Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Nessus-Users
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

RE: managing scan reports

from [Doty, Timothy T.] Network Security [Permanent Link]
Subject: RE: managing scan reports
Date: Tue, 23 Oct 2007 10:52:35 -0500 
I have all scan results stored in a database. One of the database tables
gives our internal "severity" score for select plugins. The web interface I
wrote to date only has modest flexibility for host vuln reporting, but it
allows using either the local or nessus severity scores, sorts based on
severity and allows hiding of non-critical results. In my view this is the
benefit of storing the results in a database -- it is then just a matter of
queries and presentation.

For what its worth I'm in the process of rewriting our network reconaissance
effort and when that is done (when? Who knows) I hope to share the results.
Much of it is dependant on particulars of our environment but the core of it
may prove useful to others.

Tim Doty

-----Original Message-----
From: nessus-bounces@list.nessus.org [mailto:nessus-bounces@list.nessus.org]
On Behalf Of Jeff Chapin
Sent: Monday, October 22, 2007 11:47 AM
To: nessus@list.nessus.org
Subject: managing scan reports

Hello all,

What sort of tools do people use to manage reports generated by Nessus? I
used to use NessusWX to filter out what I wanted in the reports, etc, but
this tool seems to be discontinued. I would love to be able to report just
the critical, and just the medium/etc.  Sorting by number of vulrebilities
found would also be a plus.

 

Thanks ,

Jeff

 

emailsignature_logo

JEFF CHAPIN
SYSTEM ADMINISTRATOR 

T8DESIGN.COM | P 319.266.7574 - x267 | 877.T8IDEAS | F 888.290.4675

 


This e-mail, including attachments, is covered by the Electronic
Communications Privacy Act, 18 U.S.C. 2510-2521, is confidential, and may be
legally privileged. If you are not the intended recipient, you are hereby
notified that any retention, dissemination, distribution, or copying of this
communication is strictly prohibited. Please reply to the sender that you
have received the message in error, and then please delete it. Thank you.

Attachment: smime.p7s
Description: S/MIME cryptographic signature

_______________________________________________
Nessus mailing list
Nessus@list.nessus.org
http://mail.nessus.org/mailman/listinfo/nessus
[More messages with this same subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  managing scan reports + launching nessus script, Albert
Next by Date:  RE: managing scan reports + Using GUI Client to Gen .nessusrc files..., Olson, John \(CTECH\)
Previous by Thread:  Re: managing scan reports, Patrice Arnal
Next by Thread:  RE: managing scan reports + launching nessus script, Mike . Vasquez
Indexes:  [Date] [Thread] [Top] [All Lists]