Thank you for all your help and pointers. I have some follow up questions if you don’t mind. Or I can create a new topic.
I found this post Extracting Bulk Data with the InsightVM Console API - InsightVM / API - Rapid7 Discuss and it helped give me a better idea of generating, gathering data, and then deleting the report.
My struggle currently is the responses I am getting based off my SQL query. I am not sure if it pertains to my limited understanding of APIs, or if I am going about the report generation wrong.
I am using Postman to GET the generated report from a SQL query, but the responses are formatted like a CSV. I am not sure if I have to configure the body of the request to tie things together.
This is my return after the report generation, then report download. The results list the column info in the very first row, then the remaining content is just dumped out. My thought was I had to specify in the body what fields “Title” or “maleware” corresponds to. That is where I am stuck haha.
title,malware,exploits,cvss,cvssv3,publishedon,modified,severity,instances,nexpose_id
ICMP timestamp response,
0,
0,
0.00,
,
1997-08-01,
2023-01-31,Moderate,
184,generic-icmp-timestamp
Microsoft Edge Chromium: CVE-2023-0474 Use after free in GuestView,
0,
0,
4.40,
,
2023-01-27,
2023-01-30,Severe,
1,microsoft-edge-cve-2023-0474
Anyway, this is more free form thought. I appreciate your help. I will keep plugging away at this.