SkillAgentSearch skills...

CVEasy

Parses nessus vulnerability scan data to streamline CVE POC lookups

GenerateConvertImprove

Install / Use

/learn @TheZenTester/CVEasy
About this skill

Quality Score

0/100

Supported Platforms

Universal

README

CVEasy

A comprehensive tool for parsing and analyzing Nessus vulnerability scan files.

Features

  • Parse one or more Nessus (.nessus) XML files or directories containing .nessus files
  • Generate summary reports in Markdown or CSV format
  • Create detailed finding files with descriptions, affected IPs, and outputs
  • Research CVEs using multiple sources. HUGE shoutout to these tools/repos, which make this tool much more streamlined:
  • Generate Research Summary tables with deduplicated exploit links
  • Create detailed exploit information files
  • Obsidian-compatible links for easy navigation between summary and findings

Known Constriants

  • Certain configurations of Tenable.sc are known to exclude the necessary information used in CVEasy.py to populate the findings. If the information is missing from the .nessus file, the findings files will likely be bare, and it is unlikely that research capabilities are possible. The tool was successfully tested using .nessus files exported from Tenable Professional.

Installation

Prerequisites

  1. Python 3.8 or higher (tested on 3.10.12)
  2. Required Python packages:
    • requests - necessary for collecting Github star count data for POC lookups (tested on version 2.32.3).
pip3 install -r requirements.txt

Setup for go-exploitdb (optional)

  1. Install go-exploitdb following instructions at https://github.com/vulsio/go-exploitdb
  2. Update the database: 
    go-exploitdb fetch exploitdb
go-exploitdb fetch awesomepoc
go-exploitdb fetch githubrepos
go-exploitdb fetch inthewild

Setup for trickest/cve (optional)

Clone the repository to your local system:

git clone https://github.com/trickest/cve.git /path/to/trickest-cve

Setup for GitHub API access (optional)

  1. Create a GitHub personal access token:

    • Go to GitHub Settings → Developer Settings → Personal Access Tokens → Fine-grained tokens
    • Create a new token with "Public repositories (read-only)" permission
    • No additional permissions are needed beyond the default read-only access

  2. Use the token with one of these options:

    • Direct parameter: --github-token YOUR_TOKEN_HERE
    • From a file (more secure): --github-token-file /path/to/token.txt
      • make sure file applies least permission to token (yes, even for a read-only token) chmod 600 token.txt.

    For the file option, create a text file containing only your token on the first line.

Usage

Basic usage:

python CVEasy.py /path/to/files/*.nessus

Generate summary and finding files with research:

python CVEasy.py -o ./client-report -p client-name -f -r --exploitdb-path /opt/go-exploitdb/go-exploitdb.sqlite3 --trickest-path /path/to/trickest-cve /path/to/files/*.nessus

Generate summary and finding files with research and GitHub star counts:

python CVEasy.py -o ./client-report -p client-name -f -r --github-token YOUR_TOKEN_HERE /path/to/files/*.nessus

Generate CSV output:

python CVEasy.py --csv -o ./client-report -p client-name /path/to/files/*.nessus

Generate CSV output with research data:

python CVEasy.py --csv -r -o ./client-report -p client-name /path/to/files/*.nessus

Scan a directory for .nessus files:

python CVEasy.py -f -r /path/to/nessus/directory/

Custom sorting of findings summary:

python CVEasy.py -f -r --sort-summary "exploit_status,poc_count:desc,severity" /path/to/files/*.nessus

Command Line Options

usage: CVEasy.py [-h] [-o OUTPUT_DIR] [-p PREFIX] [-ss SORT_SUMMARY] [-f]
                 [--findings-subdir FINDINGS_SUBDIR] [--no-exploit-details] [--csv] [-r]
                 [--research-sources RESEARCH_SOURCES] [--exploitdb-path EXPLOITDB_PATH]
                 [--trickest-path TRICKEST_PATH] [--github-token GITHUB_TOKEN]
                 [--github-token-file GITHUB_TOKEN_FILE] [-v]
                 input_files [input_files ...]

Parse Nessus files and generate reports

positional arguments:
  input_files           Path(s) to Nessus files. Can use wildcards (e.g., *.nessus)

