Links

Nessus

PlexTrac supports importing files from Nessus in XML Export 2.0 or Nessus file formats. Nessus scans vulnerabilities on various assets, including servers, network devices, virtual machines, and endpoints. It identifies vulnerabilities and configuration issues that attackers could exploit and provides detailed reports on these findings.
Below are the mappings of fields and any reference notes to provide context. If a field is not listed, then PlexTrac does not currently import.

Finding Field Mappings

PlexTrac Field
Nessus Path
Notes
title
<Report><ReportHost><ReportItem><plugin_name>
severity
<Report><ReportHost><ReportItem><severity>
references
All the "and" s are checked, and if found are appended to the refrences array.
recommendations
<Report><ReportHost><ReportItem><solution>
description
<Report><ReportHost><ReportItem><description>
risk_score
common_identifiers
<Report><ReportHost><ReportItem><cve> and <Report><ReportHost><ReportItem><cwe>
caption
<Report><ReportHost name=(get asset identifier)>
We use the ReportItem element attributes port and svc_name.
code
label
Synopsis
hard-coded
value
<Report><ReportHost><ReportItem><synopsis>
label
CVSS Base Score
hard-coded
value
<Report><ReportHost><ReportItem><cvss_base_score>
calculation
<Report><ReportHost><ReportItem><cvss_vector>
label
CVSSv3 Base Score
hard-coded
value
<Report><ReportHost><ReportItem><cvss3_base_score>
calculation
<Report><ReportHost><ReportItem><cvss3_vector>
label
CVSSv3 Temporal Score
hard-coded
value
<Report><ReportHost><ReportItem><cvss3_temporal_score>
calculation
<Report><ReportHost><ReportItem><cvss3_temporal_vector>

Asset Field Mappings

PlexTrac Field
Nessus Path
Notes
asset
<Report><ReportHost name=(get asset identifier)>
We parse out the name of the ReportHost element for the asset identifier.
host_fqdn
<Report><ReportHost><HostProperties (host-fqdn=<value)>
Value comes from host-fqdn attribute.
host_rdns
<Report><ReportHost><HostProperties (host-rdns=<value)>
Value comes from host-rdns attribute.
mac_address
<Report><ReportHost><HostProperties (host-mac-address=<value)>
Value comes from mac-address attribute.
operating_system
<Report><ReportHost><HostProperties (host-fqdn=<value)>
Value comes from operating-system attribute.
netbios_name
<Report><ReportHost><HostProperties (host-netbios-name=<value)>
Value comes from netbios-name attribute.
total_cves
<Report><ReportHost><HostProperties (host-patch-summary-total-cves=<value)>
Value comes from patch-summary-total-cves attribute/
number
<Report><ReportHost><ReportItem><port>
protocol
<Report><ReportHost><ReportItem><protocol>
service
<Report><ReportHost><ReportItem><svc_name>
Last modified 22h ago
© 2023 PlexTrac, Inc. All rights reserved.