Skip to content

"export" command

Jump to bottom
Casey Reid edited this page Aug 19, 2022 · 8 revisions

Purpose

Getting data out of Tenable.io is a crucial part of any VM program. Navi has a number of CSV exports to help communicate risk amongst different VM teams as well as providing a method of analyzing the VM and asset data outside of the Tenable.io platform.

Command Options

Export Asset, Agent, Consec, or Webapp Data - navi export

  • assets --> Export Assets data into CSV: IP, Hostname, FQDN, UUID, exposure, etc
  • agents --> Export Asset data into CSV: IP, Last Connect, Last scanned, Status
  • was --> Export Webapp Scan Summary into a CSV - WAS V2
  • consec --> Export Container Security summary info into a CSV.
  • licensed --> Export a List of all Licensed Assets into a CSV.
  • lumin --> Export all Asset data including ACR and AES into a CSV. This will take some time
  • network --> Export all Assets of a given network
  • bytag --> Export all assets by tag; Include ACR and AES into a CSV
    • --c TEXT --> Export bytag with the following Category name
    • --v TEXT --> Export bytag with the Tag Value; requires --c and Category Name
    • --ec TEXT --> Exclude tag from export with Tag Category; requires --ev
    • --ev TEXT --> Exclude tag from export with Tag Value; requires --ec
    • --severity [critical|high|medium|low|info] --> Download Vulnerabilities instead isolated by severity.
  • users --> Export User information
  • compliance --> Export Compliance information into a CSV
    • --name TEXT --> Export Compliance data by the Audit file name. Use navi display audits to get the exact name
    • --uuid TEXT --> Export All compliance data for a given UUID. Use navi display assets to get an asset uuid
  • group TEXT --> Export Agents by Group name - API limits 5000 Agents
  • query TEXT --> Export data using a SQL query

export examples

navi export assets

navi export agents 

navi export network 00000000-0000-0000-0000-000000000000

navi export compliance

navi export compliance --uuid 1a955d70-468e-4667-b558-e7559c5cec54

navi export compliance --name CIS_CentOS_7_Server_L1_v3.0.0.audit

navi export compliance --name CIS_CentOS_7_Server_L1_v3.0.0.audit --uuid 1a955d70-468e-4667-b558-e7559c5cec54

navi export query "select * from assets;"

Export into a CSV, but include the ACR and AES of each asset. This takes a bit of time.

navi export lumin

Export into a CSV via a Tag

navi export bytag --c "OS" --v "Linux"

Export into a CSV via a Tag; but exclude a specific Tag.

navi export bytag --c "OS" --v "Linux" --ec "OS" --ev "AWS"

Recent Changes 8/17/2022

Some Exports were removed in 7.0.1 due to API changes.

Clone this wiki locally