fatcousin
// industry vertical

vulnerability / exposure management forensics

Tenable Nessus · Qualys VMDR · Rapid7 InsightVM · Defender VM · CrowdStrike Spotlight · Wiz exposure · Shodan · Censys · SLA breach detection · cross-scanner CVE overlap correlation.

tools
12
priority
H
processing
local · in browser

start here · primary tools

ordered. work top-down. the first tool is the suggested entry point for this vertical.

  1. tenable nessus scan export forensic analyzerdrop nessus .nessus/csv export · parse plugin + severity + host · runs locally
  2. qualys vmdr finding export forensic analyzerdrop qualys vmdr detection export · parse qid + asset + status timeline · runs locally
  3. wiz exposure finding forensic analyzerdrop wiz exposure issue export · parse attack path + toxic combination · runs locally
  4. cross scanner cve overlap correlatordrop 2+ scanner exports · correlate cve + asset overlap graph · runs locally
  5. case report generatorfill in case number · examiner · dates · findings · drop evidence files for auto hash · generates structured forensic report PDF · runs locally

also useful · secondary tools

cross-cutting tools that surface depending on the specific investigation.

  1. rapid7 insightvm asset vulnerability forensic analyzerdrop insightvm asset vuln export · parse nexpose id + proof + solution · runs locally
  2. microsoft defender vulnerability management export analyzerdrop defender tvm export · parse cve + affected software + exposure score · runs locally
  3. crowdstrike spotlight vulnerability export analyzerdrop spotlight vuln export · parse cve + host + remediation status · runs locally
  4. shodan host export forensic analyzerdrop shodan host json export · parse open ports + banners + vuln tags · runs locally
  5. censys host certificate export forensic analyzerdrop censys host export · parse services + cert fingerprints · runs locally
  6. vulnerability remediation sla breach detectordrop vuln finding corpus export · detect sla breach + reopen patterns · runs locally
  7. evidence manifest generatordrop evidence files · compute md5 sha1 sha256 · chain of custody manifest · case number · analyst · export pdf and csv · runs locally

want deeper vuln / exposure coverage?

this vertical is intentionally sparse — deep-moat coverage grows over time. tracked in the forensics rollout.

ready