π‘ CyberScan β AI-Powered Vulnerability Scanner with Nessus, OpenAI, and Google Sheets
π€ Whoβs it for
Security teams, DevOps engineers, vulnerability analysts, and automation builders who want to eliminate repetitive Nessus scan parsing, AI-based risk triage, and manual reporting. Designed for orgs following NIST CSF or CISA KEV compliance guidelines.
βοΈ How it works / What it does
- Runs scheduled or manual scans via the Nessus API.
- Processes scan results and extracts asset + vulnerability data.
- Uses a custom AI-based risk metric (LEV) to triage findings into:
- π¨ Expert review
- β
Self-healing
- π΅οΈ Monitoring
- Automatically sends email alerts for critical CVEs.
- Exports daily summaries to Google Sheets (or your own BI system).
- Maps to NIST CSF (Identify, Protect, Detect, Respond, Recover).
π§° How to set up
-
Nessus: Add your Nessus API credentials and instance URL.
-
Google Sheets: Authenticate your Google account.
-
OpenAI / LLM: Use your API key if adding LLM triage or rewrite prompts.
-
Email: Update SMTP credentials and alert recipient address.
-
Set your targets: Adjust asset ranges or scan UUIDs as needed.
- β οΈ All setup steps are explained in sticky notes inside the workflow.
π Requirements
- Nessus Essentials (Free) or Nessus Pro with API access.
- SMTP service (e.g. Gmail, Mailgun, SendGrid).
- Google Sheets OAuth2 credentials.
- Optional: OpenAI or other LLM provider for LEV scoring and CVE insights.
π How to customize the workflow
- Swap Google Sheets with Airtable, Supabase, or PostgreSQL.
- Change scan logic or asset list to fit your internal network scope.
- Adjust AI scoring logic to match internal CVSS thresholds or KEV tags.
- Expand alerting logic to include Slack, Discord, or webhook triggers.
π No sensitive data included. All credentials and sheet links are placeholders.
