FAQ¶
Why did the Nessus file analyzer return an error - has host bits set?¶
Take a look at the example line log:
[2025-01-30 15:05:29.395186] [action=info] [source_file_name=ERROR Parsing [1/1] nessus files]
[2025-01-30 15:05:29.395186] [action=info] [source_file_name=192.168.11.0/23 has host bits set]
The part “has host bits set” says that you have put into the Nessus target field the wrong target address - 192.168.11.0/23
:
1Address: 192.168.11.0 11000000.10101000.0000101 1.00000000
2Netmask: 255.255.254.0 = 23 11111111.11111111.1111111 0.00000000
3Wildcard: 0.0.1.255 00000000.00000000.0000000 1.11111111
4=>
5Network: 192.168.10.0/23 11000000.10101000.0000101 0.00000000 (Class C)
6Broadcast: 192.168.11.255 11000000.10101000.0000101 1.11111111
7HostMin: 192.168.10.1 11000000.10101000.0000101 0.00000001
8HostMax: 192.168.11.254 11000000.10101000.0000101 1.11111110
9Hosts/Net: 510 (Private Internet)
If your Netmask is /23
and your network address is 192.168.10.0
and your goal is to scan the whole network, you should put into Nessus target field - 192.168.10.0/23
:
1Address: 192.168.10.0 11000000.10101000.0000101 0.00000000
2Netmask: 255.255.254.0 = 23 11111111.11111111.1111111 0.00000000
3Wildcard: 0.0.1.255 00000000.00000000.0000000 1.11111111
4=>
5Network: 192.168.10.0/23 11000000.10101000.0000101 0.00000000 (Class C)
6Broadcast: 192.168.11.255 11000000.10101000.0000101 1.11111111
7HostMin: 192.168.10.1 11000000.10101000.0000101 0.00000001
8HostMax: 192.168.11.254 11000000.10101000.0000101 1.11111110
9Hosts/Net: 510 (Private Internet)
If your Netmask is /24
and your goal was to scan the whole network, you should put into Nessus target field - 192.168.11.0/24
:
1Address: 192.168.11.0 11000000.10101000.00001011 .00000000
2Netmask: 255.255.255.0 = 24 11111111.11111111.11111111 .00000000
3Wildcard: 0.0.0.255 00000000.00000000.00000000 .11111111
4=>
5Network: 192.168.11.0/24 11000000.10101000.00001011 .00000000 (Class C)
6Broadcast: 192.168.11.255 11000000.10101000.00001011 .11111111
7HostMin: 192.168.11.1 11000000.10101000.00001011 .00000001
8HostMax: 192.168.11.254 11000000.10101000.00001011 .11111110
9Hosts/Net: 254 (Private Internet)
If you aimed to scan only one IP address, you should put it into the Nessus target field - 192.168.11.0
(without mask /23
).
To pars data without issues:
Set scan again with, e.g.,
192.168.10.0/23
or192.168.11.0
or192.168.11.0/24
.Then try to pars your .nessus file again using nessus-file-analyzer.
Tip
Use https://jodies.de/ipcalc to make sure that you use correct the IP Address and Netmask.