Integrations
- Integrations
- 1Password
- Abnormal
- Absolute
- AbuseIPDB
- Acronis
- Active Directory On-Prem
- Adaptive Shield
- Adobe Cloud
- ADP
- Agari Phishing Response
- Airlock
- Airlock Digital
- Akamai Identity Cloud Social
- Alert Logic
- AlgoSec Firewall Analyzer
- Alienvault OTX
- Alienvault USM
- Anodot
- Ansible
- Anthropic
- Anvilogic
- Any Run
- Apex One
- ArcSight ESM
- Ardoq
- Area 1
- Armis Centrix
- Asana
- Asset Panda
- Astrix
- Atlassian Crowd
- Atlassian User Management
- Atlassian User Provisioning
- AuditBoard
- auth0
- Authentik
- Authomize
- Automox
- AWS
- AWS IAM Identity Center
- Axonius
- Azure
- Azure Data Explorer
- Azure DevOps
- Azure Log Analytics
- Azure Storage
- BambooHR
- Big Fix
- BigPanda
- Bitbucket
- Bitdefender
- Bitsight
- Bitwarden
- Black Duck
- Black Kite
- Blink
- BMC Remedy
- Box
- Brinqa
- Cato Networks
- Censys
- Chorus
- Cisco Advanced Phishing Protection
- Cisco Domain Protection
- Cisco Meraki
- Cisco Talos
- Cisco Umbrella
- Cisco Webex
- Claroty CTD
- Claroty xDome
- ClearPass
- ClickHouse
- ClickUp
- Cloud Custodian
- Cloudflare
- Cloudflare R2
- Cobalt.io
- Check Point Harmony
- Check Point Infinity Events
- Check Point Management
- Check Point XDR/XPR
- Checkmarx SAST
- Checkmarx One
- Chronicle
- Compass
- Confluence
- Confluence Data Center
- Coralogix
- Coralogix Incident Management
- Cortex XDR
- Cortex Xpanse
- Coupa Compass
- CredStash
- Cribl
- CrowdStrike
- CyberArk
- Cybersixgill
- CyCognito
- Cyera
- Cylance
- Cyware CTIX
- Darktrace
- Dasera
- Databricks
- Datadog
- DataSet
- Delighted
- Delinea
- Devo
- Digital-Shadows
- Discord
- Docusign
- Domo
- Drata
- Dropbox
- Dropbox Business
- druva
- Duo
- Duo Auth
- Dynatrace
- EasyVista
- EchoTrail
- Egnyte
- Egnyte Secure Govern
- Elasticsearch
- Entro
- Entrust Certificate Services
- Ermetic
- Exabeam
- Exchange Online
- Expel
- F5
- Falcon LogScale
- Falcon Surface
- Fastly
- Flare.io
- Forcepoint DLP
- Forescout
- FortiGate
- Freshservice
- GCP
- Gemini
- Ghostwriter
- Git
- GitHub
- GitLab
- Glean
- Gmail
- Google Calendar
- Google Chat
- Google Docs
- Google Drive
- Google Forms
- Google Looker
- Google Meet
- Google Sheets
- Google Workspace
- Grafana
- Greenhouse
- GreyNoise
- Grip Security
- GYTPOL
- HackerOne
- HackNotice
- Halo PSA
- Have I Been Pwned
- HiBob
- HubSpot
- Hunters
- Hybrid Analysis
- Hyperproof
- IBM CLoud
- IBM NS1 Connect
- IBM Security Verify
- IBM X Force
- Imperva
- Incident.io
- Infobip
- Infoblox Cloud Services Portal
- Intercom
- Intezer
- IP API
- IPinfo
- IPWHOIS
- Ironscales
- Ivanti RiskSense
- Jamf
- JetBrains
- JFrog
- Jira
- Jira Data Center
- Joe Sandbox
- JumpCloud
- Kandji
- Keeper Secrets Manager
- Kenna Security
- KnowBe4
- KnowBe4 Events
- Kubernetes
- Lacework
- LaunchDarkly
- Lark
- LimaCharlie
- Linear
- Litmos
- Living Security
- LogicMonitor
- LogRhythm
