Nmap - Centraleyezer

Nmap Summary

The integration of Nmap with the Centraleyezer Vulnerability Management platform enhances the import and management of network scanning results. This collaboration enables organizations to efficiently identify, prioritize, track, and remediate security risks related to their network assets, improving overall security posture and risk management.

Nmap Key Features

Data Import:
- Import scanned network assets and vulnerabilities from Nmap into Centraleyezer, either on-demand or via automated schedules.
Detailed Findings:
- Centraleyezer provides complete details on detected hosts, open ports, services, and software from Nmap scans.
Risk Scoring:
- Configurable risk classification values for Nmap findings, adjustable based on organizational security policies.
Selective Data Import:
- Supports filtering based on scan type, risk class, and asset type for more precise data imports.
Secure Connectivity:
- Supports XML-based Nmap export (-oX format) for structured data import.

Considerations

The integration supports mapping one Nmap scan instance with one Centraleyezer instance.
Configuring a different Nmap scan in the plugin will overwrite previously imported data.

Requirements

System Requirements:
- Centraleyezer Prerequisites: Latest version of the Centraleyezer Vulnerability Management Platform recommended.
- Nmap Prerequisites: Must generate scan results in XML format (-oX export).
Permissions and Roles:
- Centraleyezer: Requires System Admin or Network Security Analyst permissions.
- Nmap: User access for network scanning and asset discovery.
- Import mappings require admin-level permissions.

Release Notes

Version 1.0.0:

New mappings for findings from Nmap include:

- Owner
- Contact
- Business (Department)
- Tags
- Softwares
- Selected Softwares
- Zone (LAN)
- Risk Class
- Regularly Scanned
- Regularly Pentested
- Asset Type
- Import Type
- File Input (XML Export from Nmap -oX)