How do I integrate Tenable with Splunk?

danielbb · ‎02-05-2025

I see multiple Tenable Apps and TAs in Splunkbase, which one should I use to get Tenable data in?

PickleRick · ‎02-05-2025

Tenable is a company. The right add-on depends on which Tenable products/services you are using.

livehybrid · ‎02-05-2025

I would recommend the Tenable TA at https://splunkbase.splunk.com/app/4060 for getting the data in to Splunk which uses Splunk Modular Inputs to connect to your Tenable service and pull the data.

You can also download the Tenable App (https://splunkbase.splunk.com/app/4061) which is different to the TA in that it is more focussed on visualising the Tenable data. This utilises the data in the TA and the data you have ingested.

Both of these Splunk apps are built and supported by Tenable themselves but assume you but assumes you're using Tenable's feature products - there are separate Splunkbase apps made by Tenable for WAS / EASM if you are using these products.

Please let me know how you get on and consider upvoting/karma this answer if it has helped.
Regards

Will

luizlimapg · ‎02-05-2025

Hi @danielbb

I used the TA below for a long time and it worked well.
https://splunkbase.splunk.com/app/4060

How do I integrate Tenable with Splunk?

Developer Spotlight with William Searle

Major Splunk Upgrade – Prepare your Environment for Splunk 10 Now!

Stay Connected: Your Guide to June Tech Talks, Office Hours, and Webinars!

Are you a member of the Splunk Community?

How do I integrate Tenable with Splunk?

Developer Spotlight with William Searle

Major Splunk Upgrade – Prepare your Environment for Splunk 10 Now!

Stay Connected: Your Guide to June Tech Talks, Office Hours, and Webinars!