NessusDB v1.4.2 released
NessusDB is Nessus XMLv2 parser, which pushes reports into an ActiveRecord database, easing report generation. Requirements ruby (Tested with 1.8.7) rubygems (Install it from source!, it is included with ruby 1.9.1+) libxml choice rails yaml logger rmagick gruff prawn mysql.
_ __ ___ ___ ___ _ _ ___ __| | |__
| '_ \ / _ \/ __/ __| | | / __|/ _` | '_ \
| | | | __/\__ \__ \ |_| \__ \ (_| | |_) |
|_| |_|\___||___/___/\__,_|___/\__,_|_.__/
Several templates are included:
- graphs.rb – several graphs written to disk as png’s and as a complete pdf
- technical_findings.rb – a detailed pdf of the high and medium findings from the assessment
- finding_statistics.rb – this is a pdf summary of the assessment
- assets.rb – this is a summary of all the hosts found during the scan
- pci_compliance.rb – this generates of list of hosts that pass or failed pci/dss auditing
- exec_summary.rb – A sample executive summary report
- executive_summary.rb – A more detailed sample executive summary report
- findings_summary.rb – A summary of all the findings report
- ms_update_summary.rb – a summary of all the windows update enable hosts
- ms_patch_summary.rb – a summary of all the missing windows patches
- cover_sheet.rb – a example coversheet report
- findings_host.rb – list of findings per host
Changelog since v1.4
- Added a fix for all of the MSXX-XXX Host Properties tags that don’t serve any purpose
- Added sqlite3 as an install dependency to help with sqlite usage
- Fixed a privately report bug with the *_risks_unique_sorted functions not working on MySQL
- Fixed a issue with a nonexistent ‘Critical’ severity.
- Added VMware ESX to the Other OS graph Ticket #33
- windows_os_graph were using the wrong counters Ticket #32
- Updated the Prawn gem version to 0.11.1
Requirements
Ruby
NessusDB has been tested with ruby-1.8.7-p334, ruby-1.9.1-p431, ruby-1.9.2-p180. Please try to use one of these versions if possible. I recommend using RVM to setup your ruby environment you can get it here.
RubyGems
NessusDB relies heavily on RubyGems to install other dependencies I highly recommend using it. RubyGems is included by default in the Ruby 1.9 branches.
- libxml
- rails
- yaml
- logger
- rmagick
- gruff
- prawn
- mysql