Nmap/Nessus question
Steve Fletcher
safletcher at insightbb.com
Wed Dec 1 18:13:25 EST 2004
Thanks for the quick reply! It sounds like the best thing to do would be to
take the nmap log and create from it a list of IP addresses to scan, and
then provide that list to nessus. Correct me if I'm wrong, but it sounds
like awk would be a good way to accomplish this.
Thanks for the help!
Steve
-----Original Message-----
From: Michel Arboi [mailto:mikhail at nessus.org]
Sent: Wednesday, December 01, 2004 4:51 PM
To: Steve Fletcher
Cc: nessus at list.nessus.org
Subject: Re: Nmap/Nessus question
On Wed Dec 01 2004 at 23:36, Steve Fletcher wrote:
> I have been trying to perform a scan with nmap, and then feed the
greppable
> results into nessus to help with filtering out certain hosts.
This won't help: if the host is not found in the Nmap filter, the
nmap.nasl wrapper launches Nmap.
> Does anyone have any recommendations on how to accomplish this?
Feed Nessus with a list of IP and exclude your host from this list.
Or write a specific ACT_SETTINGS plugin that declares this host dead.
Real life examples of this technics are dont_scan_printers.nasl and
labrea.nasl; or even ping_host.nasl
> Also, I would really like to have the nmap log in addition to the nessus
> results, so I don't want to rely on nmap.nasl. I have purchased the
recent
> nessus book from Syngress, but there is no mention of this in it anywhere.
This is because the book was written before the Nmap wrapper was
modified.
--
arboi at alussinan.org http://arboi.da.ru
NASL2 reference manual http://michel.arboi.free.fr/nasl2ref/
More information about the Nessus
mailing list