dradis-nexpose 4.10.0 → 4.12.0

data/spec/fixtures/files/full.xml

@@ -9,7 +9,7 @@
         <name>localhost:5000</name>
       </names>
       <fingerprints>
-        <os certainty="0.80" family="IOS" product="IOS" vendor="Cisco"/>
+        <os certainty="0.80" family="IOS" product="IOS" vendor="Cisco" arch="x86_64"/>
       </fingerprints>
       <tests/>
       <endpoints>
@@ -20,23 +20,32 @@
                 <fingerprint certainty="0.90" family="NTP" product="NTP" vendor="Cisco"/>
               </fingerprints>
               <configuration>
-                <config name="ntp.variables">system=&quot;cisco&quot;, leap=0, stratum=5, rootdelay=88.21,
-
-rootdispersion=108.54, peer=24960, refid=135.89.100.96,
-
-reftime=0xD80BB6B5.715ACDD8, poll=10, clock=0xD80BB78F.8931F3F6,
-
-phase=8.259, freq=-141.24, error=11.32</config>
+                <config name="ntp.variables">system=&quot;cisco&quot;, leap=0, stratum=5, rootdelay=88.21,rootdispersion=108.54, peer=24960, refid=135.89.100.96,reftime=0xD80BB6B5.715ACDD8, poll=10, clock=0xD80BB78F.8931F3F6,phase=8.259, freq=-141.24, error=11.32</config>
               </configuration>
               <tests>
                 <test id="ntp-clock-variables-disclosure" pci-compliance-status="pass" scan-id="4" status="vulnerable-exploited" vulnerable-since="20141110T161846666">
                   <Paragraph>
-                    <Paragraph>The following NTP variables were found from a readvar request: system=&quot;cisco&quot;, leap=0, stratum=5, rootdelay=88.21,
-rootdispersion=108.54, peer=24960, refid=135.89.100.96,
-reftime=0xD80BB6B5.715ACDD8, poll=10, clock=0xD80BB78F.8931F3F6,
-phase=8.259, freq=-141.24, error=11.32</Paragraph>
+                    <Paragraph>The following NTP variables were found from a readvar request: system=&quot;cisco&quot;, leap=0, stratum=5, rootdelay=88.21, rootdispersion=108.54, peer=24960, refid=135.89.100.96, reftime=0xD80BB6B5.715ACDD8, poll=10, clock=0xD80BB78F.8931F3F6,phase=8.259, freq=-141.24, error=11.32</Paragraph>
                   </Paragraph>
                 </test>
+                <test id="test-02" pci-compliance-status="pass" scan-id="4" status="vulnerable-exploited" vulnerable-since="20141110T161846666">
+                  <ContainerBlockElement>
+                    <Paragraph>Vulnerable URL:
+                      <URLLink LinkURL="https://1.2.3.4/" LinkTitle="https://1.2.3.4/"></URLLink>
+                      More info
+                    </Paragraph>
+                    <Paragraph>CRAWL TRAFFIC
+                      Vulnerable response matched:
+                    </Paragraph>
+                    <Paragraph>ATTACK TRAFFIC
+                      Vulnerability proven via 1 attack
+                      <Paragraph>(1) Attack proof:
+                      Attack description:
+                      Missing HTTP header &quot;Content-Security-Policy&quot;
+                      Vulnerable response matched:
+                    </Paragraph></Paragraph>
+                  </ContainerBlockElement>
+                </test>
               </tests>
             </service>
           </services>
@@ -86,7 +95,7 @@ phase=8.259, freq=-141.24, error=11.32</Paragraph>
         </ContainerBlockElement>
       </solution>
     </vulnerability>
-    <vulnerability added="20120412T000000000" cvssScore="4.3" cvssVector="(AV:N/AC:M/Au:N/C:P/I:N/A:N)" id="ntp-clock-variables-disclosure" modified="20130828T000000000" pciSeverity="3" published="20031231T000000000" riskScore="549.07043" severity="4" title="Apache HTTPD: ETag Inode Information Leakage (CVE-2003-1418)">
+    <vulnerability added="20120412T000000000" cvssScore="4.3" cvssVector="(AV:N/AC:M/Au:N/C:P/I:N/A:N)" id="test-02" modified="20130828T000000000" pciSeverity="3" published="20031231T000000000" riskScore="549.07043" severity="4" title="Apache HTTPD: ETag Inode Information Leakage (CVE-2003-1418)">
