As part of the integration with Nexpose, you can download a report for every endpoint that is discovered in Nexpose. The 'Download Report' triggers a report creation in Nexpose which discoveres the vulnerabilities and patches needed for that endpoint. 

The Report is downloaded in a CSV format and includes the following data: Asset IP Address, Asset Name, Asset OS, Asset Risk Score, Site Name, Vulnerability Title, Vulnerability Risk Score, Vulnerable Since, Vulnerability CVE IDs, Vulnerability CVSS Score. 

Before we start: Make sure your JetPatch platform is integrated with Nexpose. Learn more about how to import vulnerabilities via Nexpose.

How to Download Nexpose Report

Nexpose Report configuration

JetPatch will download a custom report based on the chosen asset (check "Download report from JetPatch" below).

1. In order to create a new report template, go to "Reports" -> Manage report templates
2. Click on "NEW" button and fill in the following properties - 
   1. Name = the report name ("JetPatch-CSV" is recommended). Note - this name should be the same name in JetPatch Nexpose configuration for "pg.nexpose.report-name".
   2. Template type = "Export (CSV format)"
   3. data filed - choose any data filed you want. Our suggestion is:
      1. Asset IP Address
      2. Asset Names
      3. Asset OS Name
      4. Asset Risk Score
      5. Site Name
      6. Vulnerability Title
      7. Vulnerability Risk Score
      8. Vulnerability Since
      9. Vulnerability Proof
      10. Vulnerability CVE IDs
      11. Vulnerability CVSS Score
3. Save template

JetPatch will trigger report creation every time a user requests for a new report.

Download report from JetPatch

1. Log in to JetPatch platform
2. Go to Endpoints > Management 
3. Filter by More Filters > Vulnerability > Nexpose 
4. Go to a specific server you would like to download the report and click the hourglass icon  
5. Click 'Download' in the pop-up message that will appear on the bottom of your screen.