gabiliberato/NexposeParser

A custom tool created in Python for quickly parsing Nexpose Scans

NexposeParser

What is NexposeParser?

NexposeParser was a tool created in Python aimed at supporting a Vulnerability Management Program.

The purpose of the tool was simple; parse the Nexpose Scans and identify missing Asset Names and Asset Owners providing the Security Team a list of devices that needed to be identified.

Why do you need to identify the Asset Name or Owner?

By identifying the Asset Name and Owner the Security Team was able to quickly asses who was responsible for system patching and vulnerability mitigations on the specified system.

Having a list of unidentified devices allowed IT Security to submit the list to the Network Infrastructure team to properly identify and tag the machines, which later was used to update Nexpose.

Install:

You can install NexposeParse by cloning this Git Repository

$ git clone https://github.com/jhalon/NexposeParse.git

Usage:

NeXpose Parser - A Quick Python Script to Parse NeXpose Scans
-------------------------------------------------------------

Usage Information:
Step 1: Enter the .cvs file name of the NeXpose Scan
Step 2: Select one of the following parse options:
         - 1: Print out all Asset Names that don't have an Asset Owner
         - 2: Print out all Asset IP's that don't have an Asset Name
         - 3: Print out all Asset IP's that don't have an Asset Name or Asset Owner
Step 3: Enter a name for the output file
Step 4: Wait for the parse to complete
Step 5: Done!

You can use NexposeParser both on Windows and Linux. You have an option of just running the Python Script, or, if you already want a prepackaged application, you can download the dist folder which contains a x64 executable for Windows with the necessary files.

I will also include a setup.py file which is used to package the python program into an executable file.

For Linux:

$ ./nexpose_parse.py

For Windows:

C:\Users\UserName\Desktop\dist\nexpose_parse.exe

Requirements:

Since this was created using Python v2.7.13 it will not be compatible with Python v3.x.

• Python v2.7.13 - Download

If you want to utilize the setup.py file to package the application you will need to download py2exe.

• py2exe v0.6.9 - Download

Bugs?

• Please Submit a new Issue
• Submit a Pull Request
• Contact me

License:

NexposeParser is under the terms of the MIT License, follow clarification in the License File.