nessus_report_downloader

Name : Nessus Report downloader

Original Author : Nikhil Raj ( [email protected] )

Contributors : novaksam (Nessus 8 compatibility), gitmopp (Python3 version), atluxity (Error handling, timestamps)

Version: 1.3

Last Updated : 15 Dec 2020

Description:

A python script for automating the download of nessus reports in multiple formats.

Usage:

1. Display help

   $ python nessus_report_downloader.py -h

   Output: usage: python nessus_report_downloader.py -i <127.0.0.1> -u <nessus_user> -p <nessus_pass> [OPTIONS]...

   A python script for automating the report download from nessus server
   
   optional arguments:
     -h, --help            show this help message and exit
     -i SERVER, --server SERVER
                           IP[:PORT] of nessus server
     -u USER, --user USER  username of nessus server
     -p PASSWD, --passwd PASSWD
                           password of nessus server
     -s SCAN_ID, --scan-id SCAN_ID
                           use comma separated list of scan id(s) or 'all'
     -d FOLDER_ID, --folder-id FOLDER_ID
                           use comma separated list of folder id(s)
     -f FORMAT, --format FORMAT
                           use comma separated list of report format; [0]-nessus
                           (Default), [1]-pdf, [2]-html, [3]-csv, [4]-nessus-db
     -c CHAPTER, --chapter CHAPTER
                           use comma separated list of chapters;
                           [0]-vuln_hosts_summary, [1]-vuln_by_host (Default),
                           [2]-vuln_by_plugin, [3]-compliance_exec,
                           [4]-compliance, [5]-remediations
     --db-pass DB_PASS     password for encrypting nessus-db file(s), if none
                           specified use 'nessus'
     -t, --timestamp       enable timestamp prefix on script output
   
   Report bugs at [email protected]
   

2. Display nessus scan summary table having scan_id, name and folder_id

   $ python nessus_report_downloader.py -i <nessus_server_ip> -u <nessus_user> -p <nessus_passwd>

   $ python nessus_report_downloader.py -i 127.0.0.1 -u nessus -p pass@123

   Output:

   +----+------------------------------+-----------+-----------+---------------------+------------------------+
   | id |             name             | folder_id |   status  |    creation_date    | last_modification_date |
   +----+------------------------------+-----------+-----------+---------------------+------------------------+
   | 12 | P@wn3d!! - Home network scan |     3     | completed | 2017-08-05 22:13:17 |  2017-08-05 22:16:38   |
   | 23 |        Metasploitable        |     3     | completed | 2017-08-03 21:45:23 |  2017-08-03 21:53:19   |
   | 19 |          Test-win7           |     3     | completed | 2017-07-31 01:13:25 |  2017-07-31 01:13:45   |
   | 14 |    Win7 Test -Post Wnycry    |     3     | completed | 2017-07-23 18:40:30 |  2017-07-23 18:40:46   |
   | 11 |          Win7 Test           |     3     | completed | 2017-07-23 13:35:18 |  2017-07-23 13:35:36   |
   +----+------------------------------+-----------+-----------+---------------------+------------------------+
   

3. Download nessus report (Optional parameter description):

   Scan Id (-s):

   - List of comma seperated scan id for download 
   $ python nessus_report_downloader.py -i <nessus_server_ip> -u <nessus_user> -p <nessus_passwd> -s <11,12,14>
   

   Folder ID (-d):

   - List of comma seperated folder id for downloading all the scans inside it
   $ python nessus_report_downloader.py -i <nessus_server_ip> -u <nessus_user> -p <nessus_passwd> -d <3>
   

   Output Format (-f):

   0 -     Nessus XML data (*.nessus) [Default]
   1 -     PDF Format 
   2 -     HTML Format
   3 -     CSV Format
   4 -     Nessus encrypted database password
   

   Chapter (-c) : ( Applicable only when downloading in PDF or HTML format)

   0 -     vuln_hosts_summary 
   1 -     vuln_by_host        [Default]
   2 -     vuln_by_plugin
   3 -     compliance_exec
   4 -     compliance
   5 -     remediations
   

   Nessus Database password ( --db-pass)

   - password required for encrypting nessus-db files 
   - If not specified, Default password = "nessus"                    
   

   Example:

   1. Download nessus report for scan_id 11, 12 and 14 in default *.nessus format

      $ python nessus_report_downloader.py -i 127.0.0.1 -u nessus -p pass@123 -s 11,12,14 -f 0

   2. Download nessus report for scan_id 11 in nessus database format using password "secret_pass"

      $ python nessus_report_downloader.py -i 127.0.0.1 -u nessus -p pass@123 -s 11 -f 4 --db-pass secret_pass

   3. Download nessus report for scan_id 11 and 12 in pdf and html format and group by host (vuln_by_host)

      $ python nessus_report_downloader.py -i 127.0.0.1 -u nessus -p pass@123 -s 11,12,14 -f 1,2 -c 1

   4. Download nessus report for scan_id 11 and 12 in csv and html format and group by vulnerability (vuln_by_plugin)

      $ python nessus_report_downloader.py -i 127.0.0.1 -u nessus -p pass@123 -s 11,12 -f 2,3 -c 2

   5. Download all nessus report in default *.nessus format\

      $ python nessus_report_downloader.py -i 127.0.0.1 -u nessus -p pass@123 -s all -f 0

   6. Download all nessus report in pdf and html format and group by vulnerability (vuln_by_plugin)

      $ python nessus_report_downloader.py -i 127.0.0.1 -u nessus -p pass@123 -s all -f 1,2 -c 2

   7. Download all nessus report in folder_id 3 in default *.nessus format

      $ python nessus_report_downloader.py -i 127.0.0.1 -u nessus -p pass@123 -d 3 -f 0

Known Issues

2021-08-13 - When using PDF file format there seem to be something happening between the while "loading" loop in line 241 and the if "ready" check in line 248. Did not have time to investigate. The result is that the pdf is never downloaded.