       <malware/>
       <exploits/>
       <description>
@@ -110,33 +119,19 @@ phase=8.259, freq=-141.24, error=11.32</Paragraph>
           <UnorderedList>
             <ListItem>
               <Paragraph>
-                <Paragraph>You can remove inode information from the ETag header by adding the
-    following directive to your Apache config:</Paragraph>
+                <Paragraph>You can remove inode information from the ETag header by adding the following directive to your Apache config:</Paragraph>
                 <Paragraph preformat="true">FileETag MTime Size</Paragraph>
               </Paragraph>
             </ListItem>
             <ListItem>
               <Paragraph>OpenBSD</Paragraph>
               <Paragraph>Download and apply the patch from:
-
-
-
-
-
                 <URLLink LinkTitle="http://www.openbsd.org/errata32.html#httpd" LinkURL="http://www.openbsd.org/errata32.html#httpd"/></Paragraph>
               <Paragraph>
                 <Paragraph>The OpenBSD team has released a
-
-
-
-
-
                   <URLLink LinkTitle="http://www.openbsd.org/errata32.html#httpd" LinkURL="http://www.openbsd.org/errata32.html#httpd" href="http://www.openbsd.org/errata32.html#httpd">
-                    patch</URLLink>for the Apache inode and pid leak problem.  This patch can be applied
-    cleanly to 3.2 stable and rebuilt.  Restart httpd for the changes to
-    take effect.  OpenBSD 3.3 will ship with the patched httpd by default.
-    The patch can be applied to earlier 3.x versions of OpenBSD, but it
-    may require editing of the source code.</Paragraph>
+                    patch</URLLink>for the Apache inode and pid leak problem.  This patch can be applied cleanly to 3.2 stable and rebuilt.  Restart httpd for the changes to take effect.  OpenBSD 3.3 will ship with the patched httpd by default. The patch can be applied to earlier 3.x versions of OpenBSD, but it may require editing of the source code.
+                </Paragraph>
               </Paragraph>
             </ListItem>
           </UnorderedList>

data/spec/fixtures/files/full_with_duplicate_node.xml

@@ -0,0 +1,136 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<NexposeReport version="2.0">
+  <scans>
+    <scan endTime="20141110T175832478" id="4" name="USDA_Internal" startTime="20141110T094538362" status="finished"/>
+  </scans>
+  <nodes>
+    <node address="1.1.1.1" device-id="75" risk-score="0.0" scan-template="Edge Standard" site-importance="Normal" site-name="USDA_Internal" status="alive">
+      <names>
+        <name>localhost:5000</name>
+      </names>
+      <fingerprints>
+        <os certainty="0.80" family="IOS" product="IOS" vendor="Cisco" arch="x86_64"/>
+      </fingerprints>
+      <tests/>
+      <endpoints>
+        <endpoint port="123" protocol="udp" status="open">
+          <services>
+            <service name="NTP">
+              <fingerprints>
+                <fingerprint certainty="0.90" family="NTP" product="NTP" vendor="Cisco"/>
+              </fingerprints>
+              <configuration>
+                <config name="ntp.variables">system=&quot;cisco&quot;, leap=0, stratum=5, rootdelay=88.21,
+
+rootdispersion=108.54, peer=24960, refid=135.89.100.96,
+
+reftime=0xD80BB6B5.715ACDD8, poll=10, clock=0xD80BB78F.8931F3F6,
+
+phase=8.259, freq=-141.24, error=11.32</config>
+              </configuration>
+              <tests>
+                <test id="ntp-clock-variables-disclosure" pci-compliance-status="pass" scan-id="4" status="vulnerable-exploited" vulnerable-since="20141110T161846666">
+                  <Paragraph>
+                    <Paragraph>The following NTP variables were found from a readvar request: system=&quot;cisco&quot;, leap=0, stratum=5, rootdelay=88.21,
