Tenable Security Center

connector for tenable security center api integration capabilities this connector provides the following capabilities add a analysis add a scan add asset group download scan results get asset get credentials get policies get repositories get scan results get scans run scan get list queries get alert get hosts asset setup the asset for this connector requires the following inputs access key secret key configurations tenable sc api key authentication authenticates using an api key configuration parameters parameter description type required url a url to the target host string required access key access key string required secret key secret key string required verify ssl verify ssl certificate boolean optional http proxy a proxy to route requests through string optional actions add analysis processes a query for analysis endpoint url rest/analysis method post input argument name type required description type string optional type of the resource query object optional parameter for add analysis id number optional unique identifier sortdir string optional parameter for add analysis sortfield string optional parameter for add analysis sourcetype string optional type of the resource startoffset number optional parameter for add analysis endoffset number optional parameter for add analysis scanid number optional unique identifier view string optional parameter for add analysis output parameter type description status code number http status code of the response reason string response reason phrase type string type of the resource response object output field response totalrecords string output field totalrecords returnedrecords number output field returnedrecords startoffset string output field startoffset endoffset string output field endoffset matchingdataelementcount string response data results array result of the operation pluginid string unique identifier severity object output field severity id string unique identifier name string name of the resource description string output field description vprscore string score value vprcontext array output field vprcontext id string unique identifier name string name of the resource value string value for the parameter type string type of the resource name string name of the resource ip string output field ip uuid string unique identifier port string output field port example \[ { "status code" 200, "response headers" {}, "reason" "ok", "json body" { "type" "regular", "response" {}, "error code" 0, "error msg" "", "warnings" \[], "timestamp" 1553525692 } } ] add group adds a group endpoint url rest/group method post input argument name type required description name string required name of the resource description string optional parameter for add group createdefaultobjects string optional parameter for add group repositories array optional parameter for add group id number optional unique identifier lces array optional parameter for add group id number optional unique identifier definingassets array optional parameter for add group id number optional unique identifier assets array optional parameter for add group id number optional unique identifier policies array optional parameter for add group id number optional unique identifier queries array optional parameter for add group id number optional unique identifier credentials array optional parameter for add group id number optional unique identifier dashboardtabs array optional parameter for add group id number optional unique identifier arcs array optional parameter for add group id number optional unique identifier auditfiles array optional parameter for add group id number optional unique identifier output parameter type description status code number http status code of the response reason string response reason phrase type string type of the resource response object output field response id string unique identifier name string name of the resource description string output field description createdtime string time value modifiedtime string time value lces array output field lces id string unique identifier name string name of the resource description string output field description version string output field version repositories array output field repositories id string unique identifier name string name of the resource description string output field description lastvulnupdate string date value type string type of the resource dataformat string response data uuid string unique identifier definingassets array output field definingassets id string unique identifier name string name of the resource example \[ { "status code" 200, "response headers" {}, "reason" "ok", "json body" { "type" "regular", "response" {}, "error code" 0, "error msg" "", "warnings" \[], "timestamp" 1445892755 } } ] add scan adds a scan, depending on access and permissions endpoint url rest/scan method post input argument name type required description name string optional name of the resource type string optional type of the resource description string optional parameter for add scan repository object optional parameter for add scan id number optional unique identifier zone object optional parameter for add scan id number optional unique identifier dhcptracking string optional parameter for add scan classifymitigatedage number optional parameter for add scan schedule object optional parameter for add scan type string optional type of the resource reports array optional parameter for add scan id number optional unique identifier reportsource string optional parameter for add scan assets array optional parameter for add scan id number optional unique identifier credentials array optional parameter for add scan id number optional unique identifier emailonlaunch string optional parameter