Perimeter Monitoring (IP Address, Ports, Ciphers)

File uploaded by mcalvi on Aug 18, 2014Last modified by mcalvi on Aug 20, 2014
Version 2Show Document
  • View in full screen mode

I wrote this script to monitor our external IP space for changes to SSL ciphers.  While poking through the XML report, it looks like the data for IP Address and Ports were present as well so i figured we would monitor that as well.

 

basically the script launches a scan template and then checks for its completion.  When completed, it pulls it down and parses any deltas from the previous one held in a MYSQL DB and alerts the recipients of changes.

 

its dirty, un-commented and ugly perl code.  use as you will.

 

EDITED::: added certificate notification of expiry to a different group if you wish.  Also search for CHANGEME for items to change.

Attachments

Outcomes