Skip to content
/ nessuscertfixer Public

Tool for editing Nessus results when an internal CA is confirmed post scan

License

MIT license
0 stars 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

rbrown256/nessuscertfixer

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

2 Commits
LICENSE
LICENSE
 
 
nessuscertfixer.py
nessuscertfixer.py
 
 
readme.md
readme.md
 
 

Repository files navigation

Tool for removing internal CA results from Nessus "SSL Certificate Cannot Be Trusted" plugin where a scan has already been completed.

Paste in the Issuer lines in the trusted issuer file: e.g.

O=Nessus Users United/OU=Nessus Certification Authority (7b895e86)/L=New York/C=US/ST=NY/CN=Nessus Certification Authority (7b895e86)

And then pass this with "-t" parameter.

And whenever any of the items in the text file come up in results for this plugin, it will be removed from the output file.

Wish list:

  • Multiple input files at once.
  • Fully grepable results so that all untrused issuers can be easily edited and entered into trused issuer file.
  • Checking the signature of results as the current version only validates the issuer line meaning there could be an untrusted result that isn't properly signed and this would be removed by this tool.

About

Tool for editing Nessus results when an internal CA is confirmed post scan

Resources

Readme

License

MIT license
Activity

Stars

0 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages