loading menu
Tuesday 09, February 2010

Welcome to our Nessus & OpenVas Reporter page.

We hope you find the scripts useful for viewing and managing your nessus scan results.

Although the chart demo scripts are not available for download, you can email us via our contact page and request the scripts we created for the DashBoard as well as the individual reports if you think it may be of interest. It will be down to you to develop the scripts to suit your needs with your choice of charting software but we hope you will find what we have done very useful as it is.

We'd like to thank everyone for taking time review and test the tool and for making suggestions on its basic functionality.

HackerStorm Reporter
Nessus & OpenVas vulnerability scanners

Hackerstorm.com has put together a tool to allow users of the Nessus scanner to view their scan jobs without the need for the nessus client. Its purpose is to allow you to quickly and easily browse and view your scan jobs without the need to run up a nessus session. Some features include;

Our tool is completely free to use and released under the GNU General Public License
Nessus v3 required & OpenVas v2.
Simply export scan jobs into XML format and copy to the XML folder
View by Risk
View by Severity
Executive summary as well as detailed reports
 Ports and services report
Vulnerability categoy report
Export scan jobs to Excel (very useful with autofilter enabled).
 Save report as html and send as an offline copy in html.
 Easy installation, just extract the zip file to your web server!


View demo online (Nessus)

View demo online (OpenVas)

View demo with charts online (demo only)
Installtion Requirements
The tool runs on linux laptops, workstations or server and requires;


Apache webserver

PHP 5 enabled
Reporter Download
Get the scripts here.



Download (Nessus)

Download (openVas)


Installing and using the tool
Downloading the GUI
To download our scripts, click the download link above!.


Installing the scripts

It could not be simpler, just extract the zip file to a folder within your webserver directory. It can be whatever you want, however, we suggest you do not alter the folder structure within the nessus folder, though you can change nessus/openvas folder name to whatever you like.

The default location within the script is a directorty called /nessus in the root of your web server. You can of course change this, if you do, you must change the path for 'site' in the javascript within <head> in 'nessus/openvas_summary.php' as follows;

site="/nessus/";
site="/openvas/";

to

site="/path/to/my/directory/";


Please note, we are assuming you know how to install and configure Apache and PHP5, please do not contact HackerStorm.com for questions regarding troubleshooting Apache and PHP5, you wont get a response, you will need to refer to your vendors manuals and install guides. All you need is the latest version of Apache and PHP5. You may need to ensure you have read permissions on the folders also.


To start using the GUI

Assuming you have the latest version of Apache webserver with PHP5 running and correct directory in javascript in nessus_summary.php, open your web browser and browse to the directory where you extracted the scripts. E.g. on a local Ubuntu laptop/workstation it may be something like /var/www/nessus/nessus-index.php

Dont forget, when you run scan, just export the report as 'XML' and copy it into the 'XML folder, when you refresh nessus-index.php, it will be available to view.

Note, we have'nt done exhaustive tests on various operating systems with various versions of Apache and PHP, we'd be happy to hear from you if you have it working on anything other than Ubuntu, Debian and Redhat.

We have used scripts with Apache 2.2.8 and php5.

 
Homes            News & Alerts            Free OSVDB Too            Tutorials            White Papers & Books            Contact Us

HackerStorm.com © Copyright 2008