Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

risk_factor to severity in host.number_of_plugins_per_risk_factor #4

Open
ZuperSero opened this issue Oct 19, 2021 · 1 comment
Open

risk_factor to severity in host.number_of_plugins_per_risk_factor #4

ZuperSero opened this issue Oct 19, 2021 · 1 comment

Comments

@ZuperSero
Copy link

ZuperSero commented Oct 19, 2021
edited
Loading

Report pulled from tenable.sc version 5.16.0
when running number_of_plugins_per_risk_factor all results return 0 on all factors. It seems to be because the they changed it from 'risk_factor' to 'severity'

host.py

def number_of_plugins_per_risk_factor(report_host, risk_factor_level):
    """
    Function returns number of all plugins reported during scan for given risk factor for given target.
    :param report_host: report host element
    :param risk_factor_level:
        'Critical'
        'High'
        'Medium'
        'Low'
        'None'
    :return: number of plugins for given risk factor
    """
    risk_factor_counter = 0
    for report_item in report_host.findall("ReportItem"):
        risk_factor = report_item.find('risk_factor')
        if risk_factor is not None:
            if risk_factor.text == risk_factor_level:
                risk_factor_counter += 1
    return risk_factor_counter
@damian-krawczyk
Copy link
Collaborator

@ZuperSero It's more than a year when you posted this issue. I checked nessus scan file downloaded today from Tenable.sc 5.23.1, <risk_factor></risk_factor> is still in nessus files as well as severity="" per each plugin. It's working at my end.

Can you try to run below test script and let me know if you still see only 0 per each risk factor? If so you can send me a private message with mentioned script result to [email protected]

nessus-file-reader/examples/nfr-host-example.py

Lines 1 to 19 in 577e21c

import nessus_file_reader as nfr
nessus_scan_file = './your_nessus_file.nessus'
root = nfr.file.nessus_scan_file_root_element(nessus_scan_file)
for report_host in nfr.scan.report_hosts(root):
report_host_name = nfr.host.report_host_name(report_host)
report_host_os = nfr.host.detected_os(report_host)
report_host_scan_time_start = nfr.host.host_time_start(report_host)
report_host_scan_time_end = nfr.host.host_time_end(report_host)
report_host_scan_time_elapsed = nfr.host.host_time_elapsed(report_host)
report_host_critical = nfr.host.number_of_plugins_per_risk_factor(report_host, 'Critical')
report_host_high = nfr.host.number_of_plugins_per_risk_factor(report_host, 'High')
report_host_medium = nfr.host.number_of_plugins_per_risk_factor(report_host, 'Medium')
report_host_low = nfr.host.number_of_plugins_per_risk_factor(report_host, 'Low')
report_host_none = nfr.host.number_of_plugins_per_risk_factor(report_host, 'None')
print(f' Report host name: {report_host_name}')
print(f' Report host OS: {report_host_os}')
print(f' Host scan time START - END (ELAPSED): {report_host_scan_time_start} - {report_host_scan_time_end} ({report_host_scan_time_elapsed})')
print(f' Critical/High/Medium/Low/None findings: {report_host_critical}/{report_host_high}/{report_host_medium}/{report_host_low}/{report_host_none}')

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@damian-krawczyk @ZuperSero