cvss 0.50.0

data/.gitignore

@@ -0,0 +1,18 @@
+*.swp
+*.gem
+*.rbc
+.bundle
+.config
+.yardoc
+Gemfile.lock
+InstalledFiles
+_yardoc
+coverage
+doc/
+lib/bundler/man
+pkg
+rdoc
+spec/reports
+test/tmp
+test/version_tmp
+tmp

data/.rvmrc

@@ -0,0 +1,48 @@
+#!/usr/bin/env bash
+
+# This is an RVM Project .rvmrc file, used to automatically load the ruby
+# development environment upon cd'ing into the directory
+
+# First we specify our desired <ruby>[@<gemset>], the @gemset name is optional,
+# Only full ruby name is supported here, for short names use:
+#     echo "rvm use 1.9.3" > .rvmrc
+environment_id="ruby-1.9.3-p194@cvss"
+
+# Uncomment the following lines if you want to verify rvm version per project
+# rvmrc_rvm_version="1.14.2 ()" # 1.10.1 seams as a safe start
+# eval "$(echo ${rvm_version}.${rvmrc_rvm_version} | awk -F. '{print "[[ "$1*65536+$2*256+$3" -ge "$4*65536+$5*256+$6" ]]"}' )" || {
+#   echo "This .rvmrc file requires at least RVM ${rvmrc_rvm_version}, aborting loading."
+#   return 1
+# }
+
+# First we attempt to load the desired environment directly from the environment
+# file. This is very fast and efficient compared to running through the entire
+# CLI and selector. If you want feedback on which environment was used then
+# insert the word 'use' after --create as this triggers verbose mode.
+if [[ -d "${rvm_path:-$HOME/.rvm}/environments"
+  && -s "${rvm_path:-$HOME/.rvm}/environments/$environment_id" ]]
+then
+  \. "${rvm_path:-$HOME/.rvm}/environments/$environment_id"
+  [[ -s "${rvm_path:-$HOME/.rvm}/hooks/after_use" ]] &&
+    \. "${rvm_path:-$HOME/.rvm}/hooks/after_use" || true
+else
+  # If the environment file has not yet been created, use the RVM CLI to select.
+  rvm --create  "$environment_id" || {
+    echo "Failed to create RVM environment '${environment_id}'."
+    return 1
+  }
+fi
+
+# If you use bundler, this might be useful to you:
+# if [[ -s Gemfile ]] && {
+#   ! builtin command -v bundle >/dev/null ||
+#   builtin command -v bundle | GREP_OPTIONS= \grep $rvm_path/bin/bundle >/dev/null
+# }
+# then
+#   printf "%b" "The rubygem 'bundler' is not installed. Installing it now.\n"
+#   gem install bundler
+# fi
+# if [[ -s Gemfile ]] && builtin command -v bundle >/dev/null
+# then
+#   bundle install | GREP_OPTIONS= \grep -vE '^Using|Your bundle is complete'
+# fi

data/Gemfile

@@ -0,0 +1,4 @@
+source 'https://rubygems.org'
+
+# Specify your gem's dependencies in cvss.gemspec
+gemspec

data/LICENSE.txt

@@ -0,0 +1,22 @@
+Copyright (c) 2012 Paolo Perego
+
+MIT License
+
+Permission is hereby granted, free of charge, to any person obtaining
+a copy of this software and associated documentation files (the
+"Software"), to deal in the Software without restriction, including
+without limitation the rights to use, copy, modify, merge, publish,
+distribute, sublicense, and/or sell copies of the Software, and to
+permit persons to whom the Software is furnished to do so, subject to
+the following conditions:
+
+The above copyright notice and this permission notice shall be
+included in all copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND,
+EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF
+MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND
+NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE
+LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION
+OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION
+WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.

data/README.md

@@ -0,0 +1,29 @@
+# Cvss
+
+TODO: Write a gem description
+
+## Installation
+
+Add this line to your application's Gemfile:
+
+    gem 'cvss'
+
+And then execute:
+
+    $ bundle
+
+Or install it yourself as:
+
+    $ gem install cvss
+
+## Usage
+
+TODO: Write usage instructions here
+
+## Contributing
+
+1. Fork it
+2. Create your feature branch (`git checkout -b my-new-feature`)
+3. Commit your changes (`git commit -am 'Add some feature'`)
+4. Push to the branch (`git push origin my-new-feature`)
+5. Create new Pull Request

data/Rakefile

@@ -0,0 +1,8 @@
+#!/usr/bin/env rake
+require "bundler/gem_tasks"
+require "rspec/core/rake_task"
+
+RSpec::Core::RakeTask.new
+
+task :default => :spec
+task :test => :spec