- Manage Engine ServiceDesk Plus
- Mattermost
- Maven
- Microsoft Defender For Cloud
- Microsoft Defender For Cloud Apps
- Microsoft Defender For Endpoints
- Microsoft Defender XDR
- Microsoft E-Discovery
- Microsoft Entra ID
- Microsoft Excel
- Microsoft Graph
- Microsoft Intune
- Microsoft Office 365 Management Activity
- Microsoft Outlook
- Microsoft Purview
- Microsoft Sentinel
- Microsoft SQL Server
- Microsoft Teams
- Mimecast
- MISP
- Monday
- MongoDB Atlas
- MxToolbox
- Neo4j
- NetBox
- Netography
- Netskope
- NetSPI
- New Relic
- Nexthink
- Nightfall AI
- NinjaOne
- Notion
- Nozomi Networks
- Nuclei
- Nucleus
- Nutanix Hypervisor
- Obsidian
- Okta
- OneDrive
- OneLogin
- OneTrust
- Oort
- OpenAI
- OpenCTI
- Opsgenie
- OPSWAT
- Oracle Cloud
- Oracle HCM
- Oracle NetSuite
- Oracle PeopleSoft
- Orca Security
- OWASP ZAP
- PagerDuty
- Palo Alto NGFW
- Palo Alto Firewall
- Panther
- Pentera
- Perception Point
- PhishLabs
- PhishLabs Incident Data
- PhishLabs Open Web Monitoring
- Pingdom
- PingID
- PingOne
- PlexTrac
- PortSwigger
- Postman
- Postman SCIM
- Power BI
- PowerShell
- Prisma Access
- Prisma Cloud
- Prisma Cloud CWP
- Prometheus
- Proofpoint
- Proofpoint ITM
- Proofpoint Protection Server
- Proofpoint Security Awareness Training
- Proofpoint TAP
- Proofpoint TRAP
- Pub-Sub
- QRadar
- Qualys
- Rapid7
- Rapid7
- Actions
- Overview
- Add Asset Group Tag
- Add Asset Group User
- Add Asset Tag
- Add Asset To Asset Group
- Add Scan Engine Pool Scan Engine
- Create Asset Group
- Create Or Update Asset
- Create Scan Engine
- Create Scan Engine Pool
- Create Scan Template
- Create User
- Delete Asset
- Delete Asset Group
- Delete Scan Engine
- Delete Scan Template
- Download Report
- Find Assets
- Get Agents
- Get Asset
- Get Asset Databases
- Get Asset Files
- Get Asset Group
- Get Asset Group Assets
- Get Asset Group Tags
- Get Asset Group Users
- Get Asset Groups
- Get Asset Service
- Get Asset Service Configurations
- Get Asset Service Databases
- Get Asset Service User Groups
- Get Asset Service Users
- Get Asset Service Web Application
- Get Asset Service Web Applications
- Get Asset Services
- Get Asset Software
- Get Asset Tags
- Get Asset User Groups
- Get Asset Vulnerability Solutions
- Get Assets
- Get Assigned Engine Pools
- Get Engine Pool
- Get Exploits
- Get Operating System
- Get Operating Systems
- Get Policies For Asset
- Get Report Template
- Get Scan
- Get Scan Engine
- Get Scan Engine Pool Scan Engines
- Get Scan Engine Pool Sites
- Get Scan Engine Pools
- Get Scan Engine Scans
- Get Scan Engine Sites
- Get Scan Engines
- Get Scan Template
- Get Scan Templates
- Get Scans
- Get Site Scans
- Get Sites
- Get Software
- Get Softwares
- Get Users For Asset
- Get Vulnerabilities
- List Resources
- Rapid7 Custom Action
- Remove All Asset Group Tags
- Remove All Assets From Asset Group
- Remove Asset From Asset Group
