Tenable

Tenable MCP Connector for Claude

A+

Manage Tenable Vulnerability Management scans, inspect cloud assets, and triage CVEs natively via your AI agent.

10 tools Official Updated Jun 28, 2026 Official Vinkius Partner

Connect your Tenable (Tenable.io) environment to any AI agent and bring your enterprise vulnerability management directly into your IDE or chat via natural conversation.

What you can do

  • Scans & Assessments — List configured vulnerability scans, retrieve detailed run analytics, and even manually trigger immediate evaluations
  • Asset Intelligence — Browse your entire host and cloud inventory, retrieving deep telemetry like OS fingerprints, IPs, and tags
  • Vulnerability Triage — Pinpoint explicit security findings (Workbench) and CVEs affecting specific assets without navigating complex dashboards
  • Topology Oversight — See how your network spaces overlap and track organizational logical folders
  • Scanner Health — Check the operational status and plugin health of your internal enterprise scanning fleet

How it works

  1. Subscribe to this server
  2. Enter your Tenable Access Key and Secret Key
  3. Start investigating your risk exposure rapidly from Claude, Cursor, or any MCP-compatible client

Who is this for?

  • Security Analysts — pull CVE details for a specific compromised server in a matter of seconds
  • DevSecOps Engineers — manually trigger scans on newly deployed infrastructure zones right from their code editor
  • IT Administrators — audit scanner health and check if host tags actually match the logical network topologies
cybersecurityexposure-managementasset-intelligencecve-triagevulnerability-assessmentcloud-security

10 tools expose this connector's capabilities to your AI agent.

list_assets

Lists host and cloud assets discovered in Tenable.io

get_asset_details

Retrieves detailed metadata, networking, and risk profile for a specific asset

get_scan_results

Retrieves runtime analytics and vulnerability summaries for a specific scan

launch_scan

Returns the newly created scan run ID. Manually triggers an immediate execution of a configured scan

list_scan_folders

g. "My Scans", "PCI Quarters"). Lists operational scan folders

list_logical_networks

Lists Tenable logical routing networks

list_scans

Lists vulnerability assessment scans from Tenable.io

list_asset_tags

g. "Critical", "Production", "External"). Lists organizational tags mapped to assets

list_scanners

Lists Nessus scanners managed by Tenable.io

get_asset_vulnerabilities

Retrieves explicit security findings (Workbench) for a specific asset

See how to talk to your AI agent using Tenable.

Find the status and schedule of the 'Weekly PCI Scan'.

I've queried your configured scans. The 'Weekly PCI Scan' is currently 'enabled' and actively on schedule (UUID: eb92f03f-xxxx). It is mapped to the 'PCI Quarters' logical folder. Last execution was 4 days ago. Do you want me to list its historical results?

Retrieve all extreme vulnerabilities on asset ID 1383da-xxx.

I pulled the Workbench findings for asset 1383da-xxx. I found 3 critical severity issues detected via plugin 104743 (Windows OTD exploit) and plugin 51192 (OpenSSL RCE). It seems the host is missing 4 months of standard OS patches. Shall I provide the exact CVE payload?

Launch the scan with ID a981bf93 immediately.

Scan a981bf93 has been successfully commanded to start. The job run ID is c2f90a1-xxxxx. It has been pushed to the scanner queues and will evaluate all tied network zones independently. Let me know when you want to retrieve the results.

Yes! You can ask your agent to list all mapped scan profiles. Once you copy the ID for something like 'External Perimeter Quick Scan', you can tell the agent to seamlessly launch that specific scan ID out of standard bounds.

Related Connectors