data/bin/cvss

@@ -0,0 +1,10 @@
+#!/usr/bin/env ruby
+
+require 'cvss'
+
+raise "usage: cvss vector" if ARGV[0].nil?
+
+cvss = Cvss::Engine.new
+
+puts cvss.base if cvss.parse(ARGV[0])
+

data/cvss.gemspec

@@ -0,0 +1,23 @@
+# -*- encoding: utf-8 -*-
+lib = File.expand_path('../lib', __FILE__)
+$LOAD_PATH.unshift(lib) unless $LOAD_PATH.include?(lib)
+require 'cvss/version'
+
+Gem::Specification.new do |gem|
+  gem.name          = "cvss"
+  gem.version       = Cvss::VERSION
+  gem.authors       = ["Paolo Perego"]
+  gem.email         = ["thesp0nge@gmail.com"]
+  gem.description   = %q{cvss is a rubygem for parsing cvss vector and calculate cvss score given some parameter.}
+  gem.summary       = %q{cvss is a rubygem for parsing cvss vector and calculate cvss score given some parameter.}
+  gem.homepage      = ""
+
+  gem.files         = `git ls-files`.split($/)
+  gem.executables   = gem.files.grep(%r{^bin/}).map{ |f| File.basename(f) }
+  gem.test_files    = gem.files.grep(%r{^(test|spec|features)/})
+  gem.require_paths = ["lib"]
+
+  gem.add_development_dependency "rake"
+  gem.add_development_dependency "rspec"
+
+end

data/lib/cvss.rb

@@ -0,0 +1,11 @@
+require "cvss/version"
+require 'cvss/parser'
+require 'cvss/helpers'
+
+module Cvss 
+  class Engine
+    include Cvss::Parser
+    include Cvss::Helpers
+
+  end
+end

data/lib/cvss/helpers.rb

@@ -0,0 +1,13 @@
+module Cvss
+  module Helpers
+    def data_integrity
+      @base[:i]
+    end
+    def data_confidentiality
+      @base[:c]
+    end
+    def data_availability
+      @base[:a]
+    end
+  end
+end

data/lib/cvss/parser.rb

@@ -0,0 +1,44 @@
+module Cvss
+  module Parser
+
+    attr_reader :base
+
+    # It parses a string and it says if it's a good CVSS vector or not.
+    def parse(string)
+      @base = {}
+
+      toks = string.split("/")
+      return parse_base(toks)
+    end
+
+
+    private
+    # AV:N/AC:L/Au:N/C:N/I:N/A:C
+    def parse_base(tokens)
+      return false if tokens.count != 6
+      av = tokens[0].split(":")
+      return false if av.count != 2 or av[0] != "AV" or (av[1] != "N" and av[1] != "L" and av[1] != "A")
+
+      ac = tokens[1].split(":")
+      return false if ac.count != 2 or ac[0] != "AC" or (ac[1] != "H" and ac[1] != "M" and ac[1] != "L")
+      au = tokens[2].split(":")
+
+      return false if au.count != 2 or au[0] != "Au" or (au[1] != "M" and au[1] != "S" and au[1] != "N")
+
+      c = tokens[3].split(":")
+      return false if c.count != 2 or c[0] != "C" or (c[1] != "P" and c[1] != "C" and c[1] != "N")
+
+      i = tokens[4].split(":")
+      return false if i.count != 2 or i[0] != "I" or (i[1] != "P" and i[1] != "C" and i[1] != "N")
+      
+      a = tokens[5].split(":")
+      return false if a.count != 2 or a[0] != "A" or (a[1] != "P" and a[1] != "C" and a[1] != "N")
+
+
+      
+      
+      @base = {:av=>av[1], :ac=>ac[1], :au=>au[1], :c=>c[1], :i=>i[1], :a=>a[1]}
+      true
+    end
+  end
+end

