Does anyone have any insight as to how you can get accurate reporting if the detection logic of vulnerabilities allows for each machine to have multiple entries for each patch?
The company I work for is requiring information that isn't covered under the standard reports. I've been doing all kinds of exports etc to get the data they want. I have a direct ODBC connection to the database but because of the duplicate entries for vulns for each machine I can't rely on the data from the database without some serious massaging.
I'm not super experienced with this kind of thing so if anyone has some tips please let me know.
It might be best to start with one of the reports you want to generate, that way someone might be able to give you a solution that can be used as a template for future work. At the moment you have a very open-ended question.