Scan Exports and Reports

You can export scans as a Tenable Nessus file or a Tenable Nessus DB file, as described in Export a Scan. You can then import these files as a scan or policy, as described in Import a Scan and Import a Policy.

You can also create a scan report in several different formats. For all formats, you can configure a report to include all scan information or specify a custom set of information. For an HTML or PDF report, you can also use a Tenable-provided report with preconfigured filters. For more information, see Create a Scan Report.

Format Description Allows Customization?
Nessus A .nessus file in XML format that contains the list of targets, policies defined by the user, and scan results. Nessus strips the password credentials so they are not exported as plain text in the XML. If you import a .nessus file as a policy, you must re-apply your passwords to any credentials. No
Nessus DB A proprietary encrypted database format that contains all the information in a scan, including the audit trails and results. When you export in this format, you must enter a password to encrypt the results of the scan. No
PDF A report generated in PDF format. Depending on the size of the report, PDF generation may take several minutes. You need either Oracle Java or OpenJDK for PDF reports. Yes
HTML A report generated using standard HTML output. This report opens in a new tab in your browser. Yes
CSV A CSV export that you can use to import into many external programs such as databases, spreadsheets, and more. Yes