Skip to content

Nessus support

Jump to bottom Edit New page
Kurt Grutzmacher edited this page Feb 1, 2014 · 3 revisions

Kvasir's currently supports communicating to a single Nessus server for importing scan results.

Setting up Nessus console credentials

Nessus scanner settings are configured in the kvasir.yaml configuration file.

Nessus YAML settings

Multiple servers may be configured:

nessus:
  servers: [
    server_one: {
        url: 'https://nessus1.server.org:8834',
        user: admin,
        password: admin,
    },
    server_two: {
        url: 'https://nessus2.server.org:8834',
        user: admin,
        password: admin,
    }
  ]

Import Nessus Scanner XML Reports

To import the results of Nessus scans from the menu bar select Import -> Nessus XML. If a valid Nessus scanner and credentials are found in your user profile a list of existing scans will be provided.

Import Nessus Scan

Setting values:

  • Nessus Report: A list of completed scans from Nessus via the API
  • Nessus XML File: A Nessus XML report file to import
  • Engineer: Engineer to assign hosts to
  • Asset Group: Asset group to assign hosts to
  • MSF Pro Workspace: Send Nexpose XML report to Metasploit Pro to be imported into this Workspace
  • Hosts to Only Include: A list of IP Addresses that will be imported, all non-matching will be skipped
  • Hosts to Ignore: A blacklist of IP Addresses to skip during importing
  • Update Host Information: Update existing hosts, otherwise skip them
  • Run in background task: Send to the scheduler to run in the background
Add a custom footer
Add a custom sidebar
Clone this wiki locally