Vulnerabilities section¶

Here you will find all details about data visible in target file in Vulnerabilities section.

Column details explanation¶

Header name Column name.

Description Short description for particular data.

Source Information about exact source from where data is being taken.

Post-processing Information how the gathered data is processed, if post-processed at all.

Column type
default - column always appears in report.

debug - column appears in report only if add debug data option has been enabled.

Note

Some of the columns are visible only if you use add debug data option for analysis (see Settings details to adhere more information about this option). For all of these columns you will find below information Column type : debug.

Nessus scanner IP¶

Nessus scanner IP - column details¶

Header name Nessus scanner IP

Description Scanner IP used during scan of reported host based on Plugin ID 19506 output.

Source nessus file > ReportHost/ReportItem/[pluginID="19506"]/plugin_output

Post-processing

If Plugin ID 19506 output exist extract Scanner IP from output line with Scanner IP :

If Plugin ID 19506 output does not exist return:

No output recorded. - if plugin appeared in the report but does no return any output,

Check Audit Trail. - if plugin does not appeared in the report but used during scan,

{plugin_id} not enabled. - if plugin has not been enabled in policy used during scan.

Column type debug

Nessus scan name¶

Nessus scan name - column details¶

Header name Nessus scan name

Description Scan name given by user during scan setting up.

Source nessus file > Report/name

Post-processing none

Column type debug

Nessus file name¶

Nessus file name - column details¶

Header name Nessus file name

Description Nessus file name assigned during the file downloading.

Source nessus file

Post-processing Absolute path of the given file.

Column type debug

Target¶

Target - column details¶

Header name Target

Description Name of reported host. This can be either IP or FQDN, depending on this what has been given as target.

Source nessus file > ReportHost/[@name='name']

Post-processing none

Column type debug, default

Hostname¶

Hostname - column details¶

Header name Hostname

Description Hostname of reported host.

Source nessus file > ReportHost/HostProperties/tag/[@name='hostname']

Post-processing

Value changed to lowercase.

If hostname field contains FQDN only hostname will be returned.

Column type debug, default

FQDN¶

FQDN - column details¶

Header name FQDN

Description FQDN of reported host.

Source nessus file > ReportHost/HostProperties/tag/[@name='host-fqdn']

Post-processing Value changed to lowercase.

Column type debug, default

IP¶

IP - column details¶

Header name IP

Description IP of reported host.

Source nessus file > ReportHost/HostProperties/tag/[@name='host-ip']

Post-processing none

Column type debug, default

Scanned¶

Scanned - column details¶

Header name Scanned

Description
Information if target host has been scanned.

yes if target host is on the list of reported hosts.

no if target host is not on the list of reported hosts.

Source
nessus file > Preferences/ServerPreferences/preference/[name='TARGET']/value

nessus file > ReportHost/[@name='name']

Post-processing none

Column type debug, default

Credentialed checks¶

Credentialed checks - column details¶

Header name Credentialed checks

Description Information if reported host has been scanned with credentialed checks.

Source nessus file > ReportHost/ReportItem/[pluginID="19506"]/plugin_output

Post-processing

If Plugin ID 19506 output exist extract yes or no from output line with Credentialed checks :.

If Plugin ID 19506 output does not exist return no.

Column type debug, default

Policy name¶

Policy name - column details¶

Header name Policy name

Description Policy name selected by user during scan setting up.

Source nessus file > Policy/policyName

Post-processing none

Column type debug

Protocol¶

Protocol - column details¶

Header name Protocol

Description Exact protocol type returned by Nessus.

Source nessus file > ReportHost/ReportItem/[@protocol]

Post-processing none

Column type debug, default

Service Name¶

Service Name - column details¶

Header name Service Name

Description Exact service name returned by Nessus.

Source nessus file > ReportHost/ReportItem/[@svc_name]

Post-processing none

Column type debug, default

Port¶

Port - column details¶

Header name Port

Description Exact port returned by Nessus.

Source nessus file > ReportHost/ReportItem/[@port]

Post-processing none

Column type debug, default

Plugin ID¶

Plugin ID - column details¶

Header name Plugin ID

Description Exact Plugin ID returned by Nessus.

