Brex using an API key.

Pull users and departments from Ramp via OAuth 2.0 client credentials.

Pull users and groups from Adobe Admin Console via Adobe IMS OAuth 2.0.

Pull users and role assignments from Auth0 via Management API.

Pull users and role assignments from OneLogin via OAuth 2.0.

Pull users and admin role assignments from Duo Security via HMAC-signed Admin API.

Pull vault users and user groups from CyberArk Privilege Cloud.

Pull users and user groups from BeyondTrust Password Safe via OAuth 2.0.

Pull users and groups from Tenable.io using API key pair authentication.

Pull users from Qualys VMDR/Platform using Basic auth. Returns XML responses parsed automatically.

Pull users and role assignments from Rapid7 InsightVM using Basic auth.

Pull employees and permission roles from SAP SuccessFactors HCM via OData v2 API.

Pull users, groups, group memberships, and admin role assignments from your PingOne environment. Authenticates via OAuth2 client-credentials using a PingOne worker application.

Create Jira issues for new ComplianceScout findings.