Automated scan results uploads

2 replies [Last post]
Wed, 2010-09-01 16:26
andy.clark@cta.com
Offline
Joined: 2010-08-13
Posts: 7

Is there a way to automate scan results uploads? We have lots of scanning data, coming from 3 different scanning tools, and we would like to process them all in automatically each night, or on demand. The plugins seem to be the most direct path, and seem to work fine one file at a time via the web interface, but a search of the forum here didn't turn anything up in the way of "how to" info to set up an automatic job to process in everything in a common directory at a given time, or something like that. Is there a good way to do this? Can you point me in the right direction?

Also, some related questions...
1) I read that a a WebInspect plugin is coming soon? Is there an availability date for that?
2) The Nessus plugin processes the XML files, but is there a way to tap the app databases directly to perform the "upload" for App Detective Pro and WebInspect scan data? If not, do you have a recommended way to source data directly from the dbs?

Top
Wed, 2010-09-01 20:15
#1
jboyd
Offline
Joined: 2009-08-27
Posts: 99
Re: Automated scan results uploads

There is no way built into OpenFISMA currently to automate scan result uploads.

You could however write a script using curl that runs nightly to upload the data, the curl commands would look something like:


curl -c /tmp/cookies.txt http://trunk.openfisma.org/auth/login
curl -c /tmp/cookies.txt -b /tmp/cookies.txt "username=root&password=0p3nfism@" http://trunk.openfisma.org/auth/login
curl -c /tmp/cookies.txt -b /tmp/cookies.txt "findingSource=1&system=1&network=1&selectFile=@filename" http://trunk.openfisma.org/finding/index/plugin

This isn't something any of our clients has requested yet, so it's not even on the road map right now.

WebInspect is targeted right now for version 2.11. That's not set in stone though.

There is currently not direct integration with applications to upload into OpenFISMA from a separate database. The only way to automate that right now would be using a combination of curl and scripting to push into the web interface as you would with a normal XML export.

Note: I haven't tested this method of injecting into OpenFISMA, but in theory, it should work. I know atleast that the authentication/cookies bit does.

__________________

Josh Boyd
Endeavor Systems, Inc.
Software Engineer

Top
Thu, 2010-09-02 07:39
#2
andy.clark@cta.com
Offline
Joined: 2010-08-13
Posts: 7
Re: Automated scan results uploads

Thanks Josh.

Top