Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Nessus-Users
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: Plugin names, numbers and descriptions

from [Bob Babcock] Network Security [Permanent Link]
Subject: Re: Plugin names, numbers and descriptions
Date: Wed, 26 Sep 2007 16:38:13 -0400 (EDT) 
One option might be to use a Perl script I wrote a couple of years ago, 
describe-nessus-plugin. It parses the script description in NASL plugins 
and outputs selected fields such as script id, CVE id, risk factor, etc. 
I've only used it on *nix systems, but I don't see why it wouldn't work 
on Windows too as long as you have the requisite modules (in particular, 
Text::Balanced and Text::Wrap). It's available at:

   http://www.tifaware.com/perl/describe-nessus-plugin/

You could then use describe-nessus-plugin in another script that 
iterates over the NASL plugins in a given directory and produces the 
table with the information you're interested in.


Thanks.  I installed Perl on my scanning machine and your script runs without
needing any modifications, which is good since I don't really know much Perl.
(Under Windows, wildcards don't get expanded by the shell, so as you mention
in the last paragraph, I had to run the script ~15,000 times with the FOR
command.  It took 21 minutes.  I suspect that doing the expansion in the Perl
script would not greatly reduce this time.)

FYI, I got messages "does not have a description part!" for 12 scripts that
just say "exit(0)" and one "Unmatched opening bracket(s)" for a code fragment
in the comments section.
_______________________________________________
Nessus mailing list
Nessus@list.nessus.org
http://mail.nessus.org/mailman/listinfo/nessus
[More messages with this same subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: How can I get chinese report?, George A. Theall
Next by Date:  When does a plugin include a path?, Mike . Vasquez
Previous by Thread:  Re: Plugin names, numbers and descriptions, George A. Theall
Next by Thread:  When does a plugin include a path?, Mike . Vasquez
Indexes:  [Date] [Thread] [Top] [All Lists]