GitHub Sale: sign up for any paid plan this week and pay nothing until January 1, 2009!  [ hide ]

dxoigmn / achilles fork watch download tarball
public
Description: A web-based client to manage Nessus scans.
Clone URL: git://github.com/dxoigmn/achilles.git 
Revert previous commit and actually fix the bug.
dxoigmn (author)
Thu Jun 19 15:47:45 -0700 2008
commit  d536127bfd14703c1de0173aa7e639b80b167f26
tree    33dc36ce90f58ad48a82d55990c71b637d85a3e3
parent  4033795161abea77c98d00c96a73e1d39d69e3e7
name age
history
message
file .gitignore Sat May 03 16:57:10 -0700 2008 Add necessary files and directories. [dxoigmn]
file LICENSE Sat May 03 00:10:00 -0700 2008 Beautify legalese. [dxoigmn]
file README.markdown Sat May 31 22:03:53 -0700 2008 Upgraded to work with Rails 2.1 and Haml 2.0 [dxoigmn]
file Rakefile Tue Mar 04 01:18:41 -0800 2008 Importing rails project. [dxoigmn]
directory app/ Thu Jun 19 15:47:45 -0700 2008 Revert previous commit and actually fix the bug. [dxoigmn]
directory config/ Sat May 31 22:07:24 -0700 2008 Specify gem version explicitly. [dxoigmn]
directory db/ Sat May 31 22:03:53 -0700 2008 Upgraded to work with Rails 2.1 and Haml 2.0 [dxoigmn]
directory doc/ Tue Mar 04 01:18:41 -0800 2008 Importing rails project. [dxoigmn]
directory lib/ Sat May 31 22:03:53 -0700 2008 Upgraded to work with Rails 2.1 and Haml 2.0 [dxoigmn]
directory log/ Sat May 03 16:57:10 -0700 2008 Add necessary files and directories. [dxoigmn]
directory public/ Sat May 31 22:35:34 -0700 2008 Use jquery branch of attribute_fu [dxoigmn]
directory script/ Sat May 31 22:03:53 -0700 2008 Upgraded to work with Rails 2.1 and Haml 2.0 [dxoigmn]
directory test/ Sun May 04 16:30:47 -0700 2008 Add classifications controller and view. [dxoigmn]
directory vendor/ Sat May 31 22:35:34 -0700 2008 Use jquery branch of attribute_fu [dxoigmn]
README.markdown

Achilles

Achilles is a web-based Nessus client with the added ability to prioritize vulnerabilities by severity. Achilles was built because we needed the ability to prioritize vulnerabilities by location. For example, a vulnerability found on a host in the administrative network might be prioritized much higher than a vulnerability found on a host in the residential network. Achilles allows you to customize this prioritization via several techniques.

In Achilles, a vulnerability inherits almost all of its characteristics from a Nessus plugin. For example, if you were to modify a plugin’s severity at a specific location it will be reflected in all vulnerabilities associated with that plugin. However, depending on your setup Nessus could be utilizing several thousand plugins at any given time. It would be a time consuming task to modify the severity in every location for all plugins. Thus, Achilles abstracts this to what we call the severity matrix. The severity matrix is simply a mapping from plugin classifications and location to a severity.

The ability to classify plugins is also a unique ability of Achilles. Because every Nessus plugin must specify a risk and family, Achilles allows you to map these to classifications. For example, a plugin that specifies a “high” risk and as a “backdoor” family you might classify as “compromised.” This mapping is entirely your choice and should be chosen carefully.

In general, vulnerability severities are inherited in the following order:

1. A severity specified on the vulnerability itself 2. A severity specified on the vulnerability’s plugin 3. A severity specified on the severities matrix.

A minimal Achilles installation should specify locations, plugin classifications, and the severity matrix. Achilles will run with these being empty, but will be unable to prioritize vulnerabilities.

Installation

Installing Achilles is similar to any other Rails-based application. You can play around with Achilles locally using a sqlite3 database but is recommended to use MySQL in production.

To play around with Achilles you must first edit the config/environment.rb file. There are several things you will want to change:

1. The session secret (config.action_controller.session[:secret], use rake secret to generate a new secret) 2. The nmap executable path (config.app_config.nmap_path) 3. Where results from nmap should be stored (config.app_config.nmap_path_results) 4. The nessus executable path (config.app_config.nessus_path) 5. Where nessus results should be stored (config.app_config.nessus_results_path and config.app_config.nessus_plugins_path)

Then run the following commands:

rake db:create
rake db:migrate
rake db:populate
./script/server

Once the server is running locally, you can open your web browser to http://0.0.0.0:3000.

Dependencies

Achilles has been developed on Rails 2.0.2. It is recommended you run Achilles on this version as future version might not be backwards compatible.

Achilles is also dependent on the follow ruby gems: - chronic - netaddr - haml - libxml-ruby

Run the following command to install:

rake gems:install

License

Copyright (c) 2007-2008, The Trustees of Dartmouth College.

Achilles is released as open source under a BSD license. See LICENSE for details.

The several plugins (./vendor/plugins/) included in Achilles are copyright their respective authors.