Actions222
- Application Baseline Actions
- Attack Surface Actions
- Backup Software Actions
- EDR Actions
- Tags Actions
- PII Actions
- External Scan Actions
- Settings Actions
- Compliance Assessment Actions
- Reports Actions
- Compliance Actions
- Jobs Actions
- Active Directory Actions
- Retrieve Ad Roles
- Retrieve Ad User Licenses
- Retrieve Azure Licenses
- Retrieve Azure Ad Logs
- Retrieve Azure Secure Score
- Retrieve Ad Password Policies
- Retrieve Ad Groups View
- Retrieve Ad Ous View
- Retrieve Ad Gpos View
- Retrieve Ad Computers View
- Retrieve Ad Users View
- Retrieve Ad Domain Details
- Retrieve Ad Gpos Details
- Retrieve Get Ous Details
- Retrieve Get Groups Details
- Retrieve Ad Group Users
- Retrieve Ad Group Computers
- Retrieve Get User Details
- Retrieve Get Computer Details
- Retrieve Ad Roles Details
- Retrieve Ad Roles Member
- Retrieve Ad Basic Info
- Audit Log Actions
- Ad Audit Actions
- Asset Data Actions
- Retrieve Bios Info
- Retrieve Bio Info
- Retrieve Browser Extensions
- Retrieve Browser Extension
- Retrieve Ciphers View
- Retrieve Cipher View
- Retrieve Windows Protection Status
- Retrieve Window Protection Status
- Retrieve Asset Compliance Report Card
- Retrieve Asset Firewall Policy
- Retrieve Asset Installed Drivers
- Retrieve Asset Installed Driver
- Retrieve Asset Interface
- Retrieve Asset Msdt
- Retrieve Asset Ports
- Retrieve Asset Port
- Retrieve Asset Security Report Data
- Retrieve Asset Security Report Datum
- Retrieve Asset Shares
- Retrieve Asset Share
- Retrieve Asset Storages
- Retrieve Asset Storage
- Retrieve Asset Unqouted Services
- Retrieve Asset Unqouted Service
- Retrieve Asset User Shares
- Retrieve Asset User Share
- Retrieve Asset Video Info
- Retrieve Asset Windows Reboot Required
- Retrieve Asset Window Reboot Required
- Vulnerabilities Actions
- Firewall Actions
- Integration Actions
- Retrieve Integration Credentials
- Retrieve Integration Credential
- Create Integration Credential
- Update Integration Credential
- Delete Integration Credential
- Retrieve Integration Rules
- Retrieve Integration Rule
- Create Integration Rule
- Update Integration Rule
- Delete Integration Rule
- Retrieve Company Mappings
- Retrieve Company Mapping
- Create Company Mapping
- Update Company Mapping
- Delete Company Mapping
- Event Set Actions
- Ticket Template Actions
- Scheduler Actions
- Credentials Actions
- Asset Actions
- Retrieve Records
- Retrieve Assets
- Retrieve Asset
- Create Asset
- Update Asset
- Delete Asset
- Retrieve Asset Stats
- Retrieve Asset Stat
- Retrieve Asset View
- Retrieve Cron Jobs
- Retrieve Kernel Modules
- Retrieve Suid Permissions
- Retrieve Ufw Firewall Rules
- Retrieve Selinux Settings
- Retrieve Asset Iptables Rules
- Retrieve Asset Users
- Retrieve Asset Processes Running
- Retrieve Asset Services
- Retrieve Asset Patches Info
- Retrieve Asset Firewall Rules
- Retrieve Asset Registry Misconfiguration
- Retrieve Asset Open Ports
- Retrieve Notification Tickets View
- Retrieve System Events View
- Discovery Settings Actions
- Retrieve Discovery Settings
- Retrieve Discovery Setting
- Create Discovery Setting
- Update Discovery Setting
- Delete Discovery Setting
- Retrieve Agent Discoverysettings Mapping
- Retrieve Agent Discoverysetting Mapping
- Create Agent Discoverysetting Mapping
- Update Agent Discoverysetting Mapping
- Delete Agent Discoverysetting Mapping
- Auth Actions
- Company Actions
- Agent Actions
Overview
This node interacts with the "Connect Secure" API to retrieve attack surface results. It is designed to query and fetch data related to an organization's external attack surface, which can include vulnerabilities, exposed assets, or other security-related findings. This node is beneficial for security analysts, IT teams, or automated workflows that need to monitor and analyze attack surface data continuously.
Practical examples:
- Automatically retrieving the latest attack surface scan results to feed into a security dashboard.
- Filtering attack surface data based on specific conditions (e.g., severity, asset type) for targeted alerts.
- Paginating through large result sets by skipping and limiting records to manage data volume.
Properties
| Name | Meaning |
|---|---|
| X USER ID | User Id header required for authentication or identification in the API request. |
| Condition | Query condition to filter the attack surface results (e.g., filtering criteria). |
| Skip | Number of records to skip, useful for pagination. |
| Limit | Maximum number of records to return, controls the size of the result set. |
| Order By | Field(s) to order the results by, allowing sorting of the returned data. |
Output
The node outputs JSON data representing the retrieved attack surface results from the API. The structure typically includes details about each attack surface item such as identifiers, attributes, status, timestamps, and any metadata provided by the Connect Secure API.
No binary data output is indicated.
Dependencies
- Requires an API key credential for authenticating with the Connect Secure API.
- Depends on the Connect Secure service being accessible and properly configured.
- The node uses an OpenAPI specification internally to build its properties and handle requests.
Troubleshooting
- Missing or invalid X USER ID: The API requires a valid user ID header; ensure this is correctly set.
- Empty or malformed query conditions: Invalid query strings may cause the API to reject the request or return no results.
- Pagination issues: Incorrect use of
skipandlimitmight lead to unexpected empty responses or repeated data. - API connectivity problems: Network issues or incorrect credentials will prevent successful data retrieval.
- Order By field errors: Using unsupported fields in the
order_byparameter may cause API errors.
To resolve these, verify all input parameters, confirm API credentials, and check network connectivity.
Links and References
- Connect Secure official API documentation (refer to your organization's API docs)
- n8n OpenAPI integration guide: https://docs.n8n.io/integrations/builtin/app-nodes/n8n-openapi-node/
- General best practices for API pagination and filtering