Create actionable data from your vulnerability scans
VulnWhisperer is a vulnerability report aggregator for nessus (more scanners to come). VulnWhisperer will pull all the reports and create a file with a unique filename which is then fed into logstash. Logstash extracts data from the filename and tags all of the information inside the report (see logstash_vulnwhisp.conf file). Data is then shipped to elasticsearch to be indexed.
- ElasticStack
- Python 2.7
- Vulnerability Scanner - (Nessus)
- Optional: Message broker such as Kafka or RabbitMQ
- Elasticsearch 2.x
- Python 2.7
- Nessus
Install pip:
sudo <pkg-manager> install python-pip
sudo pip install --upgrade pip
Manually install requirements:
sudo pip install pytz
sudo pip install pandas
Using requirements file:
sudo pip install -r /path/to/VulnWhisperer/requirements.txt
python /path/to/VulnWhisperer/setup.py install
There are a few configuration steps to setting up VulnWhisperer:
- Configure Ini file
- Setup Logstash File
- Import ElasticSearch Templates
- Import Kibana Dashboards
Big thank you to Justin Henderson for his contributions to vulnWhisperer!