This tool was created because clients wanted a better vulnerablity report with specific fields, which was challenging with thousands of results. This was created to automate that process
What the tool does: Sorts Tenable SC CSVs then places them into a formatted XLXS file: This tool chews through a directory of csv vulnerability reports, sorts by unique items, groups IP's into one cell so you do not see multiple IP's with the same issue and does some trimming of other areas to make a nicer formatted report.
python3 AutotravisCompliance.py -d ./DIR-WITH-CSVs
The tool then outputs to one XLSX file.
pip install XlsxWriter
pip install pandas
pip install alive-progress
-Don’t auto fit Column L (too long) (Both Vuln+Comp)
-Change column(M) header from "Comments" to "SSS Comments" (Both Vuln+Comp) [completed March 12]
-Add new column (N) header as "INL Comments" (Both Vuln+Comp) [completed March 12]
-autofilter for top row (Both Vuln+Comp) [completed March 12]
-freeze top row (Both Vuln+Comp) [completed March 12]
-change hardcoded output to dynamic DATE format. (Both Vuln+Comp) [completed March 12]
-incorporate "last seen" (Both Vuln+Comp) [the way our report is, the IPs are grouped so do we want to grab the largest date] subtract first seen -> last seen (bug, defender updates) (bug, IP’s differ)
-incorporate SSS & INL comments through a lookup (Both Vuln+Comp)
-may be asked to move from github.com to TEN private GIT (Both Vuln+Comp)