dradis-nessus 4.10.0 → 4.12.0

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: '080f08fe4a7a612c7264ce46339a6c996cd311b33d2cc8a09a360d1c686fdf5f'
-  data.tar.gz: 39512d271707760c6c7f166b45998d4d516fae2b67f8d051f229dc68476c5cdc
+  metadata.gz: 89e36338a9a7b2d0791868394749b7ceda41c746374e18ca3262208b8901f801
+  data.tar.gz: '085692aa88ed591b56b6e7b4f47959db2aa3a81a4157da9b42ca27dd50115098'
 SHA512:
-  metadata.gz: ce4a4e9f5f1cba8bda205f90b0721d3e9d7062ad858e6662537d640a411fff32ca3c7c4cae78946ebe15260d81fac1b233172ff01ec47a71b65159336e4abbff
-  data.tar.gz: 6e6158969274d12fdcc206300939ad2667b8c25c2ec2ebcaada26744d54cc6675b60d5361358f5e54b1db1f1c5179de8d8323829bff58eb485e6a3560ac97e20
+  metadata.gz: 6f11c491e50351cac07dc65fbfa06a96b20e73b4e1075dbccc1ef88356943a1d52847deac6a27c6e05bb50447d9f93d3d1e1ad886a0c90bdaca08a86d34b8acd
+  data.tar.gz: 161919167d9263c1c0782ea1317947e3a3f1f1d1a3748dcf9c3690b13a98524f9d7a62dddf9f87eb4c81f35125347b4a309810fcd35cd5429e4f77fefc68616a

data/.github/pull_request_template.md

@@ -1,3 +1,5 @@
+Please review [CONTRIBUTING.md](https://github.com/dradis/dradis-ce/blob/develop/CONTRIBUTING.md) and remove this line.
+
 ### Summary
 
 Provide a general description of the code changes in your pull
@@ -6,6 +8,11 @@ these bugs have open GitHub issues, be sure to tag them here as well,
 to keep the conversation linked together.
 
 
+### Testing Steps
+
+Provide steps to test functionality, described in detail for someone not familiar with this part of the application / code base
+
+
 ### Other Information
 
 If there's anything else that's important and relevant to your pull
@@ -26,11 +33,13 @@ products, we must have the copyright associated with the entire
 codebase. Any code you create which is merged must be owned by us.
 That's not us trying to be a jerks, that's just the way it works.
 
-Please review the [CONTRIBUTING.md](https://github.com/dradis/dradis-ce/blob/master/CONTRIBUTING.md)
-file for the details.
-
 You can delete this section, but the following sentence needs to
 remain in the PR's description:
 
 > I assign all rights, including copyright, to any future Dradis
 > work by myself to Security Roots.
+
+### Check List
+
+- [ ] Added a CHANGELOG entry
+- [ ] Added specs

data/CHANGELOG.md

@@ -1,3 +1,10 @@
+v4.12.0 (May 2024)
+ - Migrate integration to use Mappings Manager
+ - Update Dradis links in README
+
+v4.11.0 (January 2024)
+  - No changes
+
 v4.10.0 (September 2023)
   - Update gemspec links
 

data/README.md

@@ -8,17 +8,16 @@ The parser only supports version 2 of nessus xml format. Other formats (nbe, nsr
 
 Also, the xml parser only extracts the results of a scan. It is not able to parse the scan policy itself which is also part of the xml file.
 
-The add-on requires Dradis 3.0 or higher.
-
+The add-on requires [Dradis CE](https://dradis.com/ce/) > 3.0, or [Dradis Pro](https://dradis.com/).
 
