Nessus (Legacy v2.93.1 only)

<< Click to Display Table of Contents >>

Navigation:  Web Reports >

Nessus (Legacy v2.93.1 only)

warning_48

Nessus reporting functionality is currently only available for customers who are upgrading from v2.93.1 and are keeping the legacy, IIS-based web reports installed. Native integration with OpenVAS reporting is planned for a future release of EventSentry.

 

Starting with EventSentry 2.71, you can easily integrate Nessus 2.x or 3.x into your existing EventSentry reporting system. This allows you to access information provided by Nessus scans in a much more efficient manner as it provides you with the following information / capabilities:

 

Search for specific vulnerabilities across all hosts by all Nessus criteria

View vulnerabilities per host, sorted and filtered by CVSS, risk level and severity

View timelines to see vulnerability trends across some or all hosts

 

Importing Data

Since Nessus is a completely separate product from EventSentry you will need to manually or automatically import data from Nessus result files (.nbe) into the EventSentry database using the es_db_nessus_import.exe utility. The utility parses .nbe files, reformats the data and inserts it into the EventSentry database. Please see "Importing data from .nbe files" for more information on the syntax of this command-line utility.

 

Viewing Nessus Reports

Before you can view Nessus reports you will need to enable Nessus reporting in the web reports, as this feature is not enabled by default. To enable the feature, open the Profile Editor and set "Enable Nessus" to "On" under the Nessus tab. After you enabled this feature you will see a "Nessus" option in the "Inventory" menu.

 

See "Nessus Reports" for more information on how to generate Nessus reports.