https://github.com/aress31/ness6nmap2xlsx

XLSX parser for nessus and nmap scan results.
https://github.com/aress31/ness6nmap2xlsx

nessus nmap parser pentesting reporting xlsx

Last synced: 3 months ago
JSON representation

XLSX parser for nessus and nmap scan results.

• Host: GitHub
• URL: https://github.com/aress31/ness6nmap2xlsx
• Owner: aress31
• License: apache-2.0
• Created: 2017-11-03T10:03:58.000Z (about 7 years ago)
• Default Branch: master
• Last Pushed: 2019-11-22T08:13:12.000Z (about 5 years ago)
• Last Synced: 2024-10-31T10:51:31.554Z (3 months ago)
• Topics: nessus, nmap, parser, pentesting, reporting, xlsx
• Language: Python
• Homepage:
• Size: 103 KB
• Stars: 12
• Watchers: 3
• Forks: 7
• Open Issues: 0
• Metadata Files:
  • Readme: README.md
  • Funding: .github/FUNDING.yml
  • License: LICENSE

Awesome Lists containing this project

README

        


  

  


    ness6nmap2xlsx

  

  


      

      

      


      

      

      

  


# This project has now been deprecated. Its functionality has been incorporated into [pentest2xlsx](https://github.com/AresS31/pentest2xlsx).

This script parses `Nessus` (via its API) and `Nmap` scans results into `Excel` tables (`.xlsx`) to facilitate the reporting process of penetration tests, especially useful when dealing with big scope. Having scans results organised in `Excel` tables also allow customers and testers to use `Excel` strong filtering capabilities.

The following worksheets are generated when parsing Nessus scans results:

* `Host vs Vulnerabilities`

* `Vulnerability vs Hosts`

* `Host vs OSs`

* `OS vs Hosts`

The following worksheets are generated when parsing Nmap scans results:

* `Host vs Services`

* `Host vs OSs`

* `OS vs Hosts`

Note: The `Host vs OSs` and `OS vs Hosts` worksheets are **only** generated when Nmap scans contain OS information, when using the `-O` option in `Nmap`.

## Installation

```

$ git clone https://github.com/AresS31/ness6nmap2xlsx

# python -m pip install -r ness6nmap2xlsx/requirements.txt

```

## Usage

### Generic usage

```

$ python ness6nmap2xlsx.py [-h] [-d] [-oX OUTPUT_FILE] {nessus,nmap} ...

positional arguments:

  {nessus,nmap}

optional arguments:

  -h, --help       show this help message and exit

  -d, --debug      enable debug output

  -oX OUTPUT_FILE  output results in XLSX to the given filename

```

### Nessus usage

```

$ python ness6nmap2xlsx.py nessus [-h] [-c CONFIG_FILE] [-f FOLDERS [FOLDERS ...]] [--host HOST] -l LOGIN [--list {folders,scans}] -p PASSWORD [--port PORT] [-s SCANS [SCANS ...]]

optional arguments:

  -h, --help            show this help message and exit

  -c CONFIG_FILE, --config CONFIG_FILE

                        Configuration file for custom vulnerabilities

  -f FOLDERS [FOLDERS ...], --folders FOLDERS [FOLDERS ...]

                        folder(s) to process (support regular expressions)

  --host HOST           hostname (default value: localhost)

  -l LOGIN, --login LOGIN

                        login for Nessus authentication

  --list {folders,scans}

                        list folder(s) or scan(s) (support regular expressions)

  -p PASSWORD, --password PASSWORD

                        password for Nessus authentication

  --port PORT           port (default value: 8834)

  -s SCANS [SCANS ...], --scans SCANS [SCANS ...]

                        scan(s) to process (support regular expressions)

```

This script offers the option to `enable` the processing of specific Nessus plugins. It also offers the option to override their `name`, `description` and `severity` with custom values using a JSON file formatted as follows (the JSON key, in this case `34460`, corresponds to the `plugin id`):

```json

{

    "34460": {

        "description": "foo",

        "enable": true,

        "plugin_name": "bar",

        "severity": 666

    }

} 

```

### Nmap usage

```

$ ness6nmap2xlsx.py nmap [-h] -iX INPUT_FILES [INPUT_FILES ...]

optional arguments:

  -h, --help            show this help message and exit

  -iX INPUT_FILES [INPUT_FILES ...]

                        XML scan results files(s)

```

## Possible Improvements

- [ ] Adding new features.

- [ ] Adding new relevant worksheets.

- [ ] Source code optimisation.

## Licenses

### ness6nmap2xlsx

Copyright (C) 2017 Alexandre Teyar

Licensed under the Apache License, Version 2.0 (the "License");

you may not use this file except in compliance with the License.

You may obtain a copy of the License at

  

Unless required by applicable law or agreed to in writing, software

distributed under the License is distributed on an "AS IS" BASIS,

WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.

See the License for the specific language governing permissions and

limitations under the License.