Sevco
Sevco
Overview
The Sevco integration connects the Praetorian Guard Platform (PGP) with Sevco Security's cyber asset attack surface management (CAASM) platform to import its consolidated asset inventory. Sevco aggregates asset information from multiple sources across your environment, and this integration brings that unified view into PGP for attack surface analysis.
Organizations typically have asset data fragmented across dozens of tools -- endpoint agents, vulnerability scanners, cloud providers, and IT asset management systems. Sevco correlates and deduplicates asset records from these sources to produce a single source of truth. By integrating Sevco with PGP, security teams gain access to this correlated asset intelligence alongside PGP's offensive security perspective.
This integration operates in a read-only capacity. PGP queries the Sevco API for asset data and never modifies any configurations, asset records, or policies in your Sevco environment.
What the Integration Does
When connected, PGP queries the Sevco API to retrieve your organization's consolidated asset inventory. For each asset in Sevco, PGP imports device metadata including hostnames, FQDNs, IP addresses, MAC addresses, OS information, device types, and security tool coverage status.
Sevco's asset correlation means that a single device may have been observed by multiple tools (e.g., an endpoint agent, a vulnerability scanner, and a cloud provider). The integration imports the correlated asset record, preserving the multi-source context that helps PGP understand which assets are well-managed and which may be blind spots.
Prerequisites
Before setting up the integration, ensure you have:
An active Sevco Security account
A Sevco API key created by a user with at least the Read Only role
Your Sevco Org ID (a UUID identifying your organization)
Creating an API Key
Sign in to the Sevco platform at my.sev.co
Click the User menu (circle icon with your initial) at the bottom-left corner
Select API Keys
Click Issue a new API key
Enter a name (e.g., "Praetorian Guard Integration")
Click Create
Copy the API key immediately -- it is only displayed for 15 seconds
The API key inherits the permissions of the user who created it. For this integration, a user with the Read Only role is sufficient since all operations are read-only.
Finding Your Org ID
Your Sevco Org ID is a UUID that identifies your organization (e.g., a1b2c3d4-e5f6-7890-abcd-ef1234567890). To obtain it:
Contact your Sevco customer success representative, or
Retrieve it via the API:
GET https://api.sev.co/v1/admin/orgwith headerX-Sevco-Target-Org: *
Setup
In PGP, go to Integrations and click Add Integration
Select Sevco (under Cyber Asset Attack Surface Management)
Enter the required credentials
Click Submit -- PGP will validate your credentials by making a test request to the Sevco Devices API
Field Reference
What Data Is Synced
When fully enabled, the integration imports:
- Devices -- consolidated asset inventory including hostnames, FQDNs, IP addresses, MAC addresses, OS information, device types, and security tool coverage status
Data is read-only -- PGP never creates, modifies, or deletes any data in your Sevco environment.
Permissions
Sevco uses a two-role system. API keys inherit the creating user's role:
We recommend creating a dedicated service account with the Read Only role and generating the API key from that account.
Troubleshooting
Security and Data Handling
The Sevco integration operates in a strictly read-only mode. It queries the Sevco API to retrieve asset inventory data and does not modify any asset records, configurations, source integrations, or policies in your Sevco environment.
Credentials are handled securely within PGP. The Sevco API key is encrypted at rest and used exclusively for authenticating API requests during sync operations. The key is not exposed in logs or transmitted to any third party.