search

infobyte / faraday

Open Source Vulnerability Management Platform
https://www.faradaysec.com
GNU General Public License v3.0
4.72k stars 875 forks source link

OpenVas parsing #448

Closed Drunkenslav closed 2 years ago

Drunkenslav commented 2 years ago

Hello,

first off, great job on this project. I love it! I would just like a bit more information from OpenVAS XML to be parsed.

What's the problem this feature will solve? Will help with user effectivity

Describe the solution you'd like If more information would be parsed it would be great. Usually for each finding Openavas adds references and CVE (if applicable)

OpenVAS XML: 

<refs>
    <ref id="CVE-2016-2183" type="cve">
    </ref>
    <ref id="CVE-2016-6329" type="cve">
    </ref>
    <ref id="CVE-2020-12872" type="cve">
    </ref>
    <ref id="https://bettercrypto.org/" type="url">
    </ref>
    <ref id="https://mozilla.github.io/server-side-tls/ssl-config-generator/" type="url">
    </ref>
    <ref id="https://sweet32.info/" type="url">

CVE's after being parsed could be hyperlinked - https://cve.mitre.org/cgi-bin/cvename.cgi?name=$CVENUM

The current parsing does give you only description and solution, but if you need more information, you need to google. But OpenVAS XML gives you nice references, so you would just click the link to get more information without wasting valuable time :)

Thanks

aenima-x commented 2 years ago

Hello @Drunkenslav can you open this issue here? https://github.com/infobyte/faraday_plugins

thats our plugin repo

f-amato commented 2 years ago

Hello @Drunkenslav Thanks you so much for reporting the issue and we are really happy that you like the Faraday ❤️ As @aenima-x mention will be better to received the issue in the plugin repository to better following of the issue! Have a amazing weekend!