My solution to a somewhat similar problem was to write the nessus configuration file on the fly. In this method you would need to identify which plugins fit with which scan types and enable them in the configuration file. My approach for this would be to use a database and web front end to manage the scan configurations. You could identify plugins by pluginid, or family, or one of the other fields.
I got a base configuration file by using NessusClient on linux and copying the .nessusconfig (or whatever the filename was, I forget) and having that as a basis. I would also keep the plugin information in a database (this can be achieved by having nessus dump SQL insert statements for all plugins -- in my case I have to tweak these). I also keep the nessus scan results in the database. This makes for a convenient way to query the results. There are probably other (possibly better) ways to achieve this, but that's my two cents. Tim Doty -----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Holemans Wim Sent: Friday, February 15, 2008 3:00 AM To: [email protected] Subject: batch processing I want to build an automatic vulnerability scan system based on Nessus. I have Nessus successfully installed on one of our unix machines and i have lists of hosts that i want to test every month. But i want to test them only for certain types of protocols : i have e.g. a list of hosts i want to test for ssh, another list for http, ... I looked around to find a document that describes this type of setup or clues how to setup ssh-only scans but i haven't found anything decent yet. Has someone done this before and do you have any documents that could help me develop this type of setup ? Thanks, Wim Holemans Netwerkdienst Universiteit Antwerpen _______________________________________________ Nessus mailing list [email protected] http://mail.nessus.org/mailman/listinfo/nessus
smime.p7s
Description: S/MIME cryptographic signature
_______________________________________________ Nessus mailing list [email protected] http://mail.nessus.org/mailman/listinfo/nessus
