(note this tool used to be called O2 Tool - Ozasmt Query)
The O2 Tool - Findings Query (which you install from http://deploy.o2-ounceopen.com/O2_Tool_FindingsQuery/ ) is specifically designed to handle large Ozasmt files (from 10Mb to 500Mb+) and exposes a SQL-like (Linq based) manual query builder (which allows for easy filtering of the loaded findings).
To quickly see this module in action:
- Install it
- click on web goat or hacmebank links (bottom left)
- chose from the dropdown box (on the top) a couple different filters and see them in action
- click on 'show query' to see the LINQ query
- modify a query and see that you can just write it up in that sort of SQL like format
- save the results as an assessment which you can open in OSA (the Save link will appear on the bottom right)
- click on "Request Help from O2" (on the top) and submit it with any comments you may have, this will email me with a screenshot of your GUI and your logs :)
To see how this O2 Module can handle large files try this ozasmt scan results : http://deploy.o2-ounceopen.com/DemoFiles/WebGoat%20-%20._ALLTRACES.zip. This is a 3Mb download which unzips into a 300 Mb assessment of webgoat. It has 131k findings and takes about 40 sec to 200 sec to load (depends on your CPU), but once loaded, you can run queries in seconds.
Finally, here are 3 videos that walk through the main features of this O2 module:
O2 Tool OzasmtQuery - Intro and main features (Part 1) - No audio voice over
O2 Tool OzasmtQuery - Viewing Findings and Traces (Part 2) - with audio
O2 Tool OzasmtQuery - Editing Findings and Traces (Part 3) - with audio