Exporting Threats (PDF, CSV, XLSX)

Selki allows you to export threats for reporting, auditing, investigation, or integration with external tools.

Exports can be generated in PDF, CSV, or XLSX format and can include the entire threat list or only specific filtered data.

This article explains how exports work, what each format is best used for, and how to interpret export options.

1. Where to Export Threats

The export control is available in the top-right corner of the Threats List page.

Click the Export button to open the export modal.

2. Export Options

When you click Export, Selki opens a modal where you can choose:

File format:

• PDF
• CSV
• XLSX

Content scope:

• Export all threats (default)
• Export only open threats
• Export only filtered threats (if filters are active)

The modal clearly shows the number of threats that will be included.

3. Export Formats Explained

PDF Export

Best for:

• summaries for executives
• reports for security teams
• presentations
• audit deliverables

PDF exports include a clean, formatted snapshot of:

• threat identity
• risk level
• status
• category
• last seen

CSV Export

Best for:

• importing into SIEM or SOAR tools
• bulk analysis
• scripting or automated workflows
• data science or custom dashboards

CSV preserves:

• raw data
• text fields
• timestamps
• metadata

XLSX Export

Best for:

• spreadsheet analysis
• filtering and pivot tables
• detailed reporting workflows
• combining multiple exports in Excel

XLSX provides:

• pre-structured columns
• sortable data
• compatibility with enterprise tools

4. Exporting with Filters

If filters are applied (e.g., Category = Employees, Risk = Critical), only the filtered threats will be exported.

This is useful for:

• domain-specific reports
• employee-only audits
• critical incident reviews
• customer-specific investigations

5. Export Processing Workflow

After selecting export options and clicking Export, you will see:

“Your export has started”

A notification indicating background processing has begun.

“Your export is complete”

A success message once the file is ready.

From this message, you can:

• download the file directly
• or access it through your browser’s default download list

Export time depends on the dataset size, but typically completes in seconds.

6. What Is Included in the Export?

Every export contains:

• Identity
• Category (Employee / Customer)
• Status
• Risk level
• Exposure source
• Last seen timestamp
• Occurrences count
• Associated domain (watcher)
• Additional metadata when available

Exports do not include sensitive leaked content (e.g., passwords), maintaining privacy and compliance while still providing operational insights.

7. Best Practices for Using Exports

• Use filters before exporting to generate focused reports
• Use CSV/XLSX for large datasets or technical analysis
• Use PDF for high-level sharing or presentations
• Keep exported files secured — they contain sensitive operational insights
• Delete exports after use if required by internal policies
• Schedule periodic exports for monthly or quarterly security reviews

Summary

Selki’s export options allow you to generate clean, structured threat reports in PDF, CSV, or XLSX formats.

Exports support analysis, reporting, auditing, and integration into broader security processes, enabling your team to work efficiently and at scale.

Next Article

➡ Article 11 – Watchers and Threats: How They Connect

Updated on: 01/12/2025