 ## More information
 
-See the Dradis Framework's [README.md](https://github.com/dradis/dradisframework/blob/master/README.md)
+See the Dradis Framework's [README.md](https://github.com/dradis/dradis-ce/blob/develop/README.md)
 
 
 ## Contributing
 
-See the Dradis Framework's [CONTRIBUTING.md](https://github.com/dradis/dradisframework/blob/master/CONTRIBUTING.md)
+See the Dradis Framework's [CONTRIBUTING.md](https://github.com/dradis/dradis-ce/blob/develop/CONTRIBUTING.md)
 
 
 ## License

data/lib/dradis/plugins/nessus/gem_version.rb

@@ -8,7 +8,7 @@ module Dradis
 
       module VERSION
         MAJOR = 4
-        MINOR = 10
+        MINOR = 12
         TINY = 0
         PRE = nil
 

data/lib/dradis/plugins/nessus/importer.rb

@@ -79,7 +79,7 @@ module Dradis::Plugins::Nessus
       logger.info{ "\tHost: #{host_label}" }
 
       # 2. Add host info note and host properties
-      host_note_text = template_service.process_template(template: 'report_host', data: xml_host)
+      host_note_text = mapping_service.apply_mapping(source: 'report_host', data: xml_host)
       content_service.create_note(text: host_note_text, node: host_node)
 
       if host_node.respond_to?(:properties)
@@ -123,7 +123,7 @@ module Dradis::Plugins::Nessus
       plugin_id = xml_report_item.attributes['pluginID'].value
       logger.info{ "\t\t => Creating new issue (plugin_id: #{plugin_id})" }
 
-      issue_text = template_service.process_template(template: 'report_item', data: xml_report_item)
+      issue_text = mapping_service.apply_mapping(source: 'report_item', data: xml_report_item)
 
       issue = content_service.create_issue(text: issue_text, id: plugin_id)
 
@@ -133,7 +133,7 @@ module Dradis::Plugins::Nessus
       port_info += xml_report_item.attributes['port'].value
 
       logger.info{ "\t\t\t => Adding reference to this host" }
-      evidence_content = template_service.process_template(template: 'evidence', data: xml_report_item)
+      evidence_content = mapping_service.apply_mapping(source: 'evidence', data: xml_report_item)
 
       content_service.create_evidence(issue: issue, node: host_node, content: evidence_content)
 

