1
00:00:00,570 --> 00:00:09,960
And finally let's see the reporting abilities of Nessus. Open a browser and go to Nessus service. HTTPS,

2
00:00:10,340 --> 00:00:15,800
localhost and port 8834. Log in with your credential

3
00:00:19,510 --> 00:00:22,420
and here the scans we performed before.

4
00:00:22,420 --> 00:00:24,040
I've only one for now.

5
00:00:24,040 --> 00:00:28,190
Click on it and see the details. In the upper right hand corner.

6
00:00:28,190 --> 00:00:31,570
There's an "Export" combobox.

7
00:00:31,570 --> 00:00:35,620
When you click on it, you see the report types of Nessus home.

8
00:00:35,710 --> 00:00:37,360
So let's generate a PDF report first.

9
00:00:37,360 --> 00:00:42,550
We have two options in the home edition and you'll have other options.

10
00:00:42,580 --> 00:00:45,250
If you buy the professional edition.

11
00:00:45,670 --> 00:00:47,510
So, I choose "Custom" here.

12
00:00:47,740 --> 00:00:51,900
And as you see, we have only two options in Home Edition.

13
00:00:52,300 --> 00:00:55,020
You can group the vulnerabilities by host or plugin.

14
00:00:55,240 --> 00:01:00,640
I choose the host and click export to generate the report in PDF format.

15
00:01:05,740 --> 00:01:06,820
Save it or open it now.

16
00:01:06,820 --> 00:01:10,710
Now I'll choose "Open" and that way you can see it.

17
00:01:10,870 --> 00:01:13,620
So the file is downloaded into the temp folder.

18
00:01:15,130 --> 00:01:17,380
And here's a scan report in PDF format

19
00:01:19,970 --> 00:01:24,350
Vulnerabilities are grouped by hosts. I click the Metasploitable  header.

20
00:01:24,380 --> 00:01:30,710
Now there's a few lines of brief summary then the explanation of the vulnerabilities start. As you see

21
00:01:31,400 --> 00:01:37,130
the vulnerabilities are not sorted by the severity level , which is not good. Of course,

22
00:01:37,370 --> 00:01:40,090
you can sort them in the professional edition.

23
00:01:40,100 --> 00:01:44,830
That's where they get you.

24
00:01:44,830 --> 00:01:49,210
So now let's see the vulnerability assessment report in HTML  format.

25
00:01:49,450 --> 00:01:52,360
Same home page with a PD F option.

26
00:01:52,360 --> 00:02:00,930
This time I'll choose the executive summary option and click "Export". Open with Firefox and here is a

27
00:02:00,930 --> 00:02:05,310
report in HTML format. A single frame for each host.

28
00:02:05,340 --> 00:02:11,340
Click the "Show Details" button to see the vulnerabilities list of the host. If you want to have detailed

29
00:02:11,340 --> 00:02:13,130
information about a vulnerability.

30
00:02:13,260 --> 00:02:19,050
click on it. HTML file redirect you to the online web pages of Tenable security.