https://live.paloaltonetworks.com/t5/cortex-xsoar-discussions/getting-vulnerability-findings-from-tenable-sc-for-a-specific/m-p/1219103#M3881 <P>Hello LiveComm,</P> <P>I have a use-case that requires the extraction of vulnerabilities found on a specific host on Tenable SC (not tenable.io !). I have tried a combination of commands but I have not been able to to do this. When accessing the tenant GUI there is Host Assets in which you can see the vulnerabilities found on a specific host. Based on the API commands found in the xsoar integration there are commands for groups and assets yet no host assets. This could be a very useful enrichment process. Has anyone ever managed to do this ?&nbsp;</P> <P><LI-PRODUCT title="Cortex XSOAR" id="Cortex_XSOAR"></LI-PRODUCT>&nbsp;</P> <P>&nbsp;</P> Mon, 03 Feb 2025 14:41:09 GMT michaelsysec242 2025-02-03T14:41:09Z https://live.paloaltonetworks.com/t5/cortex-xsoar-discussions/getting-vulnerability-findings-from-tenable-sc-for-a-specific/m-p/1219103#M3881 <P>Hello LiveComm,</P> <P>I have a use-case that requires the extraction of vulnerabilities found on a specific host on Tenable SC (not tenable.io !). I have tried a combination of commands but I have not been able to to do this. When accessing the tenant GUI there is Host Assets in which you can see the vulnerabilities found on a specific host. Based on the API commands found in the xsoar integration there are commands for groups and assets yet no host assets. This could be a very useful enrichment process. Has anyone ever managed to do this ?&nbsp;</P> <P><LI-PRODUCT title="Cortex XSOAR" id="Cortex_XSOAR"></LI-PRODUCT>&nbsp;</P> <P>&nbsp;</P> Mon, 03 Feb 2025 14:41:09 GMT https://live.paloaltonetworks.com/t5/cortex-xsoar-discussions/getting-vulnerability-findings-from-tenable-sc-for-a-specific/m-p/1219103#M3881 michaelsysec242 2025-02-03T14:41:09Z https://live.paloaltonetworks.com/t5/cortex-xsoar-discussions/getting-vulnerability-findings-from-tenable-sc-for-a-specific/m-p/1219262#M3882 <P>I worked with Tenable.SC long ago, but I think it requires first a scan(targeted) and then retrieving the results. If you already have an id for a scan, you can also use that.</P> <UL class=""> <LI><A class="table-of-contents__link table-of-contents__link--active" href="https://xsoar.pan.dev/docs/reference/integrations/tenablesc#tenable-sc-launch-scan" target="_blank">tenable-sc-launch-scan</A></LI> <LI><A class="table-of-contents__link table-of-contents__link--active" href="https://xsoar.pan.dev/docs/reference/integrations/tenablesc#tenable-sc-get-scan-status" target="_blank">tenable-sc-get-scan-status</A></LI> <LI><A class="table-of-contents__link table-of-contents__link--active" href="https://xsoar.pan.dev/docs/reference/integrations/tenablesc#tenable-sc-get-scan-report" target="_blank">tenable-sc-get-scan-report</A></LI> <LI>&nbsp;</LI> </UL> Tue, 04 Feb 2025 08:35:43 GMT https://live.paloaltonetworks.com/t5/cortex-xsoar-discussions/getting-vulnerability-findings-from-tenable-sc-for-a-specific/m-p/1219262#M3882 ctopay 2025-02-04T08:35:43Z