Nessus
PlexTrac supports importing files from Nessus in XML Export 2.0 or Nessus file formats. Nessus scans vulnerabilities on various assets, including servers, network devices, virtual machines, and endpoints. It identifies vulnerabilities and configuration issues that attackers could exploit and provides detailed reports on these findings.
Below are the mappings of fields and any reference notes to provide context. If a field is not listed, then PlexTrac does not currently import.
PlexTrac Field | Nessus Path | Notes |
|---|---|---|
title | <Report><ReportHost><ReportItem><plugin_name> | |
severity | <Report><ReportHost><ReportItem><severity> | |
references |  | All the "and" s are checked, and if found are appended to the refrences array. |
recommendations | <Report><ReportHost><ReportItem><solution> | |
description | <Report><ReportHost><ReportItem><description> | |
risk_score |  | |
common_identifiers | <Report><ReportHost><ReportItem><cve> and <Report><ReportHost><ReportItem><cwe> | |
caption | <Report><ReportHost name=(get asset identifier)> | We use the ReportItem element attributes port and svc_name. |
code |  | |
label | Synopsis | hard-coded |
value | <Report><ReportHost><ReportItem><synopsis> | |
label | CVSS Base Score | hard-coded |
value | <Report><ReportHost><ReportItem><cvss_base_score> | |
calculation | <Report><ReportHost><ReportItem><cvss_vector> | |
label | CVSSv3 Base Score | hard-coded |
value | <Report><ReportHost><ReportItem><cvss3_base_score> | |
calculation | <Report><ReportHost><ReportItem><cvss3_vector> | |
label | CVSSv3 Temporal Score | hard-coded |
value | <Report><ReportHost><ReportItem><cvss3_temporal_score> | |
calculation | <Report><ReportHost><ReportItem><cvss3_temporal_vector> | |
PlexTrac Field | Nessus Path | Notes |
|---|---|---|
asset | <Report><ReportHost name=(get asset identifier)> | We parse out the name of the ReportHost element for the asset identifier. |
host_fqdn | <Report><ReportHost><HostProperties (host-fqdn=<value)> | Value comes from host-fqdn attribute. |
host_rdns | <Report><ReportHost><HostProperties (host-rdns=<value)> | Value comes from host-rdns attribute. |
mac_address | <Report><ReportHost><HostProperties (host-mac-address=<value)> | Value comes from mac-address attribute. |
operating_system | <Report><ReportHost><HostProperties (host-fqdn=<value)> | Value comes from operating-system attribute. |
netbios_name | <Report><ReportHost><HostProperties (host-netbios-name=<value)> | Value comes from netbios-name attribute. |
total_cves | <Report><ReportHost><HostProperties (host-patch-summary-total-cves=<value)> | Value comes from patch-summary-total-cves attribute/ |
number | <Report><ReportHost><ReportItem><port> | |
protocol | <Report><ReportHost><ReportItem><protocol> | |
service | <Report><ReportHost><ReportItem><svc_name> | |
Last modified 22h ago