NessusDB v1.4.2 released

NessusDB is Nessus XMLv2 parser, which pushes reports into an ActiveRecord database, easing report generation. Requirements ruby (Tested with 1.8.7) rubygems (Install it from source!, it is included with ruby 1.9.1+) libxml choice rails yaml logger rmagick gruff prawn mysql.

 _ __   ___  ___ ___ _   _ ___  __| | |__  
| '_ \ / _ \/ __/ __| | | / __|/ _` | '_ \ 
| | | |  __/\__ \__ \ |_| \__ \ (_| | |_) |
|_| |_|\___||___/___/\__,_|___/\__,_|_.__/

Several templates are included:

  1. graphs.rb – several graphs written to disk as png’s and as a complete pdf
  2. technical_findings.rb – a detailed pdf of the high and medium findings from the assessment
  3. finding_statistics.rb – this is a pdf summary of the assessment
  4. assets.rb – this is a summary of all the hosts found during the scan
  5. pci_compliance.rb – this generates of list of hosts that pass or failed pci/dss auditing
  6. exec_summary.rb – A sample executive summary report
  7. executive_summary.rb – A more detailed sample executive summary report
  8. findings_summary.rb – A summary of all the findings report
  9. ms_update_summary.rb – a summary of all the windows update enable hosts
  10. ms_patch_summary.rb – a summary of all the missing windows patches
  11. cover_sheet.rb – a example coversheet report
  12. findings_host.rb – list of findings per host

Changelog since v1.4

  • Added a fix for all of the MSXX-XXX Host Properties tags that don’t serve any purpose
  • Added sqlite3 as an install dependency to help with sqlite usage
  • Fixed a privately report bug with the *_risks_unique_sorted functions not working on MySQL
  • Fixed a issue with a nonexistent ‘Critical’ severity.
  • Added VMware ESX to the Other OS graph Ticket #33
  • windows_os_graph were using the wrong counters Ticket #32
  • Updated the Prawn gem version to 0.11.1

Requirements

Ruby

NessusDB has been tested with ruby-1.8.7-p334, ruby-1.9.1-p431, ruby-1.9.2-p180. Please try to use one of these versions if possible. I recommend using RVM to setup your ruby environment you can get it here.

RubyGems

NessusDB relies heavily on RubyGems to install other dependencies I highly recommend using it. RubyGems is included by default in the Ruby 1.9 branches.

  • libxml
  • rails
  • yaml
  • logger
  • rmagick
  • gruff
  • prawn
  • mysql

Download

NJ Ouchn

"Passion is needed for any great work, and for the revolution, passion and audacity are required in big doses"
Strengthening Security: ToolsWatch Welcomes Dr. Magda Lilia Chelly and Vivek Ramachandran to Black Hat Arsenal’s Board of Review

Strengthening Security: ToolsWatch Welcomes Dr. Magda Lilia Chelly and Vivek Ramachandran to Black Hat Arsenal’s Board of Review

GISEC Armory Edition 1 Dubai 2024 – Call For Tools is Open

GISEC Armory Edition 1 Dubai 2024 – Call For Tools is Open

Black Hat Arsenal 2024 Next Stop Singapore !

Black Hat Arsenal 2024 Next Stop Singapore !

ToolsWatch introducing Armory at Gisec 2024 in Dubai: A New Arena for Cybersecurity Open Source Tools Announced

ToolsWatch introducing Armory at Gisec 2024 in Dubai: A New Arena for Cybersecurity Open Source Tools Announced

Unveiling the Awesome Lineup for Black Hat MEA Arsenal 2023 in Riyadh, KSA

Unveiling the Awesome Lineup for Black Hat MEA Arsenal 2023 in Riyadh, KSA

Announcing the First Black Hat / ToolsWatch SecTor Toronto 2023 Arsenal Tools and Their Impact on the Community

Announcing the First Black Hat / ToolsWatch SecTor Toronto 2023 Arsenal Tools and Their Impact on the Community