Tenable Add-on (TA-tenable)

The Tenable Add-On for Splunk pulls data from Tenable platforms and normalizes it in Splunk.

The current Tenable Add-On uses the following API endpoints:

Asset Export

Note: By default, assets/export endpoints fetch both licensed and unlicensed assets.

• POST /assets/export
• GET /assets/export/{export_uuid}/status
• GET /assets/export/{export_uuid}/chunks/{chunk_id}

Vulnerability Export

Note: By default, vulns/export endpoints fetch only licensed vulnerabilities.

• POST /vulns/export
• GET /vulns/export/{export_uuid}/status
• GET /vulns/export/{export_uuid}/chunks/{export_uuid}

Plugins

• GET /plugins/plugin