data/lib/dradis/plugins/nessus/mapping.rb

@@ -0,0 +1,102 @@
+module Dradis::Plugins::Nessus
+  module Mapping
+    DEFAULT_MAPPING = {
+      evidence: {
+        'Location' => '{{ nessus[evidence.protocol] }}/{{ nessus[evidence.port] }}',
+        'Output' => 'bc.. {{ nessus[evidence.plugin_output] }}'
+      },
+      report_host: {
+        'Title' => 'Nessus host summary',
+        'Host information' => "Name: {{ nessus[report_host.name] }}\nIP address: {{ nessus[report_host.ip] }}\nFQDN: {{ nessus[report_host.fqdn] }}\nOS: {{ nessus[report_host.operating_system] }}\nMac address: {{ nessus[report_host.mac_address] }}\nNetbios name: {{ nessus[report_host.netbios_name] }}",
+        'Scan information' => "Scan started: {{ nessus[report_host.scan_start_time] }}\nScan ended: {{ nessus[report_host.scan_stop_time] }}"
+      },
+      report_item: {
+        'Title' => '{{ nessus[report_item.plugin_name] }}',
+        'CVSSv3.BaseScore' => '{{ nessus[report_item.cvss3_base_score] }}',
+        'CVSSv3Vector' => '{{ nessus[report_item.cvss3_vector] }}',
+        'Type' => 'Internal',
+        'Description' => '{{ nessus[report_item.description] }}',
+        'Solution' => '{{ nessus[report_item.solution] }}',
+        'References' => '{{ nessus[report_item.see_also_entries] }}'
+      }
+    }.freeze
+
+    SOURCE_FIELDS = {
+      evidence: [
+        'compliance.cm_actual_value',
+        'compliance.cm_audit_file',
+        'compliance.cm_check_id',
+        'compliance.cm_check_name',
+        'compliance.cm_info',
+        'compliance.cm_output',
+        'compliance.cm_policy_value',
+        'compliance.cm_reference',
+        'compliance.cm_result',
+        'compliance.cm_see_also',
+        'compliance.cm_solution',
+        'evidence.plugin_output',
+        'evidence.port',
+        'evidence.protocol',
+        'evidence.svc_name',
+        'evidence.severity',
+        'report_item.plugin_name'
+      ],
+      report_host: [
+        'report_host.name',
+        'report_host.ip',
+        'report_host.fqdn',
+        'report_host.operating_system',
+        'report_host.mac_address',
+        'report_host.netbios_name',
+        'report_host.scan_start_time',
+        'report_host.scan_stop_time'
+      ],
+      report_item: [
+        'report_item.age_of_vuln',
+        'report_item.bid_entries',
+        'report_item.cve_entries',
+        'report_item.cvss3_base_score',
+        'report_item.cvss3_impact_score',
+        'report_item.cvss3_temporal_score',
+        'report_item.cvss3_temporal_vector',
+        'report_item.cvss3_vector',
+        'report_item.cvss_base_score',
+        'report_item.cvss_temporal_score',
+        'report_item.cvss_temporal_vector',
+        'report_item.cvss_vector',
+        'report_item.description',
+        'report_item.exploitability_ease',
+        'report_item.exploit_available',
+        'report_item.exploit_code_maturity',
+        'report_item.exploit_framework_canvas',
+        'report_item.exploit_framework_core',
+        'report_item.exploit_framework_metasploit',
+        'report_item.metasploit_name',
+        'report_item.patch_publication_date',
+        'report_item.plugin_family',
+        'report_item.plugin_id',
+        'report_item.plugin_modification_date',
+        'report_item.plugin_name',
+        'report_item.plugin_output',
+        'report_item.plugin_publication_date',
+        'report_item.plugin_type',
+        'report_item.plugin_version',
+        'report_item.port',
+        'report_item.product_coverage',
+        'report_item.protocol',
+        'report_item.risk_factor',
+        'report_item.see_also_entries',
+        'report_item.severity',
+        'report_item.solution',
+        'report_item.svc_name',
+        'report_item.synopsis',
+        'report_item.threat_intensity_last_28',
+        'report_item.threat_recency',
+        'report_item.threat_sources_last_28',
+        'report_item.vpr_score',
+        'report_item.vuln_publication_date',
+        'report_item.xref_entries'
+      ]
+    }.freeze
+  end
+end

data/lib/dradis/plugins/nessus.rb

@@ -7,5 +7,6 @@ end
 
 require 'dradis/plugins/nessus/engine'
 require 'dradis/plugins/nessus/field_processor'
+require 'dradis/plugins/nessus/mapping'
 require 'dradis/plugins/nessus/importer'
 require 'dradis/plugins/nessus/version'

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: dradis-nessus
 version: !ruby/object:Gem::Version
-  version: 4.10.0
+  version: 4.12.0
 platform: ruby
 authors:
 - Daniel Martin
-autorequire: 
+autorequire:
 bindir: bin
 cert_chain: []
-date: 2023-09-07 00:00:00.000000000 Z
+date: 2024-05-07 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: dradis-plugins
@@ -96,7 +96,7 @@ dependencies:
         version: 0.5.2
 description: This add-on allows you to upload and parse output produced from Tenable's
   Nessus Scanner into Dradis.
-email: 
+email:
 executables: []
 extensions: []
 extra_rdoc_files: []
@@ -119,6 +119,7 @@ files:
 - lib/dradis/plugins/nessus/field_processor.rb
 - lib/dradis/plugins/nessus/gem_version.rb
 - lib/dradis/plugins/nessus/importer.rb
+- lib/dradis/plugins/nessus/mapping.rb
 - lib/dradis/plugins/nessus/version.rb
 - lib/nessus/host.rb
 - lib/nessus/report_item.rb
@@ -130,20 +131,14 @@ files:
 - spec/fixtures/files/report_item-with-list.xml
 - spec/nessus/host_spec.rb
 - spec/spec_helper.rb
-- templates/evidence.fields
 - templates/evidence.sample
-- templates/evidence.template
-- templates/report_host.fields
 - templates/report_host.sample
-- templates/report_host.template
-- templates/report_item.fields
 - templates/report_item.sample
-- templates/report_item.template
 homepage: https://dradis.com/integrations/nessus.html
 licenses:
 - GPL-2
 metadata: {}
-post_install_message: 
+post_install_message:
 rdoc_options: []
 require_paths:
 - lib
@@ -158,8 +153,8 @@ required_rubygems_version: !ruby/object:Gem::Requirement
     - !ruby/object:Gem::Version
       version: '0'
 requirements: []
-rubygems_version: 3.1.4
-signing_key: 
+rubygems_version: 3.5.6
+signing_key:
 specification_version: 4
 summary: Nessus upload add-on for the Dradis Framework.
 test_files:

