Skip to content
Nmap Web Dashboard and Reporting
Branch: master
Clone or download
Permalink
Type Name Latest commit message Commit time
Failed to load latest commit information.
migrations first commit Oct 21, 2018
static first commit Oct 21, 2018
templates/nmapreport first commit Oct 21, 2018
.gitignore first commit Oct 21, 2018
README.md add contributor Oct 21, 2018
__init__.py first commit Oct 21, 2018
admin.py first commit Oct 21, 2018
api.py fix bug single host report API Oct 21, 2018
apps.py first commit Oct 21, 2018
functions.py first commit Oct 21, 2018
models.py first commit Oct 21, 2018
pdf.py fix bug single host report PDF Oct 21, 2018
tests.py first commit Oct 21, 2018
urls.py first commit Oct 21, 2018
views.py fix count hosts on index Oct 21, 2018

README.md


A Web Dashbord for Nmap XML Report

WebMap

WebMap

WebMap

Table Of Contents

Usage

You should use this with docker, just by sending this command:

$ mkdir /tmp/webmap
$ docker run -d \
         --name webmap \
         -h webmap \
         -p 8000:8000 \
         -v /tmp/webmap:/opt/xml \
         rev3rse/webmap /run.sh

$ # now you can run Nmap and save the XML Report on /tmp/webmap
$ nmap -sT -A -T4 -oX /tmp/webmap/myscan.xml 192.168.1.0/24

Now point your browser to http://localhost:8000

Video

-- coming soon...

Features

  • Import and parse Nmap XML files
  • Statistics and Charts on discovered services, ports, OS, etc...
  • Inspect a single host by clicking on its IP address
  • Attach labels on a host
  • Insert notes for a specific host
  • Create a PDF Report with charts, details, labels and notes
  • Copy to clipboard as Nikto, Curl or Telnet commands

XML Filenames

When creating the PDF version of the Nmap XML Report, the XML filename is used as document title on the first page. WebMap will replace some parts of the filename as following:

  • _ will replaced by a space ( )
  • .xml will be removed

Example: ACME_Ltd..xml
PDF title: ACME Ltd.

Third Parts

Security Issues

This app is not intended to be exposed on the internet. Please, DO NOT expose this app to the internet, use your localhost or, in case you can't do it, take care to filter who and what can access to WebMap with a firewall rule or something like that. Exposing this app to the whole internet could lead not only to a stored XSS but also to a leakage of sensitive/critical/private informations about your port scan. Please, be smart.

Contributors

This project is currently a beta, and I'm not super skilled on Django so, every type of contribution is appreciated. I'll mention all contributors in this section of the README file.

Contributors List

  • s3th_0x @adubaldo (bug on single host report)

Contacts

Twitter: @Menin_TheMiddle
YouTube: Rev3rseSecurity

You can’t perform that action at this time.