Home

Related Products
ADManager Plus

Active Directory Management & Reporting
Download | Demo
ADAudit Plus

Real-time Active Directory Auditing and UBA
Download | Demo
ADSelfService Plus

Self-Service Password Management
Download | Demo
Exchange Reporter Plus

Exchange Server Auditing & Reporting
Download | Demo
AD360

Integrated Identity & Access Management
Download | Demo
Log360

Comprehensive SIEM and UEBA
Download | Demo

Click here to expand

Vulnerability Data Analytics

EventLog Analyzer can process log data from vulnerability scanners such as Nessus, Qualys, OpenVAS, and NMAP. The data ingested from vulnerability scanners can be incorporated into the correlation engine to discover complex attack patterns. The solution generates out-of-the-box reports and predefined alert criteria that help in identifying and prioritizing vulnerabilities in your network. The report groups available are:

EventLog Analyzer also has predefined alert criteria corresponding to the above categories. Setting up an alert profile for vulnerability scanners is similar to a predefined alert profile. The only difference is that you need to choose Vulnerability as the type from the predefined list and then choose the appropriate alert condition.

Exporting data from vulnerability scanners

EventLog Analyzer analyses data from vulnerability scanners and provides insights to help identify vulnerabilities within the network. For this you need to export data from the respective vulnerability scanners and then import it to EventLog Analyzer. You can export the data by following the steps given for each of the vulnerability scanners.

Nexpose

Click the Reports icon.
Under the Create a report tab select Export.
Select XML Export or XML Export 2.0.
Add the site and then click Save and run report.

Nessus

Select a scan under Scans Tab.
In the upper-right corner, click Export
From the drop-down box, select Nessus.

NMAP

Go to the Scan menu and select the scan that you want to save.
Click Save Scan.
In the Save dialog box, choose the format as Nmap XML format.

OpenVas

Under the Scans menu, select Vulnerabilities
If there is no Vulnerabilities tab, choose Results.
Click Export page contents from the bottom right corner.

Qualys

Go to the Scans menu in the dashboard.
Right-click the scan report that you need to export.
Select Download from the Quick Actions menu.
Select Download Format as Extensible Markup Language(XML).

Once you have exported the data from the corresponding scanners, you need to import the log data to the EventLog Analyzer server.

Adding vulnerability scanners to EventLog Analyzer

To monitor vulnerability scanner data in EventLog Analyzer, you need to import the corresponding log data to the EventLog Analyzer server. You can import log data by navigating to Settings > Vulnerability Data Analysis > Import.

Enter the vulnerability scanner's name.
Choose the vulnerability scanner's application type.
Specify the location of the log file which has to be imported.
Click on Import.

Don't see what you're looking for?

Visit our community

Post your questions in the forum.
Request additional resources

Send us your requirements.
Need implementation assistance?

Try onboarding

Get download link