As we reach the end of September 2024, ThreadFix version 3.x on-premises has officially reached its End-of-Life. Therefore, there is no longer support or updates for this version of the product. We have fully transitioned our product and development teams to focus ThreadFix SaaS and migrating all customers over from the on-premises versions. Our Customer Success and Support teams are here to help you in migrating to ThreadFix SaaS and maximizing the value you see from this improved offering from Coalfire. This is the next phase of ThreadFix and our team is looking forward to continuing to support you on this journey.

InsightVM (ThreadFix 3.X)

Owned by Daniel Colon
Last updated: Dec 09, 2021
3 min read

You will learn

How to create a ThreadFix report from InsightVM.

Prerequisites

Audience: IT Professional or End User
Difficulty: Basic
Time needed: Approximately 5 minutes
Tools required: N/A

Generate an InsightVM Report

  1. Navigate to the Reports page from the Navigation sidebar. Note the Reports page icon highlighted below:

     

  2. By default the Reports page displays a current set of viewable reports.

     

  3. Create a new report by clicking the Create a report button and enter a name for the report. Select the appropriate time zone from the Report time zone drop-down list.

  4. Scroll down to the Template menu and click on the Export tab. Use the navigation arrows, click on see all, or enter “XML Export 2.0” into the search bar to find the XML Export 2.0 option. Once found, click on the report, it will display a blue and white icon with a checkmark indicating it is “Selected”.

     

  5. To define the the report’s scope, first scroll down to the Scope section and click on the Select Sites, Assets, Asset Groups or Tags button.


    See the highlighted image below:

     

  6. A Select Report Scope pop-up modal with appear. Select all sites generated by ThreadFix Network and click the Done button.

     

  7. The reporting frequency can be selected by scrolling down to the Frequency section. From the frequency drop-down list, select the desired reporting frequency rate and click either the SAVE & RUN THE REPORT button or SAVE THE REPORT button. Note: if the report is not on a schedule, it will not be generated if the SAVE THE REPORT button is clicked.

     

    See the highlighted image below:

ThreadFix recommends selecting “Run a recurring report after every scan” or “Run a recurring report on a schedule”, with the latter having any scheduled point reasonably between the usual end of a Scheduled Scan, but before a Scheduled Import from ThreadFix Network.

Report Format Requirements

  • The InsightVM integration only allows imports of reports in a xml-export-v2 format in order to be ingested by ThreadFix. InsightVM reports can be scoped at the site/asset group/asset level and include a list of all relevant scans for specified the scope.

  • The name of the report is configurable when creating/editing the provider configuration however the configured report must be in a xml-export-v2 format.

  • When parsing the report, ThreadFix will use the latest start date of all listed scans for the scan date though scans that are not complete will not be included.

Configure Reports

ThreadFix, as of version 3.0.8, contains the following Add Provider menu that can be used for InsightVM configuration. To add a provider, a Name, URL, Username, Password, and Report Name need to be entered. On completion, click the Save button.

Prior versions of ThreadFix automatically ingests all reports in a xml-export-v2 format.

 

 

www.threadfix.it | www.coalfire.com
Copyright © 2024 Coalfire. All rights reserved.

This Information Security Policy is CoalFire - Public: Distribution of this material is not limited.