options:
  -h, --help            show this help message and exit
  -o OUTPUT_DIR, --output-dir OUTPUT_DIR
                        Output directory for reports (default: current directory)
  -p PREFIX, --prefix PREFIX
                        Prefix for output files (e.g., client-name)
  -ss SORT_SUMMARY, --sort-summary SORT_SUMMARY
                        Criteria to sort the summary by. Format:
                        "criterion1[:direction],criterion2[:direction],...". Valid criteria:
                        exploit_status, poc_count, star_count, severity, plugin_id. Directions:
                        asc/ascending (default) or desc/descending. Alternate formats: ~criterion or
                        ^criterion for descending. Example: "exploit_status,poc_count:desc,severity".
                        Default: exploit_status:desc,poc_count:desc,star_count:desc,severity
  -f, --create-findings
                        Create individual finding files
  --findings-subdir FINDINGS_SUBDIR
                        Subdirectory for finding files (default: findings)
  --no-exploit-details  Disable generation of exploit details files
  --csv                 Generate CSV output instead of markdown
  -r, --research        Research CVEs using available sources
  --research-sources RESEARCH_SOURCES
                        Comma-separated list of research sources (default: exploitdb,trickest)
  --exploitdb-path EXPLOITDB_PATH
                        Path to go-exploitdb database
  --trickest-path TRICKEST_PATH
                        Path to trickest/cve repository clone
  --github-token GITHUB_TOKEN
                        GitHub API token for fetching repository data
  --github-token-file GITHUB_TOKEN_FILE
                        Path to file containing GitHub API token (more secure than --github-token)
  -v, --verbose         Enable verbose output

Output

Summary File

The summary file ([prefix]-nessus-summary.md) contains:

  • A table with all findings sorted by exploit availability, POC count, star count and severity (by default)
    • Exploit availability is broken down into 3 categories:
      • Y - Research - when the -r/--research flag is used, if one of the CVE repositorites identifies a PoC
      • Y - Nessus - when the Nessus plugin data specifies a vulnerability exists. If -r/--research flag is used, but a finding has this designation, it means the research efforts did not return any PoCs.
      • N - No exploits available :( - but that doesn't mean the finding isn't worth looking at!
  • Links to individual finding files (when using the -f option)
  • Additional columns for POC Count and Star Count (when using -r and --github-token options)
  • A column for Tester Notes
  • Summary statistics including:
    • Total unique targets (split into IPs and hostnames)
    • Total unique findings
    • Findings by severity
    • Findings with exploits
    • GitHub repository statistics (when using -r and --github-token options)

Finding Files

Each finding file (findings/[PluginID]-[Plugin Name].md) contains:

  • Severity level
  • Description
  • Associated CVEs as a comma-separated list
  • List of affected IP addresses
  • Plugin output for each affected IP (if available)
  • Research Summary table with links organized by star count and sources
  • Link to detailed exploit information (if available)
  • A section for tester notes

Exploit Details Files

Each exploit details file (findings/exploit-details/[PluginID]-[Plugin Name]-exploit-details.md) contains:

  • Go-ExploitDB information including:
    • URLs
    • Descriptions
    • Sources
    • Related CVEs
  • Trickest information including:
    • Descriptions
    • References
    • Proof of concept details
    • MITRE CVE links

CSV Output

When using the --csv option, two CSV files are created:

  1. [prefix]-nessus-summary.csv with columns for:

    • Plugin ID
    • Severity
    • Plugin Name
    • Affected IPs
    • CVEs
    • Exploit Availability

  2. When using both --csv and -r/--research, an additional [prefix]-nessus-findings.csv is created with columns for:

    • Plugin ID
    • Finding Name
    • Finding Description
    • CVEs (comma-separated list)
    • Affected IPs (comma-separated list)
    • Research (each URL with its sources on a separate line)

Custom Sorting

The --sort-summary option allows you to customize the order of findings in the summary table. You can specify multiple sorting criteria in order of importance.

For each criterion, you can set the sort direction:

  • criterion or criterion:asc - Sort in ascending order
  • criterion:desc - Sort in descending order

Valid sorting criteria:

  • exploit_status - Sort by exploit availability (Y-Research > Y-Nessus > N)
  • poc_count - Sort by number of GitHub repositories (requires -r)
  • star_count - Sort by total GitHub stars (requires -r and --github-token)
  • severity - Sort by severity level (Critical > High > Medium > Low > Info)
  • plugin_id - Sort by plugin ID

Examples:

# Sort by POC count (descending), then severity (descending)
python CVEasy.py -r --sort-summary "poc_count:desc,severity:desc" ...

# Sort by severity (descending) first, then exploit status
python CVEasy.py -r --sort-summary "severity:desc,exploit_status" ...

# Sort by star count (descending), then plugin ID (ascending)
python CVEasy.py -r --github-token TOKEN --sort-summary "star_count:desc,plugin_id" ...

The default sorting is: exploit_status:desc,poc_count:desc,star_count:desc,severity

Examples

Processing Multiple Files and Directories

# Process all .nessus files in multiple directories
python CVEasy.py -f -r /path/to/dir1

TheZenTester

View profile

View on GitHub
GitHub Stars14
CategoryDevelopment
Updated1mo ago
Forks0
TheZenTester/CVEasy

Languages

Python

Security Score

90/100

Audited on Feb 10, 2026

No findings