- Remove Asset Group Tag
- Remove Asset Group User
- Remove Asset Tag
- Remove Scan Engine From Pool Scan Engine
- Remove Scan Engine Pool
- Start Scan
- Update Asset Group
- Update Scan Engine
- Update Scan Engine Pool
- Update Scan Status
- Update Scan Template
- Triggers
- Rapid7 InsightIDR
- Rapid7 InsightVM Cloud
- Rapid7 Threat Command
- Reco
- Recorded Future
- Recorded Future Triage Cloud
- Red Hat IDM
- Rippling
- Rubrik
- runZero
- SafeBase
- SafeBreach
- Sage HR
- SailPoint
- SailPoint IdentityIQ
- Salesforce
- SAP Ariba
- Sap Concur
- ScienceLogic
- Securin
- Securin VI
- SecurityScorecard
- Securonix
- Seemplicity
- Sekoia.io
- SemGrep
- SentinelOne
- ServiceNow
- SharePoint
- Shodan
- Shopify
- Silverfort
- Slack
- Smartsheet
- Snipe IT
- Snowflake
- Snyk
- SolarWinds Information Service
- SolarWinds Service Desk
- SonarQube
- Sophos
- Split
- Splunk
- Splunk Observability
- Splunk SOAR
- Spur
- StrongDM
- Sumo Logic
- Symantec EDR
- Sysdig
- Tableau
- Tanium
- TeamCity
- TeamViewer
- Telegram
- Tempo
- Tenable
- Tenable Security Center
- Terraform
- Terraform Cloud
- Tessian
- TheHive
- Thinkst Canary
- Thomson Reuters
- ThreatQuotient
- Trellix Email Security
- Trello
- Trend Vision One
- Twilio
- UKG HR
- Uptycs
- URLScan
- Vault
- Veracode
- Verkada
- Vertica
- VMware vSphere
- VMware Carbon Black
- VirusTotal
- WeChat
- WhatsApp
- WhoIs
- WildFire
- Wiz
- Workday
- Workspace ONE UEM
- YesWeHack
- Zendesk
- Zero Networks
- Zoom
- Zscaler Internet Access
- Zscaler Private Access
On this page
Actions
Get Scan Template
Returns a scan template.
Preview this Workflow on desktop
External DocumentationTo learn more, visit the Rapid7 documentation.
Parameters
| Parameter | Description |
|---|---|
| Disable SSL Enforcement | Enable this option to skip SSL verification of the server’s certificate chain and host name. This may increase security vulnerabilities, but can be useful for testing or when custom verification is employed. |
| Scan Template ID | The ID of the scan template. |
Example Output
Copy
Ask AI
{
"checks": {
"categories": {
"disabled": [
"string"
],
"enabled": [
"string"
],
"links": [
{
"href": "https://hostname:3780/api/3/...",
"rel": "self"
}
]
},
"correlate": false,
"individual": {
"disabled": [
"string"
],
"enabled": [
"string"
],
"links": [
{
"href": "https://hostname:3780/api/3/...",
"rel": "self"
}
]
},
"links": [
{
"href": "https://hostname:3780/api/3/...",
"rel": "self"
}
],
"potential": false,
"types": {
"disabled": [
"string"
],
"enabled": [
"string"
],
"links": [
{
"href": "https://hostname:3780/api/3/...",
"rel": "self"
}
]
},
"unsafe": false
},
"database": {
"db2": "database",
"links": [
{
"href": "https://hostname:3780/api/3/...",
"rel": "self"
}
],
"oracle": "default",
"postgres": "postgres"
},
"description": "Performs a full network audit of all systems using only safe checks...",
"discovery": {
