Setup

Create actionable data from your vulnerability scans

VulnWhisperer is a vulnerability report aggregator for nessus (more scanners to come). VulnWhisperer will pull all the reports and create a file with a unique filename which is then fed into logstash. Logstash extracts data from the filename and tags all of the information inside the report (see logstash_vulnwhisp.conf file). Data is then shipped to elasticsearch to be indexed.

Requirements

ElasticStack
Python 2.7
Vulnerability Scanner - (Nessus)
Optional: Message broker such as Kafka or RabbitMQ

Currently Supports

Elasticsearch 2.x
Python 2.7
Nessus

Setup

Install pip:
sudo <pkg-manager> install python-pip
sudo pip install --upgrade pip

Manually install requirements:
sudo pip install pytz
sudo pip install pandas

Using requirements file:
sudo pip install -r /path/to/VulnWhisperer/requirements.txt

cd /path/to/VulnWhisperer
sudo python setup.py install

Configuration

There are a few configuration steps to setting up VulnWhisperer:

Configure Ini file
Setup Logstash File
Import ElasticSearch Templates
Import Kibana Dashboards

Run

vuln_whisperer -c configs/example.ini

For windows, you may need to type the full path of the binary in vulnWhisperer located in the bin directory.

Credit

Big thank you to Justin Henderson for his contributions to vulnWhisperer!

Name		Name	Last commit message	Last commit date
Latest commit History 49 Commits
bin		bin
configs		configs
docs/source		docs/source
elasticsearch		elasticsearch
filebeat		filebeat
kibana/vuln_whisp_kibana		kibana/vuln_whisp_kibana
logstash		logstash
vulnwhisp		vulnwhisp
.gitignore		.gitignore
LICENSE		LICENSE
README.md		README.md
docker-compose.yml		docker-compose.yml
requirements.txt		requirements.txt
setup.py		setup.py

License

Yikez978/VulnWhisperer

Folders and files

Latest commit

History

Repository files navigation

Requirements

Currently Supports

Setup

Configuration

Run

Credit

About

Resources

License

Stars

Watchers

Forks

Languages