Security doesn't happen in a vacuum. Your pentest findings need to flow into your ticketing system, your SIEM needs visibility into discovered vulnerabilities, your compliance platform needs pentest evidence, and your team needs alerts where they already communicate.
Today, we're announcing a major expansion of the Lorikeet Security Marketplace — growing from 8 integrations to 30+ integrations across 9 categories, covering every major tool in the modern security stack.
What's New
SMS Notifications (Live Now)
The most requested feature from our enterprise customers: SMS alerts for critical findings. When our pentesters discover a critical vulnerability on your production system, you shouldn't have to wait until you check Slack. Now you can get an SMS to your phone within seconds.
- Severity-based filtering — choose to only receive SMS for Critical findings, or include High severity too
- Multi-recipient support — add your CISO, CTO, and security lead
- Powered by Twilio — reliable delivery with delivery receipts
SMS joins Slack, Microsoft Teams, Discord, and Custom Webhooks in the Notifications category — giving you 5 ways to receive security alerts in real time.
9 Integration Categories
We've reorganized the marketplace into clear categories that map to how security teams actually work:
1. Notifications & Alerting
Slack, Microsoft Teams, Discord, SMS (New), Custom Webhooks, PagerDuty (coming soon), Email Digests (coming soon), Google Chat (coming soon)
2. Project Management & Ticketing
Jira, Azure DevOps, ServiceNow (coming soon), Linear (coming soon)
3. Code Repositories
GitHub, GitLab, Bitbucket
4. SIEM & Security Operations
Splunk, Microsoft Sentinel, Elastic Security — all coming soon. Forward pentest findings and ASM alerts to your SIEM for correlation with your existing security telemetry.
5. Compliance & GRC
Drata and Vanta (coming soon). Automatically upload pentest reports and remediation evidence to satisfy SOC 2, ISO 27001, and HIPAA auditors without manual work.
6. Cloud Security
AWS Security Hub, Microsoft Defender, GCP Security Command Center (coming soon). Push pentest findings directly to your cloud-native security dashboards.
7. CI/CD Pipeline Security
GitHub Actions, Jenkins, CircleCI (coming soon). Trigger scans from your build pipeline and gate deployments on security results.
8. Vulnerability Management
Tenable.io, Qualys, Rapid7 InsightVM (coming soon). Correlate manual pentest findings with automated scanner results for complete vulnerability coverage.
9. Developer & Security Tools
Burp Suite and OWASP ZAP import (coming soon). Bring results from your internal security testing into Lorikeet for unified reporting.
Available Now vs. Coming Soon
Slack
Channel-based alerts
Teams
Adaptive Card alerts
Discord
Rich embed alerts
SMS
Critical finding alerts
Jira
Auto-create tickets
Azure DevOps
Work item creation
GitHub
Code scanning
GitLab
Repo scanning
Webhooks
Custom endpoints
PagerDuty
On-call escalation
Splunk
SIEM forwarding
Drata
Compliance evidence
AWS Security Hub
Cloud-native findings
ServiceNow
ITSM tickets
Tenable
Vuln correlation
Request an Integration
Don't see the tool you need? We've added a Request an Integration form directly in the marketplace. Tell us what you need and how you'd use it — we use these requests to prioritize our roadmap.
Why This Matters
Security findings only create value when they reach the right people and systems. A critical SQL injection finding sitting in a PDF report that no one reads for two weeks is a missed opportunity. That same finding auto-creating a P1 Jira ticket, triggering a PagerDuty alert to the on-call engineer, and updating your Drata compliance evidence — that's security that works.
Every integration we build follows the same pattern: set up once, benefit forever. No code required. Webhook URL or API token, test connection, toggle on.
Explore the Marketplace
Browse all 30+ integrations, connect your tools, and start receiving security alerts where your team works.