+rootdispersion=108.54, peer=24960, refid=135.89.100.96,
+reftime=0xD80BB6B5.715ACDD8, poll=10, clock=0xD80BB78F.8931F3F6,
+phase=8.259, freq=-141.24, error=11.32</Paragraph>
+                  </Paragraph>
+                </test>
+              </tests>
+            </service>
+          </services>
+        </endpoint>
+        <endpoint port="161" protocol="udp" status="open">
+          <services>
+            <service name="SNMP">
+              <tests/>
+            </service>
+          </services>
+        </endpoint>
+      </endpoints>
+    </node>
+    <node address="1.1.1.1" device-id="75" risk-score="0.0" scan-template="Edge Standard" site-importance="Normal" site-name="USDA_Internal" status="alive">
+      <names>
+        <name>localhost:6000</name>
+      </names>
+      <fingerprints>
+        <os certainty="0.80" family="IOS" product="IOS" vendor="Cisco" arch="x86_64"/>
+      </fingerprints>
+      <tests/>
+      <endpoints>
+        <endpoint port="123" protocol="udp" status="open">
+          <services>
+            <service name="NTP">
+              <fingerprints>
+                <fingerprint certainty="0.90" family="NTP" product="NTP" vendor="Cisco"/>
+              </fingerprints>
+              <configuration>
+                <config name="ntp.variables">system=&quot;cisco&quot;, leap=0, stratum=5, rootdelay=88.21,
+
+rootdispersion=108.54, peer=24960, refid=135.89.100.96,
+
+reftime=0xD80BB6B5.715ACDD8, poll=10, clock=0xD80BB78F.8931F3F6,
+
+phase=8.259, freq=-141.24, error=11.32</config>
+              </configuration>
+              <tests>
+                <test id="ntp-clock-variables-disclosure" pci-compliance-status="pass" scan-id="4" status="vulnerable-exploited" vulnerable-since="20141110T161846666">
+                  <Paragraph>
+                    <Paragraph>The following NTP variables were found from a readvar request: system=&quot;cisco&quot;, leap=0, stratum=5, rootdelay=88.21,
+rootdispersion=108.54, peer=24960, refid=135.89.100.96,
+reftime=0xD80BB6B5.715ACDD8, poll=10, clock=0xD80BB78F.8931F3F6,
+phase=8.259, freq=-141.24, error=11.32</Paragraph>
+                  </Paragraph>
+                </test>
+              </tests>
+            </service>
+          </services>
+        </endpoint>
+        <endpoint port="161" protocol="udp" status="open">
+          <services>
+            <service name="SNMP">
+              <tests/>
+            </service>
+          </services>
+        </endpoint>
+      </endpoints>
+    </node>
+  </nodes>
+  <VulnerabilityDefinitions>
+    <vulnerability added="20120412T000000000" cvssScore="4.3" cvssVector="(AV:N/AC:M/Au:N/C:P/I:N/A:N)" id="ntp-clock-variables-disclosure" modified="20131205T000000000" pciSeverity="3" published="20120127T000000000" riskScore="378.27377" severity="4" title="Apache HTTPD: error responses can expose cookies (CVE-2012-0053)">
+      <malware/>
+      <exploits>
+        <exploit id="3479" link="http://www.exploit-db.com/exploits/18442" skillLevel="Expert" title="Apache httpOnly Cookie Disclosure" type="exploitdb"/>
+      </exploits>
+      <description>
+        <ContainerBlockElement>
+          <Paragraph>A flaw was found in the default error response for status code 400.  This flaw could be used by an attacker to expose &quot;httpOnly&quot; cookies when no custom ErrorDocument is specified.</Paragraph>
+        </ContainerBlockElement>
+      </description>
+      <references>
+        <reference source="APPLE">APPLE-SA-2012-09-19-2</reference>
+        <reference source="BID">51706</reference>
+        <reference source="CVE">CVE-2012-0053</reference>
+        <reference source="REDHAT">RHSA-2012:0128</reference>
+        <reference source="SECUNIA">48551</reference>
