Skip to main content

Workflow Template: Trigger specific scan, update results to Slack (Tenable)

Triggers a specific pre-defined Tenable Cloud scan, waits for completion, updates on every vulnerable host with severity findings above 0.

Updated over a week ago

This workflow template automates the execution of a specific Tenable Cloud scan, streamlining application security operations. It identifies the scan by name, triggers it, and monitors its progress. Upon completion, the workflow retrieves and analyzes the results, focusing on hosts with vulnerabilities of severity greater than zero. The findings are then communicated to the #Security channel on Slack, ensuring timely updates and facilitating proactive security measures.

Take Me to the Template

Trigger

Scheduled Event

Optional Triggers

["Webhook, Slack, WebEx, Microsoft Teams"]

Use Cases

Application Security Operations

Workflow Breakdown

  1. Find scan id in Tenable Cloud based on provided scan name

  2. Trigger an execution of a specific Tenable scan

  3. Wait for the scan to complete

  4. Retrieve the results and iterate over each vulnerable host

  5. Send update via Slack message to #Security Channel

Vendors

Slack, Utils, Tenable

Tips

  • Set the scan name in the first context step or trigger as part of event.

Related Articles
Workflow Template: Handle Nessus Scan Results (Nessus)
Workflow Template: Retrieve Daily Scan Summary and Notify on Findings (Aqua)
Workflow Template: Retrieve New Exploited Vulnerabilities from CISA
Workflow Template: Process New Cloud Vulnerability DB Issues (Open CVDB)
Workflow Template: Search for Vulnerabilities by Hostname in Tenable
Did this answer your question?