[nexpose-users] Nexpose Reporting Functionality
Jonathan Cran
jcran at 0x0e.org
Tue Apr 27 11:49:08 PDT 2010
> I'm trying to generate a report of an assessment I performed. I only want to see critical and severe vulnerabilities listed BY IP address.
okay, there are a couple ways to get vulns/ip. I typically use the PCI
audit report to do this, but this isn't available in community.
> If I use the "Highest Risk Vulnerabilities" report, it returns the vulnerabilities I'm looking for, but doesn't specify which systems those vulnerabilities were discovered on. Does anyone know if there is a good way to tie these together, or if I am going to need to build a custom report? Is there another built-in report that someone might suggest? I've looked at almost all of them and none seem to fit what I am looking for.
another way to do it is with the vulnerability report card. -- you can
simply copy one of the other report templates & modify it. the report
component you'll want to add to your custom report is 'Node
Vulnerability Report Card' - this will give you critical / severe /
moderate listed by node IP. don't have a copy of community available,
so if this isn't available in the free version, you may need to
upgrade.
jcran
More information about the nexpose-users
mailing list