for add scan emailonfinish string optional parameter for add scan timeoutaction string optional parameter for add scan scanningvirtualhosts string optional parameter for add scan rollovertype string optional type of the resource iplist string optional parameter for add scan maxscantime number optional time value output parameter type description status code number http status code of the response reason string response reason phrase type string type of the resource response object output field response id string unique identifier name string name of the resource description string output field description iplist string output field iplist type string type of the resource policyid string unique identifier pluginid string unique identifier zoneid string unique identifier dhcptracking string output field dhcptracking classifymitigatedage string output field classifymitigatedage emailonlaunch string output field emailonlaunch emailonfinish string output field emailonfinish timeoutaction string output field timeoutaction scanningvirtualhosts string output field scanningvirtualhosts rollovertype string type of the resource status string status value createdtime string time value modifiedtime string time value maxscantime string time value ownergid string unique identifier reports array output field reports example \[ { "status code" 200, "response headers" {}, "reason" "ok", "json body" { "type" "regular", "response" {}, "error code" 0, "error msg" "", "warnings" \[], "timestamp" 1406815242 } } ] download scan results downloads the scan result associated with id endpoint url rest/scanresult/{{id}}/download method post input argument name type required description downloadtype string required type of the resource output parameter type description file object file file name string name of the resource file string output field file example \[ { "file" { "file name" "example name", "file" "string" } } ] get alert gets the list of alerts endpoint url /rest/alert method get input argument name type required description fields string optional specify the fields want to include in the response output parameter type description status code number http status code of the response reason string response reason phrase type string type of the resource response object output field response usable array output field usable id string unique identifier name string name of the resource description string output field description status string status value manageable array output field manageable id string unique identifier name string name of the resource description string output field description status string status value error code number error message if any error msg string error message if any warnings array output field warnings file name string name of the resource file string output field file timestamp number output field timestamp example \[ { "status code" 200, "response headers" { "date" "mon, 15 apr 2024 06 31 29 gmt", "server" "apache", "x frame options" "deny", "content security policy" "default src 'self'; script src 'self' pendo io static storage googleapis com app ", "x content type options" "nosniff", "x xss protection" "1; mode=block", "expect ct" "max age=31536000", "strict transport security" "max age=31536000; includesubdomains", "vary" "x apikey", "set cookie" "tns sessionid=07ece412570606c2d3fcf7cd39c26812; path=/; secure; httponly; samesi ", "expires" "thu, 19 nov 1981 08 52 00 gmt", "cache control" "no cache, no store", "pragma" "no cache", "securitycenter" "5 19 1", "content length" "249" }, "reason" "ok", "json body" { "type" "regular", "response" {}, "error code" 0, "error msg" "", "warnings" \[], "timestamp" 1713162689 } } ] get asset gets the asset associated with id or uuid endpoint url rest/asset/{{id}} method get input argument name type required description id string required unique identifier fields string optional parameter for get asset output parameter type description status code number http status code of the response reason string response reason phrase type string type of the resource response object output field response id string unique identifier name string name of the resource type string type of the resource description string output field description tags string output field tags context string output field context status string status value templateid string unique identifier createdtime string time value modifiedtime string time value typefields object type of the resource combinations object output field combinations operator string output field operator operand1 object output field operand1 id string unique identifier name string name of the resource description string output field description uuid string unique identifier operand2 object output field operand2 id string unique identifier name string name of the resource example \[ { "status code" 200, "response headers" {}, "reason" "ok", "json body" { "type" "regular", "response" {}, "error code" 0, "error msg" "", "warnings" \[], "timestamp" 1412273575 } } ] get credentials get the list of credentials endpoint url rest/credentials method get output parameter type description status code number http status code of the response reason string response reason phrase type string type of the resource response object output field response usable array output field usable id string unique identifier name string name of the resource description string output field description type string type of the resource uuid string unique identifier manageable array output field manageable id string unique identifier name string name of the resource description string output field description type string type of the resource uuid string unique identifier error code number error message if any error msg string