Thanks for hints, you describe exactly what I need, but I need that in OpenVAS, because this is one of many features, which I want from instanton, which I am creating. One dashboard to view many aspects of network.
MCh Michal Chrobak IT Security Systems Engineer tel. +48 22 122 09 42 tel. +48 503 555 769-----Original Message----- From: Thijs Stuurman [mailto:[email protected]] Sent: Thursday, March 23, 2017 3:05 PM To: [email protected] Cc: Michal Chrobak <[email protected]> Subject: RE: Get results similar to nmap -sV You probably want this from OpenVAS but I cannot help you there. I recently needed something similar for a quick overview of the netwerk after I had done both an OpenVAS and Nessus scan and ended up using the output option -o in nmap: -oN/-oX/-oS/-oG <file>: Output scan in normal, XML, s|<rIpt kIddi3 and Grepable format, respectively, to the given filename. nmap -sV -oG filename.txt 127.0.0.1 """ root@xxx:~# nmap -sV -oG filename.txt 127.0.0.1 Starting Nmap 7.40 ( https://nmap.org ) at 2017-03-23 14:59 CET Nmap scan report for localhost (127.0.0.1) Host is up (0.000017s latency). Not shown: 997 closed ports PORT STATE SERVICE VERSION 22/tcp open ssh OpenSSH 6.6.1p1 (protocol 2.0) 25/tcp open smtp Postfix smtpd 80/tcp open http Apache httpd 2.4.7 Service Info: Hosts: xxx.hostname.tld, xxx.hostname.tld Service detection performed. Please report any incorrect results at https://nmap.org/submit/ . Nmap done: 1 IP address (1 host up) scanned in 9.31 seconds root@xxx:~# cat filename.txt # Nmap 7.40 scan initiated Thu Mar 23 14:59:11 2017 as: nmap -sV -oG filename.txt 127.0.0.1 Host: 127.0.0.1 (localhost) Status: Up Host: 127.0.0.1 (localhost) Ports: 22/open/tcp//ssh//OpenSSH 6.6.1p1 (protocol 2.0)/, 25/open/tcp//smtp//Postfix smtpd/, 80/open/tcp//http//Apache httpd 2.4.7/ Ignored State: closed (997) # Nmap done at Thu Mar 23 14:59:20 2017 -- 1 IP address (1 host up) scanned in 9.31 seconds """ Afterwards I grepped on "Ports" (or perhaps a -v on Up) and cleaned up the output a bit to get a workable simple overview per host. Thijs Stuurman Security Operations Center | KPN Internedservices [email protected] | [email protected] T: +31(0)299476185 | M: +31(0)624366778 PGP Key-ID: 0x16ADC048 (https://pgp.surfnet.nl/) Fingerprint: 2EDB 9B42 D6E8 7D4B 6E02 8BE5 6D46 8007 16AD C048 W: https://www.internedservices.nl | L: http://nl.linkedin.com/in/thijsstuurman -----Oorspronkelijk bericht----- Van: Openvas-discuss [mailto:[email protected]] Namens Michal Chrobak Verzonden: donderdag 23 maart 2017 13:10 Aan: [email protected] Onderwerp: [Openvas-discuss] Get results similar to nmap -sV Hi, I'm trying to prepare some nice output which gives me something like this: Hostname / IP Operation System Open ports Service name and version running under open ports (or more precision: banner which this service returns [I know it can be changed and not accurate]). Almost perfect is Asset Management -> Host details, but there is no information about services. In Scan Mgmt -> Reports -> report_name -> Vulnerability=Services gives very often very general information like " A TLScustom server answered on this port " (where nmap gives "VMware VirtualCenter Web service"). I tried to make some custom scan config to run wrapper for nmap, but I cant' see results similar to nmap -sV which I need. I would be very gracefully if anyone can help. Best Regards, Michal Chrobak Michal Chrobak IT Security Systems Engineer tel. +48 22 122 09 42 tel. +48 503 555 769 SANSEC Poland S.A. NIP: 7010352299, KRS: 0000429238, REGON: 146270315, Spółka zarejestrowana przez Sąd Rejonowy dla M. St. Warszawy w Warszawie, XII Wydział Gospodarczy Krajowego Rejestru Sądowego, Kapitał zakładowy: 1 000 000 PLN. Niniejsza wiadomość zawiera informacje zastrzeżone i stanowiące tajemnicę przedsiębiorstwa SANSEC Poland S.A. _______________________________________________ Openvas-discuss mailing list [email protected] https://lists.wald.intevation.org/cgi-bin/mailman/listinfo/openvas-discuss _______________________________________________ Openvas-discuss mailing list [email protected] https://lists.wald.intevation.org/cgi-bin/mailman/listinfo/openvas-discuss