data/templates/evidence.fields

@@ -1,17 +0,0 @@
-compliance.cm_actual_value
-compliance.cm_audit_file
-compliance.cm_check_id
-compliance.cm_check_name
-compliance.cm_info
-compliance.cm_output
-compliance.cm_policy_value
-compliance.cm_reference
-compliance.cm_result
-compliance.cm_see_also
-compliance.cm_solution
-evidence.plugin_output
-evidence.port
-evidence.protocol
-evidence.svc_name
-evidence.severity
-report_item.plugin_name

data/templates/evidence.template

@@ -1,5 +0,0 @@
-#[Location]#
-%evidence.protocol%/%evidence.port%
-
-#[Output]#
-bc.. %evidence.plugin_output%

data/templates/report_host.fields

@@ -1,8 +0,0 @@
-report_host.name
-report_host.ip
-report_host.fqdn
-report_host.operating_system
-report_host.mac_address
-report_host.netbios_name
-report_host.scan_start_time
-report_host.scan_stop_time

data/templates/report_host.template

@@ -1,14 +0,0 @@
-#[Title]#
-Nessus host summary
-
-#[Host information]#
-Name: %report_host.name%
-IP address: %report_host.ip%
-FQDN: %report_host.fqdn%
-OS: %report_host.operating_system%
-Mac address: %report_host.mac_address%
-Netbios name: %report_host.netbios_name%
-
-#[Scan information]#
-Scan started: %report_host.scan_start_time%
-Scan ended: %report_host.scan_stop_time%

data/templates/report_item.fields

@@ -1,44 +0,0 @@
-report_item.age_of_vuln
-report_item.bid_entries
-report_item.cve_entries
-report_item.cvss3_base_score
-report_item.cvss3_impact_score
-report_item.cvss3_temporal_score
-report_item.cvss3_temporal_vector
-report_item.cvss3_vector
-report_item.cvss_base_score
-report_item.cvss_temporal_score
-report_item.cvss_temporal_vector
-report_item.cvss_vector
-report_item.description
-report_item.exploitability_ease
-report_item.exploit_available
-report_item.exploit_code_maturity
-report_item.exploit_framework_canvas
-report_item.exploit_framework_core
-report_item.exploit_framework_metasploit
-report_item.metasploit_name
-report_item.patch_publication_date
-report_item.plugin_family
-report_item.plugin_id
-report_item.plugin_modification_date
-report_item.plugin_name
-report_item.plugin_output
-report_item.plugin_publication_date
-report_item.plugin_type
-report_item.plugin_version
-report_item.port
-report_item.product_coverage
-report_item.protocol
-report_item.risk_factor
-report_item.see_also_entries
-report_item.severity
-report_item.solution
-report_item.svc_name
-report_item.synopsis
-report_item.threat_intensity_last_28
-report_item.threat_recency
-report_item.threat_sources_last_28
-report_item.vpr_score
-report_item.vuln_publication_date
-report_item.xref_entries

data/templates/report_item.template

@@ -1,20 +0,0 @@
-#[Title]#
-%report_item.plugin_name%
-
-#[CVSSv3.BaseScore]#
-%report_item.cvss3_base_score%
-
-#[CVSSv3Vector]#
-%report_item.cvss3_vector%
-
-#[Type]#
-Internal
-
-#[Description]#
-%report_item.description%
-
-#[Solution]#
-%report_item.solution%
-
-#[References]#
-%report_item.see_also_entries%