Nessus Parser v18
April 25th, 2013
Hello Users of the Nessus parser. I am sorry for not responding to questions or doing updates over the last 6 months or so. However I am back in the game now. In celebration of my new Job at Tenable Network Security (YES!!!!!!!) I have updated the Nessus Parser to v18.
Here are the updates:
Bug Fixes
– Fixed the “-d” issue
– Host Config Data Severity Critical Issue
– Excel Slow or Failed to load due to word wrapping
New Features
– Added column for exploitable vulnerabilities…
– Added option “-o” if you want to change the filename prefix
– Added scan info tab, lists scan start and stop times and other info in Plugin 19506.
Categories: Nessus
Cody
I’m getting this error at the end of the processing of a long (150Mb) nessus(v2) file
The resulting xlsx file is at 0 bytes
Storing Vulnerability Data for 10.200.10.181
Storing Vulnerability Data for 10.100.10.30
Storing Vulnerability Data for 10.100.1.60
Storing Vulnerability Data for 10.10.1.1
Creating Policy Compliance Data
Creating Nessus Report Spreadsheet
Storing Host Scan Data Table
Storing Critical Severity Data Table
Storing High Severity Data Table
Storing Medium Severity Data Table
Storing Low Severity Data Table
Storing Zero Severity Data Table
Storing HostConfigData Table
Storing UserAccountData Table
Storing SummaryReport Table
Storing Host Summary Report Table
Can’t locate object method “newdir” via package “File::Temp” at /usr/lib/perl5/site_perl/5.8.8/Excel/Writer/XLSX/Workbook.pm line 823.
Thank you
Cody
I’m getting this error at the end of the processing of a long (150Mb) nessus(v2) file
The resulting xlsx file is at 0 bytes
Storing Vulnerability Data for 10.200.10.181
Storing Vulnerability Data for 10.100.10.30
Storing Vulnerability Data for 10.100.1.60
Storing Vulnerability Data for 10.10.1.1
Creating Policy Compliance Data
Creating Nessus Report Spreadsheet
Storing Host Scan Data Table
Storing Critical Severity Data Table
Storing High Severity Data Table
Storing Medium Severity Data Table
Storing Low Severity Data Table
Storing Zero Severity Data Table
Storing HostConfigData Table
Storing UserAccountData Table
Storing SummaryReport Table
Storing Host Summary Report Table
Can’t locate object method “newdir” via package “File::Temp” at /usr/lib/perl5/site_perl/5.8.8/Excel/Writer/XLSX/Workbook.pm line 823.
Thank you
Mihai
I have been using the new v18 with no problems so far on multiple different scans. I am super happy to see that you continued to update this and I wanted to say thank you. Also congrats on the job!
Here’s a diff that allows for filtering the report based on hostname regex. In this scenario it excludes the “Scanned” and “Discovered” IP stats in the top report as they no longer make sense. Hope it’s useful for someone!
http://thunderkeys.net/files/nessus/parse_nessus_xml.v18.pl.diff
Hi, I think I found a small issue with your wonderful nessus parser.
I sent a bunch of .nessus files through it and it threw this error:
‘Creating Spreadsheet Data
Preparing Hosts Data
There is a new plugin family added, it is Scientific Linux Local Security Checks’
I imagine this is an easy fix, but didn’t have the time to try and sort it out, would be able to fix it or point me in the right direction?
Dave
Congrats on the new Job with Tenable. Been awhile since I have checked for updates to Nessus Parser, updating now. Hope you keep this app going forward, this along with RISU has made my life so much better.
I will look at incorporating you stuff in to v20.
Is it possible to add an additional option to the “-o” option like to include the original nessus-filename in the prefix? That would help me much with organizing the output files.
For example: abc_report.nessus -> abc_report_20130409162908.xlsx
While anything is possible, the “-o” is already giving you that function. If we did a naming of the new file base on the old file name, that option would be tied to the “-f”. However if you look at line 273, you will see “my $report_prefix = “nessus_report”;” You could add an entry after that to read: if($opt{“f”}){$report_prefix = $opt{“f”}}. I don’t think I will add it, because I need to do some normalization of the Nessus file name, to remove “-“,”_” and ” ” chars.