Ecosyste.ms: Awesome

An open API service indexing awesome lists of open source software.

Awesome Lists | Featured Topics | Projects

https://github.com/aress31/pentest2xlsx

Excel parser for various pentesting tools.
https://github.com/aress31/pentest2xlsx

excel excelparser nmap nmap-parser parser pentest pentesting report reporting reporting-tool testssl testssl-parser xlsx

Last synced: 3 months ago
JSON representation

Excel parser for various pentesting tools.

Host: GitHub
URL: https://github.com/aress31/pentest2xlsx
Owner: aress31
License: apache-2.0
Created: 2019-03-20T10:54:36.000Z (almost 6 years ago)
Default Branch: master
Last Pushed: 2023-06-13T23:58:35.000Z (over 1 year ago)
Last Synced: 2024-10-21T05:50:40.493Z (4 months ago)
Topics: excel, excelparser, nmap, nmap-parser, parser, pentest, pentesting, report, reporting, reporting-tool, testssl, testssl-parser, xlsx
Language: Python
Homepage:
Size: 60.5 KB
Stars: 28
Watchers: 3
Forks: 6
Open Issues: 0
Metadata Files:
- Readme: README.md
- Funding: .github/FUNDING.yml
- License: LICENSE

Awesome Lists containing this project

README

pentest2xlsx

`pentest2xlsx` is a highly modular python script (adding an additional parser is a trivial task) to parse the results from popular tools used by security professionals into Excel workbooks to facilitate the reporting phase of penetration tests, especially useful when dealing with large scopes as customers and testers can make use of Excel powerful filtering capabilities.

Parsers for the following tools have been implemented:
* `nmap`
* `testssl`

## Supported tools
### nmap
The following Excel worksheets are generated:
* `Host vs Service`
* `Host vs OS`
* `OS vs Hosts`

*_Note_: The `Host vs OS` and `OS vs Hosts` worksheets are only generated when nmap scan results contain OS information (using the `-O` option).*

### testssl
The following Excel worksheets are generated:
* `Host vs Certificate (Details)`
* `Host vs Certificates`
* `Host vs Protocol (Details)`
* `Host vs Protocols`
* `Host vs Vulnerability (Details)`
* `Host vs Vulnerabilities`

All testssl worksheets will be autofitted and colorized by conditional formatting.

## Installation
```
$ git clone https://github.com/AresS31/pentest2xlsx
# python -m pip install -r pentest2xlsx/requirements.txt
```

## Usage
### Generic usage
```
usage: pentest2xlsx.py [-h] [-oX OUTPUT_FILE] [-v] {nmap,testssl} ...

Parse the output from various penetration testing tools into an Excel workbook

positional arguments:
{nmap,testssl}

optional arguments:
-h, --help show this help message and exit
-oX OUTPUT_FILE, -output--xml OUTPUT_FILE
output results to a specified in XLSX
format
-v, --verbose increase verbosity level
```

### nmap usage
```
usage: pentest2xlsx.py nmap [-h] -iX INPUT_FILES [INPUT_FILES ...]

optional arguments:
-h, --help show this help message and exit
-iX INPUT_FILES [INPUT_FILES ...], --input-xml INPUT_FILES [INPUT_FILES ...]
input from nmap file(s) in XML format
```

### testssl usage
```
usage: pentest2xlsx.py testssl [-h] -iJ INPUT_FILES [INPUT_FILES ...]

optional arguments:
-h, --help show this help message and exit
-iJ INPUT_FILES [INPUT_FILES ...], --input-json INPUT_FILES [INPUT_FILES ...]
input from testssl file(s) in JSON format
```

## Possible Improvements
- [ ] Adding new parsers.
- [ ] Adding new worksheets.
- [ ] Source code optimisation.

## Donation
* Via Bitcoin : **15aFaQaW9cxa4tRocax349JJ7RKyj7YV1p**
* Via Bitcoin Cash : **qqez5ed5wjpwq9znyuhd2hdg86nquqpjcgkm3t8mg3**
* Via Ether : **0x70bC178EC44500C17B554E62BC31EA2B6251f64B**

Licensed under the Apache License, Version 2.0 (the "License");
you may not use this file except in compliance with the License.
You may obtain a copy of the License at

Unless required by applicable law or agreed to in writing, software
distributed under the License is distributed on an "AS IS" BASIS,
WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
See the License for the specific language governing permissions and
limitations under the License.