Project RF
I created Project RF to have a reporting framework that provides consistant reports for various vulnerability scanning tools. The project started with support for Nessus, Eeye Retina, and Nmap. I’ve since included reporting for HP WebInpect, AppScan AppDetective, Kismet, and GFI Languard. This project is still in its alpha stages as I’m not a top notch web program developer. Scan results are exported to XML which is then uploaded, parsed, and imported into a backend MySQL database. I have found this framework very useful in generating reports for my workpapers. I continue to work on this project between audits and hope to have it ready for easy setup for any state auditor that is interested in it. Send me an email if you are interested in using this application. I can possibly create a stripped down version for just Nessus and Nmap.
Upload Nessus File
Generate Nessus Report
Nessus Report
[...] and workpapers. Just remember to keep the original Nmap results. I’ve developed a LAMP framework to parse and load Nmap results into a database for reporting and analysis. However if you are just [...]
Using Perl to Parse Nmap XML at Information Systems Auditing
9 Nov 09 at 10:34 am