NV: Nessus Vulnerability Visualization for the Web
- University of North Carolina, Charlotte
- ORNL
Network vulnerability is a critical component of network se- curity. Yet vulnerability analysis has received relatively lit- tle attention from the security visualization community. In this paper we describe nv, a web-based Nessus vulnerability visualization. Nv utilizes treemaps and linked histograms to allow system administrators to discover, analyze, and man- age vulnerabilities on their networks. In addition to visual- izing single Nessus scans, nv supports the analysis of sequen- tial scans by showing which vulnerabilities have been fixed, remain open, or are newly discovered. Nv was also designed to operate completely in-browser, to avoid sending sensitive data to outside servers. We discuss the design of nv, as well as provide case studies demonstrating vulnerability analysis workflows which include a multiple-node testbed and data from the 2011 VAST Challenge.
- Research Organization:
- Oak Ridge National Lab. (ORNL), Oak Ridge, TN (United States)
- Sponsoring Organization:
- USDOE Laboratory Directed Research and Development (LDRD) Program
- DOE Contract Number:
- AC05-00OR22725
- OSTI ID:
- 1056389
- Resource Relation:
- Conference: VizSec 2012 - Symposium on Visualization for Cyber Security, Seattle, WA, USA, 20121015, 20121015
- Country of Publication:
- United States
- Language:
- English
Similar Records
Query and Visualization of extremely large network datasets over the web using Quadtree based KML Regional Network Links
A Web Accessible Scientific Workflow System for Performance Monitoring