bdd-security icon indicating copy to clipboard operation
bdd-security copied to clipboard

Published 20 hours ago verified publisher icon iriusrisk

Compatibility with Nessus 7

Open ibrahimazzam opened this issue 6 years ago • 7 comments

Hello,

I am trying to use the solution with Nessus 7, but I am having a problem with the post method that is returning this exception javax.ws.rs.ClientErrorException: HTTP 412 Precondition Failed I think that is related to the fact that Tenable removed the API from Nessus 7. Can Anyone confirm that this issue is related to that ? How can we solve this issue ?

Thanks in advance, Ibrahim AZZAM

ibrahimazzam avatar Mar 08 '18 16:03 ibrahimazzam

Hi Ibrahim, we currently have not built any support for Nessus 7. Only Nessus 5 and 6.

stephendv1 avatar Mar 09 '18 08:03 stephendv1

Eventually, Nessus 7 compatibility could be provided using some Selenium-Steps instead of the now missing API?

ratzrattillo avatar Jun 08 '18 11:06 ratzrattillo

@ibrahimazzam I was able to perform basic network scan and web application scanning using Nessus 7 through BDD-Security. Is that something that you were trying or altogether a different thing? Which post method you are talking about here?

krisctl avatar Aug 25 '18 15:08 krisctl

Hi @Krishan-Sharma could you tell us more about how you performed scanning using Nessus 7? Did you use the Nessus 6 API? Any changes needed?

stephendv1 avatar Aug 26 '18 19:08 stephendv1

Hi @stephendv1, You are right. I used Nessus 6 APIs and pointed it to the Nessus 7 install. It worked seamlessly for me to perform basic network scan and web application scan. I was planning to submit a pull request to update the Nessus client to include Nessus version 7 block.

krisctl avatar Aug 26 '18 22:08 krisctl

That's great news! If you could submit a pull request that will be much appreciated by everyone in this thread :)

On Mon, 27 Aug 2018 at 00:11, Krishan Sharma [email protected] wrote:

Hi @stephendv1 https://github.com/stephendv1, You are right. I used Nessus 6 APIs and pointed it to the Nessus 7 install. It worked seamlessly for me to perform basic network scan and web application scan. I was planning to submit a pull request to update the Nessus client to include Nessus version 7 block.

— You are receiving this because you were mentioned. Reply to this email directly, view it on GitHub https://github.com/continuumsecurity/bdd-security/issues/86#issuecomment-416076397, or mute the thread https://github.com/notifications/unsubscribe-auth/AVlr_VDzBnTKR_iomcYlj74RqltrZvImks5uUx0hgaJpZM4Si8u5 .

-- Stephen de Vries CEO

+34 616 33 81 38 javascript:void(0); @stephendv https://twitter.com/stephendv

[image: ContinuumSecurity] https://www.continuumsecurity.net/

stephendv1 avatar Aug 27 '18 07:08 stephendv1

Hello @Krishan-Sharma , thanks for your reply. Can you please help me by describing what you did exactly ? How did you point the API of Nessus 6 to Nessus 7.

Thanks in advance. Ibrahim

ibrahimazzam avatar Sep 12 '18 14:09 ibrahimazzam