"asset": {
"collectWhoisInformation": false,
"fingerprintMinimumCertainty": 0.16,
"fingerprintRetries": 0,
"ipFingerprintingEnabled": true,
"sendArpPings": true,
"sendIcmpPings": true,
"tcpPorts": [
0
],
"treatTcpResetAsAsset": true,
"udpPorts": [
0
]
},
"perfomance": {
"packetRate": {
"defeatRateLimit": true,
"maximum": 15000,
"minimum": 450
},
"parallelism": {
"maximum": 0,
"minimum": 0
},
"retryLimit": 3,
"scanDelay": {
"maximum": "PT0S",
"minimum": "PT0S"
},
"timeout": {
"initial": "PT0.5S",
"maximum": "PT3S",
"minimum": "PT0S"
}
},
"service": {
"serviceNameFile": "",
"tcp": {
"additionalPorts": "3078,8000-8080",
"excludedPorts": "1024",
"links": [
{
"href": "https://hostname:3780/api/3/...",
"rel": "self"
}
],
"method": "SYN",
"ports": "well-known"
},
"udp": {
"additionalPorts": "4020-4032",
"excludedPorts": "9899",
"links": [
{
"href": "https://hostname:3780/api/3/...",
"rel": "self"
}
],
"ports": "well-known"
}
}
},
"discoveryOnly": false,
"enableWindowsServices": false,
"enhancedLogging": false,
"id": "full-audit-without-web-spider",
"links": [
{
"href": "https://hostname:3780/api/3/...",
"rel": "self"
}
],
"maxParallelAssets": 10,
"maxScanProcesses": 10,
"name": "Full audit",
"policy": {
"enabled": [
0
],
"links": [
{
"href": "https://hostname:3780/api/3/...",
"rel": "self"
}
],
"recursiveWindowsFSSearch": false,
"storeSCAP": false
},
"policyEnabled": true,
"telnet": {
"characterSet": "ASCII",
"failedLoginRegex": "(?:[i,I]ncorrect|[u,U]nknown|[f,F]ail|[i,I]nvalid|[l,L]ogin|[p,P]assword|[p,P]asswd|[u,U]sername|[u,U]nable|[e,E]rror|[d,D]enied|[r,R]eject|[r,R]efuse|[c,C]lose|[c,C]losing|Not on system console|% Bad)",
"links": [
{
"href": "https://hostname:3780/api/3/...",
"rel": "self"
}
],
"loginRegex": "(?:[l,L]ogin|[u,U]ser.?[nN]ame) *\\:",
"passwordPromptRegex": "(?:[p,P]assword|[p,P]asswd) *\\:",
"questionableLoginRegex": "(?:[l,L]ast [l,L]ogin *\\:|allows only .* Telnet Client License)"
},
"vulnerabilityEnabled": true,
"web": {
"dontScanMultiUseDevices": true,
"includeQueryStrings": false,
"paths": {
"boostrap": "/root",
"excluded": "/root/sensitive.html",
"honorRobotDirectives": false
},
"patterns": {
"sensitiveContent": "",
"sensitiveField": "(p|pass)(word|phrase|wd|code)"
},
"performance": {
"httpDaemonsToSkip": [
"string"
],
"maximumDirectoryLevels": 6,
"maximumForeignHosts": 100,
"maximumLinkDepth": 6,
"maximumPages": 3000,
"maximumRetries": 2,
"maximumTime": "PT0S",
"responseTimeout": "PT2M",
"threadsPerServer": 3
},
"testCommonUsernamesAndPasswords": false,
"testXssInSingleScan": false,
"userAgent": "Mozilla/5.0 (compatible; MSIE 7.0; Windows NT 6.0; .NET CLR 1.1.4322; .NET CLR 2.0.50727)"
},
"webEnabled": true
}
Workflow Library Example
Get Scan Template with Rapid7 and Send Results Via EmailPreview this Workflow on desktopWas this page helpful?
Assistant
Responses are generated using AI and may contain mistakes.