Cloud Resource Inventory
Ingests cloud resource metadata from Wiz for asset discovery and environment mapping.
Sync Type: Full Synchronisation | Incremental
Requirements
- Before connecting Monad to Wiz, you need to obtain API credentials (Client ID and Client Secret). These credentials allow access to the Wiz API to fetch cloud resource inventory.
- Ensure that your Wiz credentials have the appropriate permissions to access the necessary API endpoints. To access Cloud resource inventory specifically, make sure your credentials have
create:reports,update:reportsandread:resources
Details
Monad connects to the Wiz API to collect cloud resource inventory data. The connector runs incremental syncs. It retrieves only cloud resources that were updated after the last successful sync timestamp using the updatedAt filter on the Wiz API. On the initial sync, the connector gets data from the start of time by default.
The connector also supports filtering by cloud platform and entity type.
Configuration
The following configuration defines the input parameters. Each field's specifications, such as type, requirements, and descriptions, are detailed below.
Settings
| Setting | Type | Required | Description |
|---|---|---|---|
| Endpoint URL | string | Yes | Endpoint URL to connect to Wiz. |
| Cloud Platform | Array | No | Filter cloud resources by cloud platform. |
| Entity Type | Array | Yes | The cloud-managed resource object(s) to generate a report for. |
| Backfill Start Time | string | No | The date to start fetching data from. If not specified, no past records will be fetched. |
Secrets
| Secret | Type | Required | Description |
|---|---|---|---|
| Client ID | string | Yes | Client ID for the Wiz API. This is required to authenticate requests. |
| Client Secret | string | Yes | Client Secret for the Wiz API. This is required to authenticate requests. |
Custom Schema Handling
If the source data doesn't align with any of the OpenSecurityControlFramework (OSCF) schemas, you can create a custom transformation using our JQ transform pipeline. For example:
{
metadata: {
schema_version: "1.0.0",
custom_framework: "my_framework"
},
controls: .[]
}
For more information on JQ and how to write your own JQ transformations see the JQ docs here.
If you believe this data source should be included in the standard OSCF schema set, please reach out to our team at support@monad.com. We're always looking to expand our coverage of security control frameworks based on community needs.
Sample Record
{
"data": {
"cloudResources": {
"nodes": [
{
"id": "e725f76a-bf69-67e1-4431-e25c703d72df",
"name": "sample_name",
"type": "ACCESS_ROLE",
"subscriptionId": null,
"subscriptionExternalId": null,
"graphEntity": {
"id": "08317f08-b139-2d58-a6ff-4f9901bc4f5a",
"providerUniqueId": "",
"name": "DLP Inspect Findings Reader",
"type": "ACCESS_ROLE",
"projects": null,
"properties": {
"_vertexID": "5f198f5b-c402-a89f-17bd-e44d90b7356b",
"cloudPlatform": "GCP",
"description": "Read stored sample findings.",
"externalId": "roles/sample",
"name": "DLP Inspect Findings Reader",
"namespace": null,
"nativeType": "AccessRole",
"providerUniqueId": null,
"region": null,
"subscriptionExternalId": null,
"updatedAt": "2025-08-11T23:46:40.059969Z"
},
"firstSeen": "2025-08-11T23:46:40.059974Z",
"lastSeen": "2025-08-11T23:46:40.059975Z"
}
}
],
"pageInfo": {
"hasNextPage": true,
"endCursor": "9e10effb-f877-f091-0ae2-828f36ffe6d8"
}
}
}
}