Export Scan Results

Required Tenable Vulnerability Management User Role: Basic, Scan Operator, Standard, Scan Manager, or Administrator

Required Tenable Web App Scanning User Role: Basic, Scan Operator, Standard, Scan Manager, or Administrator

Required Scan Permissions: Can View

You can export both imported scan results and results that Tenable Vulnerability Management collects directly from scanners.

Tenable Vulnerability Management retains individual scan results until the results are 15 months old.

Note: For archived scan results (that is, results older than 35 days), the export format is limited to .nessus and .csv files.

Note: When a scan is actively running, the Export button does not appear in the Tenable Vulnerability Management interface. Wait until the scan completes, then export the scan results.

To export results for an individual scan in the new interface:

  1. In the upper-left corner, click the Menu button.

    The left navigation plane appears.

  2. Do one of the following:

    • In the left navigation plane, in the Vulnerability Management section, click Scans.

      The Scans page appears.

    • In the left navigation plane, in the Web App Scanning section, click Scans.

      The Tenable Web App Scanning Scans page appears.

      Note: If your Tenable Web App Scanning license expires, your web application scans no longer appear in the scans table.

  3. In the Folders section, click a folder to load the scans you want to view.

    The scans table updates to display the scans in the folder you selected.

  4. Do one of the following:

    Location Scope of Export
    Scans table
    1. In the scans table, roll over the scan you want to export.

    2. Click the More button.

      A menu appears.

    3. Click Export.

      The Export plane appears.

    Note: You cannot export scan results from the Scans table if the scan has multiple targets. For scans with multiple targets, you can export scan results for each target from the Scan Details page.

    Scan Details
    1. In the scans table, click the scan you want to export.

    2. In the upper-right corner, click Export.

      The Export plane appears.

    Note: The Export button is not available on the History tab because you cannot export multiple scan histories at the same time. To export a scan history, click the More button next to the history that you want to export, then click Export.

  5. Select an export format:

    Format Description Supported for Archived Scan Results
    Tenable Vulnerability Management Scans
    PDF - Custom

    An Adobe .pdf file.

    Note:Tenable Vulnerability Management cannot export PDF files with more than 400,000 individual scan results.

    No
    PDF - Executive Summary

    An Adobe .pdf file.

    Note:Tenable Vulnerability Management cannot export PDF files with more than 400,000 individual scan results.

    No
    HTML - Custom

    A web-based .html file.

    Note:Tenable Vulnerability Management cannot export HTML files with more than 400,000 individual scan results.

    No
    HTML - Executive Summary

    A web-based .html file.

    Note:Tenable Vulnerability Management cannot export HTML files with more than 400,000 individual scan results.

    No
    Nessus

    A .nessus file in XML format that contains the list of targets, scan settings defined by the user, and scan results. Password credentials are stripped so they are not exported as plain text in the XML. If you import a .nessus file as a user-defined scan template, you must re-apply your passwords to any credentials.

    Note: To learn more about the .nessus file format, see Nessus File Format.

    Yes
    CSV

    A .csv text file with only scan results.

    Note: When exporting scan results as a .csv file, the severities always display CVSSv2 scores regardless of your configured severity metric.

    Yes
    Tenable Web App Scanning Scans
    HTML A web-based .html file that contains the list of targets, scan results, and scan notes. n/a
    PDF

    An Adobe .pdf file that contains the list of targets, scan results, and scan notes.

    Note:Tenable Vulnerability Management cannot export PDF files with more than 400,000 individual scan results.

    n/a
    Nessus

    A .nessus file in XML format that contains the list of targets, scan settings defined by the user, and scan results. Password credentials are stripped so they are not exported as plain text in the XML.

    n/a
    CSV A .csv text file with only scan results. n/a
    JSON A .json file that contains the list of targets, scan settings defined by the user, scan results, and scan notes. Password credentials are stripped so they are not exported as plain text in the .json file. n/a
  6. For Tenable Vulnerability Management scans, if you select the PDF - Custom or HTML - Custom formats:

    • Retain the default Data setting (Vulnerabilities selected).
    • Select either Assets or Plugin from the Group By list, depending on how you want to group the scan results in the export file.
  7. Click Export.

    Tenable Vulnerability Management generates the export file. Depending on your browser settings, your browser may automatically download the export file to your computer, or may prompt you to confirm the download before continuing.