Skip to content

Nessus

Examples

Nessus
1
2
3
cat nessus.xml | reptor nessus
cat nessus.xml | reptor nessus --upload  # Upload findings as notes
cat nessus.xml | reptor nessus --push-findings  # Create findings from scan results
Pushed Nessus findings
Pushed Nessus findings
Nessus findings as notes
Nessus findings as notes

Filter your Nessus results:

Nessus Filter
1
2
3
4
cat nessus.xml | reptor nessus --severity-filter medium-critical --push-findings
cat nessus.xml | reptor nessus --include-plugins 11219,25216 --push-findings  # Include only plugin IDs 11219, 25216
cat nessus.xml | reptor nessus --exclude-plugins 11219,25216 --push-findings  # Exclude plugin IDs 11219, 25216
reptor nessus -i nessus_1.xml nessus_2.xml --push-findings  # Use multiple input files

You can add those filter settings to your config by running:

Nessus conf
1
reptor nessus --conf

Advanced usage

Check out our video for advanced usage.

Usage

 1
 2
 3
 4
 5
 6
 7
 8
 9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
usage: reptor nessus [-h] [--conf] [-i [INPUT ...]]
                     [--format | --upload | --push-findings | --template-vars | --parse | --upload-finding-templates]
                     [--severity-filter SEVERITY_FILTER] [--snoozed-filter]
                     [--exclude EXCLUDED_PLUGINS] [--include INCLUDED_PLUGINS]

Nessus vulnerability importer

optional arguments:
  -h, --help            show this help message and exit
  --conf, --config      Configure plugin settings
  -i [INPUT ...], --input [INPUT ...]
                        Input file, if not stdin (multiple files allowed)
  --format
  --upload
  --push-findings
  --template-vars       Print template variables (needed for finding template customization).
  --parse
  --upload-finding-templates
                        Upload local finding templates to SysReptor
  --severity-filter SEVERITY_FILTER
                        Filter findings by severity comma-separated ("info,low,medium,high,critical") or as range ("medium-critical")
  --snoozed-filter      Exclude snoozed vulnerabilities
  --exclude EXCLUDED_PLUGINS
                        Exclude plugin IDs, comma-separated
  --include INCLUDED_PLUGINS
                        Include plugin IDs, comma-separated; default: all are included