#WARNING
This repository is no longer maintained. You should be using this one instead https://github.com/leonjza/PHPNessusNG
#php-nessus-api
The Nessus Vulnerability Scanner provides an API interface via XMLRPC. See: http://static.tenable.com/documentation/nessus_5.0_XMLRPC_protocol_guide.pdf
The latest version of this wrapper has only been tested against a Nessus 5.2.1 scanner.
This class is simply a set of functions implemented using PHP-Curl to enable querying of this API using a function and then receiving an array with the applicable data.
- php
- php-curl
- php-cli if you plan on running scripts from the cli
Simply include nessus.php in your script.
Then, create a new NessusInterface Object, like:
try {
$api = new NessusInterface(
$__url,
$__port,
$__username,
$__password
);
} catch(Exception $e) {
preprint($e->getMessage());
}Do some API calls. Most methods return some usefull information that should be inspected in your usage case.
try {
$api->feed();
$api->reportList();
$api->policyList();
$api->scanList();
} catch(Exception $e) {
preprint($e->getMessage());
}[1] => reportList
[2] => feed
[3] => policyList
[4] => scanList
[5] => templateList
[6] => newScanTemplate
[7] => scanPause
[8] => scanResume
[9] => scanStop
[10] => templateDelete
[11] => templateLaunch
[12] => serverLoad
- There are probably bugs about.
- Not all API call have been implemented. Coming soon(tm) as I need them.
- Probably lack of proper documentation too.
Twitter: @leonjza