Dec 17 2006

Nessus Tools

Published under Tech

I wrote two scripts to help parse through nessus results from a penetration test or vulnerability assessment. The first is to convert a nbe file to an sqlite database called nbe2sql. The second script takes the sqlite database and outputs all IPs with TCP and UDP ports open, in a csv format to help on report generation.

The next piece I want to write is a gui frontend to help explore and verify results from the nessus scan. Some features planned are grouping of results by IP, vulnerability, or port. Analyst notes would be entered directly into the application, which would also help on report generation.

nessus_tools-screen1.jpg

Code:

Popularity: 12% [?]

  • Digg
  • del.icio.us
  • Facebook
  • Reddit
  • StumbleUpon
  • TailRank
  • Technorati
  • TwitThis

One response so far

RSS feed | Trackback URI

1 Comment »

Comment by komathi
2009-06-09 23:11:53

usage of Nessus

Reply to this comment
 
Name (required)
E-mail (required - never shown publicly)
URI
Your Comment (smaller size | larger size)
You may use <a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <strike> <strong> in your comment.

Trackback responses to this post