How is nexpose identifying the java version installed? I don't see a file path or registry key in the logs? 2017-11-07T14:59:40 [INFO] [Thread: firstname.lastname@example.org] [Site: All Sites] [172.22.211.74] Installed software component: SoftwareFingerprint [[certainty=1.0][description=Oracle JRE 22.214.171.124][family=Java][product=JRE][softwareClass=General][vendor=Oracle][version=126.96.36.199]], which belongs to: SoftwareFingerprint [[certainty=1.0][description=Mozilla Firefox 56.0.2][family=Mozilla][product=Firefox][softwareClass=Internet Client][vendor=Mozilla][version=56.0.2]]
Posted by Derek Loomis about a year ago
Hi, Just started noticing that within the dashboard the widget for New Assets within a set period of days does not show recently added/found assets. Assets are adding to the console but the new asset widget just says zero. Any help would be appreciated. Best, Brad Krivelow
Posted by Brad Krivelow about a year ago
Hi, I did a scan of a /16 network that only contains several hundred assets. Unfortunately nexpose counted every scanned ip regardless if there is an active asset behind. Therfore I reached our licence limit. Now I would like to delte all that inactive assets (about 60.000) So I created an dynamic asset group with name = empty and OS=empty. Then I wanted to delte all assets of this group, but unfortunately I only can delete all visible assets in one step. This means deleteing a maximum of 500 asstets per step. So my question is: is there a way to mark all assetes and delete them or to use a CLI-command? Thanky in advance, Regards Ralf
Posted by Ralf Zentner about a year ago
Activation Failed: Server error: Invalid signature: ["certificate is not yet valid"] I dont know what to do I got an activation code on email but when I put it, it says that.
Posted by Vladimir baranov about a year ago
Will running the database diagnostics cause the system to shutdown or reboot?\ The instructions did not address this. Running diagnostics You can run several diagnostic functions to catch issues that may be affecting system performance. Selecting diagnostic routines To run diagnostics for internal application issues: Click the Administration tab. The Security Console displays the Administration page. Click Diagnose next to Troubleshooting. The Security Console displays the Troubleshooting page. Click the check box for each diagnostics routine you want to perform. After performing the requested diagnostics, the Security Console displays a table of results. Each item includes a red or green icon, indicating whether or not an issue exists with the respective system component.
Posted by Dao Erikson about a year ago
We have a large group of assets that we wish to filter based on some requirements but not limited to all requirements: a quick example would be the union of two asset groups: a certain site AND(but not limited to*) a certain OS I would want this to give me a group of all the assets within a site that have the specified OS, NOT EXCLUDING the assets within that site that do not have an OS specified (failed authentication). Is there a way to do achieve this?
Posted by Josh Sharkey about a year ago
i was trying to exploit on website but when i had to set PAYLOAD i get error, "[-] Unknown variable Usage: set [option] [value] Set the given option to value. If value is omitted, print the current value. If both are omitted, print options that are currently set. If run from a module context, this will set the value in the module's datastore. Use -g to operate on the global datastore" PLEASE HELP ME SOON
Posted by Sandeep sawarn about a year ago
I have QRadar ver. 7.2.8 patch 4 and want to integrate nexpose scanning with it. I know it is supported but I couldn't find any documents when I searched here that describe how to do it. Can someone please point me at the SIEM integration documentation (if there is such a thing :) ) or something specific to QRadar? I couldn't find anything on the tech support side or the blog side. Any help would be appreciated.
Posted by Daniel Sichel about a year ago
We are running 6.4.60. Is it possible to create a static single asset group and then add dynamic asset groups into the single static asset group? For example, I have many dynamic asset groups and I have many scan schedules. In each of the scan schedules I need to exclude several of the dynamic asset groups. I am looking for a way to only add one total exclusion (the static asset group) into the schedule versus adding 15 exclusions for 70 scan schedule. I have added the exclusions at the site level but it looks like the exclusions are still being scanned in my schedules so I am thinking that the schedules need to have the exclusions as well.
Posted by Andrew about a year ago
I've been playing with the Nexpose API via the ruby client, have managed to login and can get a list of all assets via nsc.assets, but what I really want is to list out all discovered assets with Name, IP, Operating System, etc. rather than what is returned by default. Is there a way to do this?
Posted by Luke Whitworth about a year ago
I want to send a monthly report to IT team to review assets that have not been scanned in the last 90 days. I've created a Dynamic Asset Group to list these assets (from the sites I want), showing the Asset name, IP address, Site name, OS, Last scan date. I am trying to schedule a monthly report, to report the assets from this Dynamic Asset Group, but I am struggling with the SQL query. May I get your assistance please? Thanks.
Posted by Joseph Mikhail about a year ago