Nessus Export Skill

Workflow

Step 1 — Gather parameters from the user

Ask the user (or infer from context) for:

The scan ID and host ID can be read directly from the Nessus URL the user provides, e.g.: https://127.0.0.1:8834/#/scans/reports/19/hosts/2/vulnerabilities → SCAN_ID=19, HOST_ID=2

Step 2 — Run the export script

The skill script is bundled at:

~/.agents/skills/nessus-export/nessus_export_tool.py

Run it with the collected parameters:

python3 ~/.agents/skills/nessus-export/nessus_export_tool.py \
  --url    NESSUS_URL \
  --user   USERNAME \
  --pass   PASSWORD \
  --scan   SCAN_ID \
  --host   HOST_ID \
  --label  HOST_LABEL \
  --outdir OUTPUT_DIR

Example for a scan at #/scans/reports/19/hosts/2/vulnerabilities:

python3 ~/.agents/skills/nessus-export/nessus_export_tool.py \
  --url https://127.0.0.1:8834 \
  --user admin --pass admin \
  --scan 19 --host 2 \
  --label GETS_PRD_168

Step 3 — Verify outputs

After the script completes, verify both files exist:

ls -lh ~/nessus_<LABEL>_vulnerabilities.xlsx
ls -lh ~/nessus_<LABEL>_vulnerabilities.nessus

Then open the Excel:

open ~/nessus_<LABEL>_vulnerabilities.xlsx

Step 4 — Report results to the user

Tell the user:

• The exact file paths for both outputs
• The vulnerability counts: UI groups total AND individual findings total
• Severity breakdown table (Critical / High / Medium / Low / Info / Mixed)

Output Files

Each run produces two files in OUTPUT_DIR:

Excel Sheets

Severity Colour Coding

How It Works (Technical)

1. Chrome automation — Selenium + ChromeDriver opens a headless Chrome window
2. Login — Fills the Nessus web UI login form (no API keys needed)
3. Export via UI — Clicks the portal's own Export → Nessus button to download the .nessus XML
4. UI scraping — Navigates to #/scans/reports/{SCAN_ID}/hosts/{HOST_ID}/vulnerabilities and scrapes the vulnerability table rows (matching the exact count shown in the UI)
5. XML parsing — Parses the downloaded .nessus XML for full details (CVE, CVSS, synopsis, description, solution, plugin output)
6. Excel build — Combines UI rows + XML details into a formatted, colour-coded workbook

Troubleshooting

HTML Reports

In addition to Excel + .nessus export, you can generate standalone HTML reports:

python3 ~/.agents/skills/nessus-export/nessus_html_report.py \
  ~/nessus_GETS_PRD_168_vulnerabilities.nessus \
  --label GETS_PRD_168

This produces two self-contained HTML files:

Features:

• 🎨 Colour-coded severity (Critical/High/Medium/Low/Info)
• 📋 Collapsible cards with Expand All / Collapse All
• 🔗 Clickable CVE links to cve.org
• 🗂 Sticky sidebar TOC for navigation
• 🖨 Print-friendly layout
• 🔁 Cross-linked (By Host ↔ By Plugin nav bar)

Note: Nessus Essentials free tier does not support built-in HTML reports. This tool generates equivalent reports directly from the .nessus XML file.

Notes

• The .nessus file downloaded is the unmodified export from the Nessus portal — it can be re-imported into any Nessus instance
• The UI "vulnerability count" (e.g. 49) counts grouped entries (Multiple Issues rows count as one). The "findings" count (e.g. 249) is the total individual ReportItems in the XML
• The script runs headless (no visible browser window)