[nexpose-users] Custom Vulnerabilities

[Chad Loder]

Hi Paul. Are you restarting NeXpose after deploying your new
vulnerabilities? You shouldn't need to add them to the JAR file.
NeXpose loads checks first from the JAR file and then from the
directory.

If you have collisions between builtin vuln IDs and your vuln
IDs, your vulns might be silently ignored. So please make sure
that the base filename of any vuln XML files *exactly* matches
the "id" attribute inside that .xml file.


E.g. if you have "foo-bar.xml", the file needs to contain a
vuln definition with the id of "foo-bar".

The best way to avoid collisions is to prefix all your files
(and IDs) with "cmty-".

Thanks

> -----Original Message-----
> From: nexpose-users-bounces at lists.rapid7.com [mailto:nexpose-users-
> bounces at lists.rapid7.com] On Behalf Of Paul K
> Sent: Monday, June 07, 2010 9:14 PM
> To: nexpose-users at lists.rapid7.com
> Subject: [nexpose-users] Custom Vulnerabilities
> 
> I am running both the Enterprise Edition (for production) and the
> Community Edition now for testing custom vulns. I have a question
> regarding the custom vulnerabilities Wiki entry - it says to copy the
> .vck and .xml directly to the plugin directory (i.e.,
> /opt/rapid7/nexpose/plugins/java/1/HttpScanner/1/). However, the only
> way that I can seem to make it work is to add the vck to checks.jar and
> the xml to vulns.jar (at least in the Enterprise Edition). Note, I do
> not recall trying to add any custom vulns to the Community Edition yet
> - just to the Enterprise at this time, but I need to create a number of
> custom vulns that definitely need some testing before moving into
> production.
> 
> Am I missing something with how the Wiki says to install the custom
> plugins?
> 
> Thanks,
> Paul
-------------- next part --------------
A non-text attachment was scrubbed...
Name: PGP.sig
Type: application/pgp-signature
Size: 820 bytes
Desc: not available
URL: <http://mail.metasploit.com/pipermail/nexpose-users/attachments/20100607/f07fd822/attachment.pgp>