error message if any warnings array output field warnings file name string name of the resource file string output field file timestamp number output field timestamp example \[ { "status code" 200, "response headers" {}, "reason" "ok", "json body" { "type" "regular", "response" {}, "error code" 0, "error msg" "", "warnings" \[], "timestamp" 1408719365 } } ] get hosts gets the list of hosts identified from all scan results that are on tenable sc endpoint url /rest/hosts method get input argument name type required description limit number optional the limit parameter should be an integer greater than 0 startoffset number optional the startoffset parameter should an integer greater than 0 endoffset number optional the endoffset parameter should an integer greater than 0 pagination boolean optional the pagination parameter should a boolean fields string optional specify the fields want to include in the response output parameter type description status code number http status code of the response reason string response reason phrase type string type of the resource response array output field response id string unique identifier uuid string unique identifier tenableuuid string unique identifier name string name of the resource ipaddress string output field ipaddress os string output field os firstseen string output field firstseen lastseen string output field lastseen error code number error message if any error msg string error message if any warnings array output field warnings file name string name of the resource file string output field file timestamp number output field timestamp example \[ { "status code" 200, "response headers" {}, "reason" "ok", "json body" { "type" "regular", "response" \[], "error code" 0, "error msg" "", "warnings" \[], "timestamp" 1626889388 } } ] get list queries gets the list of queries endpoint url /rest/query method get input argument name type required description type string optional type of the resource fields string optional specify the fields want to include in the response output parameter type description status code number http status code of the response reason string response reason phrase type string type of the resource response object output field response usable array output field usable id string unique identifier name string name of the resource description string output field description tool string output field tool type string type of the resource tags string output field tags context string output field context browsecolumns string output field browsecolumns browsesortcolumn string output field browsesortcolumn browsesortdirection string output field browsesortdirection createdtime string time value modifiedtime string time value status string status value groups array output field groups file name string name of the resource file string output field file filters array output field filters file name string name of the resource file string output field file canuse string output field canuse example \[ { "status code" 200, "response headers" { "date" "mon, 15 apr 2024 06 40 02 gmt", "server" "apache", "x frame options" "deny", "content security policy" "default src 'self'; script src 'self' pendo io static storage googleapis com app ", "x content type options" "nosniff", "x xss protection" "1; mode=block", "expect ct" "max age=31536000", "strict transport security" "max age=31536000; includesubdomains", "vary" "x apikey", "set cookie" "tns sessionid=f65d532d29c8460000085c28c1f12c58; path=/; secure; httponly; samesi ", "expires" "thu, 19 nov 1981 08 52 00 gmt", "cache control" "no cache, no store", "pragma" "no cache", "securitycenter" "5 19 1", "content length" "3793" }, "reason" "ok", "json body" { "type" "regular", "response" {}, "error code" 0, "error msg" "", "warnings" \[], "timestamp" 1713163202 } } ] get policies gets the list of policies endpoint url rest/policy method get output parameter type description status code number http status code of the response reason string response reason phrase type string type of the resource response object output field response usable array output field usable id string unique identifier name string name of the resource description string output field description status string status value uuid string unique identifier manageable array output field manageable id string unique identifier name string name of the resource description string output field description status string status value uuid string unique identifier error code number error message if any error msg string error message if any warnings array output field warnings file name string name of the resource file string output field file timestamp number output field timestamp example \[ { "status code" 200, "response headers" {}, "reason" "ok", "json body" { "type" "regular", "response" {}, "error code" 0, "error msg" "", "warnings" \[], "timestamp" 1406233675 } } ] get repositories get the list of repositories endpoint url rest/repository method get input argument name type required description type string required type of the resource output parameter type description status code number http status code of the response reason string response reason phrase type string type of the resource response array output field response id string unique identifier name string name of the resource description string output field description dataformat string response data uuid string unique identifier error code number error message if any error msg string error message if any warnings array output field warnings file name string name of the resource file string output field file timestamp number output field timestamp example \[ { "status code" 200, "response headers" {}, "reason" "ok", "json body" { "type" "regular", "response" \[], "error