NV: Nessus vulnerability visualization for the web

Lane Harrison, Riley Spahn, Mike Iannacone, Evan Downing, John R. Goodall

Research output: Chapter in Book/Report/Conference proceedingConference contributionpeer-review

23 Scopus citations

Abstract

Network vulnerability is a critical component of network security. Yet vulnerability analysis has received relatively little attention from the security visualization community. This paper describes nv, a web-based Nessus vulnerability visualization. Nv utilizes treemaps and linked histograms to allow security analysts and systems administrators to discover, analyze, and manage vulnerabilities on their networks. In addition to visualizing single Nessus scans, nv supports the analysis of sequential scans by showing which vulnerabilities have been fixed, remain open, or are newly discovered. Nv operates completely in-browser, to avoid sending sensitive data to outside servers. We discuss the design of nv, as well as provide case studies demonstrating vulnerability analysis workflows which include a multiplenode testbed and data from the 2011 VAST Challenge.

Original languageEnglish
Title of host publicationVizSec 2012 - Proceedings of the 9th International Symposium on Visualization for Cyber Security
Pages25-32
Number of pages8
DOIs
StatePublished - 2012
Event9th International Symposium on Visualization for Cyber Security, VizSec 2012 - Seattle, WA, United States
Duration: Oct 15 2012Oct 15 2012

Publication series

NameACM International Conference Proceeding Series

Conference

Conference9th International Symposium on Visualization for Cyber Security, VizSec 2012
Country/TerritoryUnited States
CitySeattle, WA
Period10/15/1210/15/12

Keywords

  • Cyber security
  • Information visualization
  • Security analysis
  • Security visualization
  • Vulnerability visualization

Fingerprint

Dive into the research topics of 'NV: Nessus vulnerability visualization for the web'. Together they form a unique fingerprint.

Cite this