+        <reference source="URL">http://httpd.apache.org/security/vulnerabilities_20.html</reference>
+        <reference source="URL">http://httpd.apache.org/security/vulnerabilities_22.html</reference>
+      </references>
+      <tags>
+        <tag>Apache</tag>
+        <tag>Apache HTTP Server</tag>
+        <tag>Web</tag>
+      </tags>
+      <solution>
+        <ContainerBlockElement>
+          <Paragraph>Apache HTTPD &gt;= 2.0 and &lt; 2.0.65</Paragraph>
+          <Paragraph>Download and apply the upgrade from:
+
+            <URLLink LinkTitle="http://archive.apache.org/dist/httpd/httpd-2.0.65.tar.gz" LinkURL="http://archive.apache.org/dist/httpd/httpd-2.0.65.tar.gz"/></Paragraph>
+          <Paragraph>Many platforms and distributions provide pre-built binary packages for Apache HTTP server.  These pre-built packages are usually customized and optimized for a particular distribution, therefore we recommend that you use the packages if they are available for your operating system.</Paragraph>
+        </ContainerBlockElement>
+      </solution>
+    </vulnerability>
+  </VulnerabilityDefinitions>
+</NexposeReport>

data/spec/nexpose_upload_spec.rb

@@ -1,170 +1,221 @@
-require 'spec_helper'
+require 'rails_helper'
 require 'ostruct'
 
 describe 'Nexpose upload plugin' do
-  before(:each) do
-    # Stub template service
-    templates_dir = File.expand_path('../../templates', __FILE__)
-    expect_any_instance_of(Dradis::Plugins::TemplateService)
-    .to receive(:default_templates_dir).and_return(templates_dir)
-
-    # Init services
-    plugin = Dradis::Plugins::Nexpose
-
-    @content_service = Dradis::Plugins::ContentService::Base.new(
-      logger: Logger.new(STDOUT),
-      plugin: plugin
-    )
-
-    @importer = plugin::Importer.new(
-      content_service: @content_service,
-    )
-
-    # Stub dradis-plugins methods
-    #
-    # They return their argument hashes as objects mimicking
-    # Nodes, Issues, etc
-    allow(@content_service).to receive(:create_node) do |args|
-      OpenStruct.new(args)
-    end
-    allow(@content_service).to receive(:create_note) do |args|
-      OpenStruct.new(args)
-    end
-    allow(@content_service).to receive(:create_issue) do |args|
-      OpenStruct.new(args)
-    end
-    allow(@content_service).to receive(:create_evidence) do |args|
-      OpenStruct.new(args)
-    end
+  before do
+    @fixtures_dir = File.expand_path('../fixtures/files/', __FILE__)
   end
 
-  describe "Importer: Simple" do
-    it "creates nodes, issues, notes and an evidences as needed" do
-
-      expect(@content_service).to receive(:create_node).with(hash_including label: '1.1.1.1', type: :host).once
-
-      expect(@content_service).to receive(:create_note) do |args|
-        expect(args[:text]).to include("Host Description : Linux 2.6.9-89.ELsmp")
-        expect(args[:text]).to include("Scanner Fingerprint certainty : 0.80")
-        expect(args[:node].label).to eq("1.1.1.1")
-      end.once
-
-      expect(@content_service).to receive(:create_node) do |args|
-        expect(args[:label]).to eq('Generic Findings')
-        expect(args[:parent].label).to eq("1.1.1.1")
+  describe 'importer' do
+    before(:each) do
+      # Stub template service
+      templates_dir = File.expand_path('../../templates', __FILE__)
+      expect_any_instance_of(Dradis::Plugins::TemplateService)
+        .to receive(:default_templates_dir).and_return(templates_dir)
+
+      # Init services
+      plugin = Dradis::Plugins::Nexpose
+
+      @content_service = Dradis::Plugins::ContentService::Base.new(
+        logger: Logger.new(STDOUT),
+        plugin: plugin
+      )
+
+      @importer = plugin::Importer.new(
+        content_service: @content_service,
+      )
+
+      # Stub dradis-plugins methods
