I have a scanned host that is showing as vulnerable for CVE-2017-8563. KB4025337 is installed, and no further action needs to be taken on the workstation, so far as I am aware -- registry edits and such for this KB are for Active Directory servers and AD LDS servers.. The scan logs show the following as the vulnerability: msft-cve-2017-8563 (msft-cve-2017-8563-kb4025337-856a0bc5-b356-4282-a54e-9cf87b548303-cve-2017-8563) - VULNERABLE Is this a false positive, or am I just not looking in the right place to find the remediation steps required for Nexpose to flag this machine as not vulnerable?
Posted by Jason Lantrip 2 years ago
I'm trying to run a vulnerability report via SQL that shows the date the vulnerability was first detected on an asset and when it was last detected on an asset. On the R7 Community site there was a post with an exact example of how to do this, but since that site was deleted without any warning whatsoever to Nexpose customers, I wasn't able to grab a copy of the 100+ useful posts I had bookmarked for reference and now I have to waste hundreds of hours scouring the internet or starting over by writing posts like this to get the same exact information that was previously readily available.
Posted by Rudi Coursen 2 years ago
Hi there Are there any plans for integration with Cisco Umbrella / OpenDNS? If we can be of any assistance, we might be able to help with testing experimental integration / log collection.. Best Regards Morten Østergaard
Posted by Morten OEstergaard 2 years ago
How is nexpose identifying the java version installed? I don't see a file path or registry key in the logs? 2017-11-07T14:59:40 [INFO] [Thread: email@example.com] [Site: All Sites] [172.22.211.74] Installed software component: SoftwareFingerprint [[certainty=1.0][description=Oracle JRE 22.214.171.124][family=Java][product=JRE][softwareClass=General][vendor=Oracle][version=126.96.36.199]], which belongs to: SoftwareFingerprint [[certainty=1.0][description=Mozilla Firefox 56.0.2][family=Mozilla][product=Firefox][softwareClass=Internet Client][vendor=Mozilla][version=56.0.2]]
Posted by Derek Loomis 2 years ago
Hi, Just started noticing that within the dashboard the widget for New Assets within a set period of days does not show recently added/found assets. Assets are adding to the console but the new asset widget just says zero. Any help would be appreciated. Best, Brad Krivelow
Posted by Brad Krivelow 2 years ago
Hi, I did a scan of a /16 network that only contains several hundred assets. Unfortunately nexpose counted every scanned ip regardless if there is an active asset behind. Therfore I reached our licence limit. Now I would like to delte all that inactive assets (about 60.000) So I created an dynamic asset group with name = empty and OS=empty. Then I wanted to delte all assets of this group, but unfortunately I only can delete all visible assets in one step. This means deleteing a maximum of 500 asstets per step. So my question is: is there a way to mark all assetes and delete them or to use a CLI-command? Thanky in advance, Regards Ralf
Posted by Ralf Zentner 2 years ago
Will running the database diagnostics cause the system to shutdown or reboot?\ The instructions did not address this. Running diagnostics You can run several diagnostic functions to catch issues that may be affecting system performance. Selecting diagnostic routines To run diagnostics for internal application issues: Click the Administration tab. The Security Console displays the Administration page. Click Diagnose next to Troubleshooting. The Security Console displays the Troubleshooting page. Click the check box for each diagnostics routine you want to perform. After performing the requested diagnostics, the Security Console displays a table of results. Each item includes a red or green icon, indicating whether or not an issue exists with the respective system component.
Posted by Dao Erikson 2 years ago
We have a large group of assets that we wish to filter based on some requirements but not limited to all requirements: a quick example would be the union of two asset groups: a certain site AND(but not limited to*) a certain OS I would want this to give me a group of all the assets within a site that have the specified OS, NOT EXCLUDING the assets within that site that do not have an OS specified (failed authentication). Is there a way to do achieve this?
Posted by Josh Sharkey 2 years ago
i was trying to exploit on website but when i had to set PAYLOAD i get error, "[-] Unknown variable Usage: set [option] [value] Set the given option to value. If value is omitted, print the current value. If both are omitted, print options that are currently set. If run from a module context, this will set the value in the module's datastore. Use -g to operate on the global datastore" PLEASE HELP ME SOON
Posted by Sandeep sawarn 2 years ago
I have QRadar ver. 7.2.8 patch 4 and want to integrate nexpose scanning with it. I know it is supported but I couldn't find any documents when I searched here that describe how to do it. Can someone please point me at the SIEM integration documentation (if there is such a thing :) ) or something specific to QRadar? I couldn't find anything on the tech support side or the blog side. Any help would be appreciated.
Posted by Daniel Sichel 2 years ago