At the moment, with the unfold of data expertise programs, investments within the discipline of cyber safety have elevated to an awesome extent. Vulnerability administration, penetration checks and varied analyzes are carried out to precisely decide how a lot our establishments could be affected by cyber threats. With Tenable Nessus, the trade chief in vulnerability administration instruments, an IP deal with that has simply joined the company community, a newly opened port, exploitable vulnerabilities could be decided, and a python software that may work built-in with Tenable Nessus has been developed to routinely determine these processes.
Options
- Discovering New IP Handle
- Discovering New Port
- Discovering New Exploitable Vulnerability
Set up
git clone https://github.com/anil-yelken/Nessus-Automation cd Nessus-Automation sudo pip3 set up necessities.txt
Utilization
The SIEM IP deal with within the codes must be modified.
With the intention to detect a brand new IP deal with precisely, it was checked whether or not the phrase “Host Discovery” was used within the Nessus scan title, and the dwell IP addresses had been recorded within the database with a timestamp, and the distinction IP deal with was despatched to SIEM. The contents of the hosts desk had been as follows:
Utilization: python finding-new-ip-nessus.py
By checking the port scans made by Nessus, the port-IP-time stamp info is recorded within the database, it detects a newly opened service over the database and transmits the info to SIEM within the type of “New Port:” port-IP-time stamp. The outcome noticed by SIEM is as follows:
Utilization: python finding-new-port-nessus.py
Within the findings of vulnerability scans made in establishments and organizations, primarily exploitable vulnerabilities must be closed. On the similar time, it data the vulnerabilities within the database that may be exploited with metasploit within the establishments and transmits this info to SIEM when it finds a special exploitable vulnerability on the programs. Exploitable vulnerabilities noticed by SIEM:
Utilization: python finding-exploitable-service-nessus.py
Contact