+      #
+      # They return their argument hashes as objects mimicking
+      # Nodes, Issues, etc
+      allow(@content_service).to receive(:create_node) do |args|
         OpenStruct.new(args)
-      end.once
-
-      expect(@content_service).to receive(:create_node) do |args|
-        expect(args[:label]).to eq('udp-000')
-        expect(args[:parent].label).to eq("1.1.1.1")
+      end
+      allow(@content_service).to receive(:create_note) do |args|
         OpenStruct.new(args)
-      end.once
-
-      expect(@content_service).to receive(:create_note) do |args|
-        expect(args[:text]).to include("#[Id]#\nntpd-crypto")
-        expect(args[:text]).to include("#[host]#\n1.1.1.1")
-        expect(args[:node].label).to eq("udp-000")
-      end.once
-
-      expect(@content_service).to receive(:create_note) do |args|
-        expect(args[:text]).to include("#[Id]#\nntp-clock-radio")
-        expect(args[:text]).to include("#[host]#\n1.1.1.1")
-        expect(args[:node].label).to eq("udp-000")
-      end.once
-
-      @importer.import(file: 'spec/fixtures/files/simple.xml')
-    end
-  end
-
-  describe "Importer: Full" do
-    it "creates nodes, issues, notes and an evidences as needed" do
-      expect(@content_service).to receive(:create_node).with(hash_including label: "Nexpose Scan Summary").once
-      expect(@content_service).to receive(:create_note) do |args|
-        expect(args[:text]).to include("#[Title]#\nUSDA_Internal (4)")
-        expect(args[:node].label).to eq("Nexpose Scan Summary")
-      end.once
-
-      expect(@content_service).to receive(:create_node).with(
-        hash_including label: "1.1.1.1", type: :host
-      ).twice
-
-      expect(@content_service).to receive(:create_note) do |args|
-        expect(args[:text]).to include("#[Title]#\n1.1.1.1")
-        expect(args[:node].label).to eq("1.1.1.1")
-      end.once
-
-      expect(@content_service).to receive(:create_note) do |args|
-        expect(args[:text]).to include("#[Title]#\nService name: NTP")
-        expect(args[:node].label).to eq("1.1.1.1")
-      end.once
-
-      expect(@content_service).to receive(:create_note) do |args|
-        expect(args[:text]).to include("#[Title]#\nService name: SNMP")
-        expect(args[:node].label).to eq("1.1.1.1")
-      end.once
-
-      expect(@content_service).to receive(:create_issue) do |args|
-        expect(args[:text]).to include("#[Title]#\nApache HTTPD: error responses can expose cookies (CVE-2012-0053)")
-        expect(args[:id]).to eq("ntp-clock-variables-disclosure")
+      end
+      allow(@content_service).to receive(:create_issue) do |args|
         OpenStruct.new(args)
-      end.once
-
-      expect(@content_service).to receive(:create_issue) do |args|
-        expect(args[:text]).to include("#[Title]#\nApache HTTPD: ETag Inode Information Leakage (CVE-2003-1418)")
-        expect(args[:id]).to eq("ntp-clock-variables-disclosure")
+      end
+      allow(@content_service).to receive(:create_evidence) do |args|
         OpenStruct.new(args)
-      end.once
+      end
+    end
 
-      expect(@content_service).to receive(:create_evidence) do |args|
-        expect(args[:content]).to include("#[ID]#\nntp-clock-variables-disclosure\n\n")
-        expect(args[:issue].id).to eq("ntp-clock-variables-disclosure")
-        expect(args[:node].label).to eq("1.1.1.1")
-      end.once
+    describe 'Importer: Simple' do
+      it 'creates nodes, issues, notes and an evidences as needed' do
+
+        expect(@content_service).to receive(:create_node).with(hash_including label: '1.1.1.1', type: :host).once
+
+        expect(@content_service).to receive(:create_note) do |args|
+          expect(args[:text]).to include('Host Description : Linux 2.6.9-89.ELsmp')