data/lib/cvss/version.rb

@@ -0,0 +1,3 @@
+module Cvss
+  VERSION = "0.50.0"
+end

data/spec/cvss_spec.rb

@@ -0,0 +1,71 @@
+require 'spec_helper'
+
+describe "CVSS library" do
+  let(:cvss) { Cvss::Engine.new() } 
+  describe "parser" do
+
+    it "should have a parser method" do
+      cvss.should respond_to(:parse)
+
+    end
+    it "should recognize a bad input" do
+      cvss.parse("this is a test string").should be_false
+    end
+
+    it "should recognize a good input" do
+      cvss.parse("AV:N/AC:L/Au:N/C:N/I:N/A:C").should be_true
+    end
+
+    it "should recognize Access Vector" do
+      cvss.parse("AV:N/AC:L/Au:N/C:N/I:N/A:C")
+      cvss.base[:av].should == "N"
+    end
+
+    it "should recognize Access Complexity" do
+      cvss.parse("AV:N/AC:L/Au:N/C:N/I:N/A:C")
+      cvss.base[:ac].should == "L"
+    end
+    it "should recognize Authentication" do
+      cvss.parse("AV:N/AC:L/Au:N/C:N/I:N/A:C")
+      cvss.base[:au].should == "N"
+    end
+    it "should recognize Confidentiality" do
+      cvss.parse("AV:N/AC:L/Au:N/C:N/I:N/A:C")
+      cvss.base[:c].should == "N"
+    end
+    it "should recognize Integrity" do
+      cvss.parse("AV:N/AC:L/Au:N/C:N/I:N/A:C")
+      cvss.base[:i].should == "N"
+    end
+    it "should recognize Availability" do
+      cvss.parse("AV:N/AC:L/Au:N/C:N/I:N/A:C")
+      cvss.base[:a].should == "C"
+    end
+  end
+  describe "helper" do
+    it "should have a data integrity helper" do
+      cvss.should respond_to(:data_integrity)
+    end
+    it "should have a data confidentiality helper" do
+      cvss.should respond_to(:data_confidentiality)
+    end
+    it "should have a data availability helper" do
+      cvss.should respond_to(:data_availability)
+    end
+
+    it "should recognize Confidentiality" do
+      cvss.parse("AV:N/AC:L/Au:N/C:N/I:N/A:C")
+      cvss.data_confidentiality.should == "N"
+    end
+    it "should recognize Integrity" do
+      cvss.parse("AV:N/AC:L/Au:N/C:N/I:N/A:C")
+      cvss.data_integrity.should == "N"
+    end
+    it "should recognize Availability" do
+      cvss.parse("AV:N/AC:L/Au:N/C:N/I:N/A:C")
+      cvss.data_availability.should == "C"
+    end
+
+
+  end
+end

data/spec/spec_helper.rb

@@ -0,0 +1 @@
+require 'cvss'

metadata

@@ -0,0 +1,102 @@
+--- !ruby/object:Gem::Specification
+name: cvss
+version: !ruby/object:Gem::Version
+  version: 0.50.0
+  prerelease: 
+platform: ruby
+authors:
+- Paolo Perego
+autorequire: 
+bindir: bin
+cert_chain: []
+date: 2012-10-09 00:00:00.000000000 Z
+dependencies:
+- !ruby/object:Gem::Dependency
+  name: rake
+  requirement: !ruby/object:Gem::Requirement
+    none: false
+    requirements:
+    - - ! '>='
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    none: false
+    requirements:
+    - - ! '>='
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: rspec
+  requirement: !ruby/object:Gem::Requirement
+    none: false
+    requirements:
+    - - ! '>='
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    none: false
+    requirements:
+    - - ! '>='
+      - !ruby/object:Gem::Version
+        version: '0'
+description: cvss is a rubygem for parsing cvss vector and calculate cvss score given
+  some parameter.
+email:
+- thesp0nge@gmail.com
+executables:
+- cvss
+extensions: []
+extra_rdoc_files: []
+files:
+- .gitignore
+- .rvmrc
+- Gemfile
+- LICENSE.txt
+- README.md
+- Rakefile
+- bin/cvss
+- cvss.gemspec
+- lib/cvss.rb
+- lib/cvss/helpers.rb
+- lib/cvss/parser.rb
+- lib/cvss/version.rb
+- spec/cvss_spec.rb
+- spec/spec_helper.rb
+homepage: ''
+licenses: []
+post_install_message: 
+rdoc_options: []
+require_paths:
+- lib
+required_ruby_version: !ruby/object:Gem::Requirement
+  none: false
+  requirements:
+  - - ! '>='
+    - !ruby/object:Gem::Version
+      version: '0'
+      segments:
+      - 0
+      hash: -1438894689176709869
+required_rubygems_version: !ruby/object:Gem::Requirement
+  none: false
+  requirements:
+  - - ! '>='
+    - !ruby/object:Gem::Version
+      version: '0'
+      segments:
+      - 0
+      hash: -1438894689176709869
+requirements: []
+rubyforge_project: 
+rubygems_version: 1.8.24
+signing_key: 
+specification_version: 3
+summary: cvss is a rubygem for parsing cvss vector and calculate cvss score given
+  some parameter.
+test_files:
+- spec/cvss_spec.rb
+- spec/spec_helper.rb