-
Notifications
You must be signed in to change notification settings - Fork 12
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Importing of ACAS/Nessus scans for patch mgmt #46
Comments
Need to know how that information would be added, what the structure is,
several examples, and how that would be matched to whatever host and
whatever checklist type.
|
Working that info to add to this. Just putting in place holders when I
have the idea, like we talked about.
|
Roger that.
I should say sanitized examples.
|
I have a test laptop, that I can fill out some checklists. Then complete
scap scans and provide both.
David Gould
Tutela
|
The Nessus scan goes with the SYSTEM, not any checklist. So we need to record the System information with the checklists separately w/ a link. And then add the Nessus scan and other info to that record. The Nessus scan file XML raw data will be saved, and then we can export as a CSV / PDF report as needed as this grows and evolves. The data in the XML file needs to be put into a CSV such as the below image and filtered. For each ReportItem record under the Report host you have code like this to parse and put into a CSV/XLSX:
There will be a separate ticket for the System information required. |
That goal it to save the XML into a field w/ the System, then show it via the web interface and export it to XLSX as well. This would be on a "system" page that has yet to be built so we need to build the system page, show all relevant information, and make the "checklist" page into that landing spot for systems. |
Basically have a list of items you read from the XML, similar to controls and such, and match it to the XML data read in. You will need the following data:
|
Need to see the relationships in the XML more per server and to find the Host Totals and Totals to finalize this requirement and get it spec'd out. |
Need the ability to import Nessus scans for patch vulnerability identification
The text was updated successfully, but these errors were encountered: