Hello,
Is there any way of capturing Nessus' scan results to MySQL while the
scan is in progress?
Yes, and testing that feature is very appreciated.
I'm aware that the results can be saved to external files and then fed to the database. I actually have a simple parser that does just that. However, I need to be able to do it with scans in progress without having to wait for the scan to finish.
If this requires digging into Nessus' source code, where is the right
place to start. I looked at nsr_output.c but doesn't seem like the place
to start.
The place to start is Nessus's CVS NESSUS_SQL branch. You will see that only a few nessus-core files are modified, there's also documentation (might need to be fully updated) under doc/database. However, that branch is not synched with 2.0.9 (yet)
The information I'm looking to capture are: 1) user who initiated the scan; 2) host the user connected from; 3) target specification provided; 4) results of the scan,i.e., port, protocol and plugin that
successfully exploited the port.
Please read the schema under doc/database to see if that fulfills your needs.
Additionally, I'd also be interested in capturing results of the nmap
scan that nessus performs. In particular, with the -A and -O options
turned on so the target OS and software version can be captured.
Since that information is added as Nessus notes (port open, remote OS discovered) it would be added directly into the schema.
If you find any issues with the code, compilation or Nessus with sql support enabled, please report them here.
HTH. Thanks
Javi
_______________________________________________ Nessus mailing list [EMAIL PROTECTED] http://mail.nessus.org/mailman/listinfo/nessus
