ACL Parser Beta Available on Request

June 16th, 2011 Comments off

I get a few questions a week about changes the Cisco ACL parser. I have been working on a totally new script I am calling the ACL Parser. The script will parse Cisco ACL, Netscreen, Fortinet, and Watch Guard. I am still in beta stage, but if you would like the beta, email me directly cody AT melcara.com, and I will be happy to send it.

Nessus Parser V0.10

June 4th, 2011 19 comments

Nessus Parser v0.10 – This is a program to parse a series of Nessus XMLv2 files into a XLSX file. The data from the XML file is placed into a series of tabs to for easier review and reporting. New features with this edition are better reporting of policy plugin families, user account reporting, summary graphs, and a home page with summary data. For more information and questions please contact Cody Dumont from the NWN STAR team.
Email – cdumont”AT”nwnit.com and cody”AT”melcara.com

The Nessus parser requires some additional modules, they are:
• XML::TreePP;
• Data::Dumper;
• Math::Round;
• Excel::Writer::XLSX;
• Data::Table;
• Excel::Writer::XLSX::Chart;

To use the Nessus Parser simply install Perl and the modules above. Then change directory to the folder where the Nessus XMLv2 data files are stored. The enter the following command “perl parse_nessus_xml.v10.pl .” The “.” means the current directory. The parser looks in the directory passes as the command line argument and searches for XML files. Then parses through each file. Once the data from each file is collected, the parser will put the data into the XLSX file. Once the parser is finished there will be an XLSX file in the same folder passed earlier. Review the file and find the results of your Nessus scan.

I want to give a special thanks to John McNamara , John was instrumental in assisting me in creating the pie charts in this version. John is also the author of the Excel Writer perl modules.
parse_nessus_xml.v10.pl

Categories: Nessus Tags: , ,

ShmooCon 2011

January 27th, 2011 5 comments

It’s time for ShmooCon 2011, YEAH!!! This is my first time attending and I am very excited. I would like to release a few maintenance releases of my Nessus Vulnerability XML Parser v8 and Cisco ACL Parser v0.05.

Nessus Vulnerability XML Parser v8 – There was a bug in the creation of the TEXT File report generation. The issue was cause by a variable I called in a foreach loop, if the variable was not an array, but a hash the script would fail. No other changes were made.

The Cisco ACL Parser v0.05 – In the ASA a type of ACL used for the SSL Any-Connect Portal is called a WEBACL. There was a problem in the parsing of these ACL types. Also I changed the name of the output file to be the device hostname-output.csv “fw01-output.csv” instead of “hostname fw01-output.csv”.

I hope everyone enjoys the scripts and I hope to see you at ShmooCon.