Source nessus file > ReportHost/ReportItem/[@pluginID]

Post-processing none

Column type debug, default

Plugin name¶

Plugin name - column details¶

Header name Plugin name

Description Exact Plugin Name returned by Nessus.

Source nessus file > ReportHost/ReportItem/[@pluginName]

Post-processing none

Column type debug, default

Plugin type¶

Plugin type - column details¶

Header name Plugin type

Description Exact Plugin type returned by Nessus.

Source nessus file > ReportHost/ReportItem/plugin_type

Post-processing none

Column type debug, default

Risk Factor¶

Risk Factor - column details¶

Header name Risk Factor

Description Exact Plugin Risk Factor returned by Nessus.

Source nessus file > ReportHost/ReportItem/risk_factor

Post-processing none

Column type debug, default

Plugin family¶

Plugin family - column details¶

Header name Plugin family

Description Exact Plugin Family returned by Nessus.

Source nessus file > ReportHost/ReportItem/[@pluginFamily]

Post-processing none

Column type debug, default

Plugin file name¶

Plugin file name - column details¶

Header name Plugin file name

Description Exact Plugin file name returned by Nessus.

Source nessus file > ReportHost/ReportItem/fname

Post-processing none

Column type debug

Plugin version¶

Plugin version - column details¶

Header name Plugin version

Description Exact Plugin version returned by Nessus.

Source nessus file > ReportHost/ReportItem/script_version

Post-processing none

Column type debug, default

Plugin publication date¶

Plugin publication date - column details¶

Header name Plugin publication date

Description Exact Plugin publication date returned by Nessus.

Source nessus file > ReportHost/ReportItem/plugin_publication_date

Post-processing Return in format yyyy-mm-dd.

Column type debug, default

Plugin modification date¶

Plugin modification date - column details¶

Header name Plugin modification date

Description Exact Plugin modification date returned by Nessus.

Source nessus file > ReportHost/ReportItem/plugin_modification_date

Post-processing Return in format yyyy-mm-dd.

Column type debug, default

Plugin description¶

Plugin description - column details¶

Header name Plugin description

Description Exact Plugin description returned by Nessus.

Source nessus file > ReportHost/ReportItem/description

Post-processing none

Column type debug, default

Solution¶

Solution - column details¶

Header name Solution

Description Exact Plugin solution returned by Nessus.

Source nessus file > ReportHost/ReportItem/solution

Post-processing none

Column type debug, default

Plugin output¶

Plugin output - column details¶

Header name Plugin output

Description Exact Plugin output returned by Nessus.

Source nessus file > ReportHost/ReportItem/plugin_output

Post-processing none

Column type debug, default

CVE counter¶

CVE counter - column details¶

Header name CVE counter

Description Number of CVE assigned to particular Plugin returned by Nessus.

Source nessus file > ReportHost/ReportItem/cve

Post-processing none

Column type debug, default

CVE number¶

CVE number - column details¶

Header name CVE number

Description List of CVE assigned to particular Plugin returned by Nessus.

Source nessus file > ReportHost/ReportItem/cve

Post-processing none

Column type debug, default

Exploit available¶

Exploit available - column details¶

Header name Exploit available

Description Information if Exploit is available.

Source nessus file > ReportHost/ReportItem/exploit_available

Post-processing none

Column type debug, default

Exploit code maturity¶

Exploit code maturity - column details¶

Header name Exploit code maturity

Description Information about Exploit code maturity.

Source nessus file > ReportHost/ReportItem/exploit_code_maturity

Post-processing none

Column type debug, default

Exploit framework metasploit¶

Exploit framework metasploit - column details¶

Header name Exploit framework metasploit

Description Information about Exploit framework metasploit.

Source nessus file > ReportHost/ReportItem/exploit_framework_metasploit

Post-processing none

Column type debug, default

Exploitability ease¶

Exploitability ease - column details¶

Header name Exploitability ease

Description Information if Exploitability is ease.

Source nessus file > ReportHost/ReportItem/exploitability_ease

Post-processing none

Column type debug, default