code" 0, "error msg" "", "warnings" \[], "timestamp" 1423767348 } } ] get scan results gets the list of scan results endpoint url rest/scanresult method get input argument name type required description starttime number optional time value endtime number optional time value output parameter type description status code number http status code of the response reason string response reason phrase type string type of the resource response object output field response usable array output field usable id string unique identifier name string name of the resource description string output field description status string status value manageable array output field manageable id string unique identifier name string name of the resource description string output field description status string status value error code number error message if any error msg string error message if any warnings array output field warnings file name string name of the resource file string output field file timestamp number output field timestamp example \[ { "status code" 200, "response headers" {}, "reason" "ok", "json body" { "type" "regular", "response" {}, "error code" 0, "error msg" "", "warnings" \[], "timestamp" 1407249641 } } ] get scans gets the list of scans endpoint url rest/scan method get output parameter type description status code number http status code of the response reason string response reason phrase type string type of the resource response object output field response usable array output field usable id string unique identifier name string name of the resource description string output field description uuid string unique identifier manageable array output field manageable id string unique identifier name string name of the resource description string output field description uuid string unique identifier error code number error message if any error msg string error message if any warnings array output field warnings file name string name of the resource file string output field file timestamp number output field timestamp example \[ { "status code" 200, "response headers" {}, "reason" "ok", "json body" { "type" "regular", "response" {}, "error code" 0, "error msg" "", "warnings" \[], "timestamp" 1406828340 } } ] run scan launches the scan associated with the id or uuid endpoint url rest/scan/{{id}}/launch method post input argument name type required description id string required unique identifier diagnostictarget string optional parameter for run scan diagnosticpassword string optional parameter for run scan output parameter type description status code number http status code of the response reason string response reason phrase type string type of the resource response object output field response scanid string unique identifier scanresult object result of the operation initiatorid string unique identifier ownerid string unique identifier scanid string unique identifier resultssyncid number unique identifier jobid string unique identifier repositoryid string unique identifier name string name of the resource description string output field description details string output field details status string status value downloadformat string output field downloadformat dataformat string response data resulttype string type of the resource id string unique identifier error code number error message if any error msg string error message if any warnings array output field warnings file name string name of the resource file string output field file example \[ { "status code" 200, "response headers" {}, "reason" "ok", "json body" { "type" "regular", "response" {}, "error code" 0, "error msg" "", "warnings" \[], "timestamp" 1407510276 } } ] response headers header description example cache control directives for caching mechanisms no cache, no store connection http response header connection keep alive content length the length of the response body in bytes 249 content security policy http response header content security policy default src 'self'; script src 'self' pendo io static storage googleapis com app pendo io cdn pendo io pendo static 6165929460760576 storage googleapis com data pendo io cdn metarouter io e metarouter io api amplitude com cdn amplitude com cloudfront net; connect src 'self' app pendo io data pendo io pendo static 6165929460760576 storage googleapis com cdn metarouter io e metarouter io api amplitude com cdn amplitude com cloudfront net; img src 'self' data cdn pendo io app pendo io pendo static 6165929460760576 storage googleapis com data pendo io; style src 'self' app pendo io cdn pendo io pendo static 6165929460760576 storage googleapis com; frame ancestors app pendo io; form action 'self'; block all mixed content; upgrade insecure requests 1; object src 'none' content type the media type of the resource application/json date the date and time at which the message was originated mon, 15 apr 2024 06 31 29 gmt expect ct http response header expect ct max age=31536000 expires the date/time after which the response is considered stale thu, 19 nov 1981 08 52 00 gmt keep alive http response header keep alive timeout=15, max=100 pragma http response header pragma no cache securitycenter http response header securitycenter 5 19 1 server information about the software used by the origin server apache set cookie http response header set cookie tns sessionid=f65d532d29c8460000085c28c1f12c58; path=/; secure; httponly; samesite=strict strict transport security http response header strict transport security max age=31536000; includesubdomains vary http response header vary x apikey x content type options http response header x content type options nosniff x frame options http response header x frame options deny x xss protection http response header x xss protection 1; mode=block