[nexpose-users] Creating custom vulnerability checks in NeXpose
Chad Loder
Chad_Loder at rapid7.com
Mon Mar 15 08:16:09 PDT 2010
Hi folks.
We've had a lot of interest from the user community in creating custom vulnerability checks in NeXpose. In response, we have begun to open up our internal developer documentation and training materials to the community at large. This weekend we added 3 tutorials on our community wiki:
* A short tutorial which shows you how to create and run your first custom vulnerability check in NeXpose. We took a simple check from Nikto (a great tool if you haven't used it) and re-implemented the check in NeXpose so you can see the difference. The vuln check creation process is simple and the tutorial should take you about 15-20 minutes.
http://community.rapid7.com/redmine/projects/nexpose/wiki/Writing_Vulnerability_Checks
* Another tutorial showing how to convert a NASL check to NeXpose (this will be helpful for those of you who are familiar with Nesuss or OpenVAS).
http://community.rapid7.com/redmine/projects/nexpose/wiki/Converting_a_NASL_check_to_NeXpose
* A detailed reference guide with advanced examples of how to create complex vulnerability checks in NeXpose. There are almost 20 examples here and we are adding more every day.
http://community.rapid7.com/redmine/projects/nexpose/wiki/Vulnerability_Check_Examples
If you have any questions about how to write vulnerability checks, please respond to the list or join us on #rapid7 on irc.freenode.net. We have a lot of internal documentation that we could post online, so we'd love to hear your feedback on what you want us to cover next.
Thanks!
Chad Loder
VP Engineering, Rapid7
More information about the nexpose-users
mailing list