-
Notifications
You must be signed in to change notification settings - Fork 1
Expand file tree
/
Copy pathFindingCount.py
More file actions
138 lines (120 loc) · 5.14 KB
/
FindingCount.py
File metadata and controls
138 lines (120 loc) · 5.14 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
import os
import sys
import argparse
import xml.etree.ElementTree as ET
from collections import defaultdict
from tabulate import tabulate
import csv
def parse_nessus(file_path):
live_hosts = set()
unique_findings = defaultdict(set)
total_findings = defaultdict(int)
try:
tree = ET.parse(file_path)
root = tree.getroot()
except Exception as e:
print(f"Error reading {file_path}: {e}")
return None
for report in root.findall(".//Report"):
for host in report.findall("ReportHost"):
host_ip = host.attrib.get("name")
live_hosts.add(host_ip)
for item in host.findall("ReportItem"):
severity = item.attrib.get("severity", "0")
plugin_id = item.attrib.get("pluginID", "unknown")
total_findings[severity] += 1
unique_findings[severity].add(plugin_id)
return {
"File": os.path.basename(file_path),
"Hosts": len(live_hosts),
"Critical Unique": len(unique_findings["4"]),
"High Unique": len(unique_findings["3"]),
"Medium Unique": len(unique_findings["2"]),
"Low Unique": len(unique_findings["1"]),
"Info Unique": len(unique_findings["0"]),
"Unique Total": sum(len(v) for v in unique_findings.values()),
"Critical Total": total_findings["4"],
"High Total": total_findings["3"],
"Medium Total": total_findings["2"],
"Low Total": total_findings["1"],
"Info Total": total_findings["0"],
"Total Findings": sum(total_findings.values())
}
def build_output_rows(results, include_unique=True, include_total=True):
output_rows = []
for res in results:
if include_unique:
output_rows.append({
"File": res["File"],
"Hosts": res["Hosts"],
"Type": "Unique",
"Critical": res["Critical Unique"],
"High": res["High Unique"],
"Medium": res["Medium Unique"],
"Low": res["Low Unique"],
"Info": res["Info Unique"],
"Total": res["Unique Total"]
})
if include_total:
output_rows.append({
"File": res["File"],
"Hosts": res["Hosts"],
"Type": "Total",
"Critical": res["Critical Total"],
"High": res["High Total"],
"Medium": res["Medium Total"],
"Low": res["Low Total"],
"Info": res["Info Total"],
"Total": res["Total Findings"]
})
return output_rows
def format_output(results, include_unique=True, include_total=True):
output_rows = build_output_rows(results, include_unique, include_total)
if output_rows:
headers = output_rows[0].keys()
table = [list(row.values()) for row in output_rows]
print(tabulate(table, headers=headers, tablefmt="grid"))
def process_directory(directory_path, include_unique=True, include_total=True, csv_output=None):
summaries = []
for filename in os.listdir(directory_path):
if filename.endswith(".nessus"):
full_path = os.path.join(directory_path, filename)
result = parse_nessus(full_path)
if result:
summaries.append(result)
if not summaries:
print("No valid .nessus files found in directory.")
return
format_output(summaries, include_unique=include_unique, include_total=include_total)
if csv_output:
output_rows = build_output_rows(summaries, include_unique=include_unique, include_total=include_total)
try:
with open(csv_output, "w", newline="", encoding="utf-8") as f:
writer = csv.DictWriter(f, fieldnames=output_rows[0].keys())
writer.writeheader()
for row in output_rows:
writer.writerow(row)
print(f"\n✅ CSV exported to: {csv_output}")
except Exception as e:
print(f"❌ Error writing CSV: {e}")
def main():
parser = argparse.ArgumentParser(description="Summarize Nessus .nessus files.")
group = parser.add_mutually_exclusive_group(required=True)
group.add_argument("-f", "--file", help="Path to a single .nessus file")
group.add_argument("-d", "--directory", help="Path to directory containing .nessus files")
parser.add_argument("--csv", help="Path to export CSV (only used with -d)")
# Output filters
output_group = parser.add_mutually_exclusive_group()
output_group.add_argument("--unique", action="store_true", help="Only show unique findings")
output_group.add_argument("--total", action="store_true", help="Only show total findings")
args = parser.parse_args()
include_unique = not args.total
include_total = not args.unique
if args.directory:
process_directory(args.directory, include_unique=include_unique, include_total=include_total, csv_output=args.csv)
elif args.file:
result = parse_nessus(args.file)
if result:
format_output([result], include_unique=include_unique, include_total=include_total)
if __name__ == "__main__":
main()