+          expect(args[:text]).to include('Scanner Fingerprint certainty : 0.80')
+          expect(args[:node].label).to eq('1.1.1.1')
+        end.once
+
+        expect(@content_service).to receive(:create_node) do |args|
+          expect(args[:label]).to eq('Generic Findings')
+          expect(args[:parent].label).to eq('1.1.1.1')
+          OpenStruct.new(args)
+        end.once
+
+        expect(@content_service).to receive(:create_node) do |args|
+          expect(args[:label]).to eq('udp-000')
+          expect(args[:parent].label).to eq('1.1.1.1')
+          OpenStruct.new(args)
+        end.once
+
+        expect(@content_service).to receive(:create_note) do |args|
+          expect(args[:text]).to include("#[Id]#\nntpd-crypto")
+          expect(args[:text]).to include("#[host]#\n1.1.1.1")
+          expect(args[:node].label).to eq('udp-000')
+        end.once
+
+        expect(@content_service).to receive(:create_note) do |args|
+          expect(args[:text]).to include("#[Id]#\nntp-clock-radio")
+          expect(args[:text]).to include("#[host]#\n1.1.1.1")
+          expect(args[:node].label).to eq('udp-000')
+        end.once
+
+        @importer.import(file: @fixtures_dir + '/simple.xml')
+      end
+    end
 
-      allow_any_instance_of(OpenStruct).to receive(:respond_to?).with(:properties).and_return(true)
-      allow_any_instance_of(OpenStruct).to receive(:set_service).and_return(true)
+    describe 'Importer: Full' do
+      it 'creates nodes, issues, notes and an evidences as needed' do
+        expect(@content_service).to receive(:create_node).with(hash_including label: 'Nexpose Scan Summary').once
+        expect(@content_service).to receive(:create_note) do |args|
+          expect(args[:text]).to include("#[Title]#\nUSDA_Internal (4)")
+          expect(args[:node].label).to eq('Nexpose Scan Summary')
+        end.once
+
+        expect(@content_service).to receive(:create_node) do |args|
+          expect(args[:label]).to eq('1.1.1.1')
+          expect(args[:type]).to eq(:host)
+          create(:node, args.except(:type))
+        end
+
+        expect(@content_service).to receive(:create_note) do |args|
+          expect(args[:text]).to include("#[Title]#\n1.1.1.1")
+          expect(args[:node].label).to eq('1.1.1.1')
+        end.once
+
+        expect(@content_service).to receive(:create_note) do |args|
+          expect(args[:text]).to include("#[Title]#\nService name: NTP")
+          expect(args[:node].label).to eq('1.1.1.1')
+        end.once
+
+        expect(@content_service).to receive(:create_note) do |args|
+          expect(args[:text]).to include("#[Title]#\nService name: SNMP")
+          expect(args[:node].label).to eq('1.1.1.1')
+        end.once
+
+        expect(@content_service).to receive(:create_issue) do |args|
+          expect(args[:text]).to include("#[Title]#\nApache HTTPD: error responses can expose cookies (CVE-2012-0053)")
+          expect(args[:id]).to eq('ntp-clock-variables-disclosure')
+          OpenStruct.new(args)
+        end.once
+
+        expect(@content_service).to receive(:create_issue) do |args|
+          expect(args[:text]).to include("#[Title]#\nApache HTTPD: ETag Inode Information Leakage (CVE-2003-1418)")
+          expect(args[:id]).to eq('test-02')
+          OpenStruct.new(args)
+        end.once
+
+        expect(@content_service).to receive(:create_evidence) do |args|
+          expect(args[:content]).to include("#[ID]#\nntp-clock-variables-disclosure\n\n")
+          expect(args[:issue].id).to eq('ntp-clock-variables-disclosure')
+          expect(args[:node].label).to eq('1.1.1.1')
+        end.once
+
+        expect(@content_service).to receive(:create_evidence) do |args|
+          expect(args[:content]).to include("#[ID]#\ntest-02\n\n")
+          expect(args[:issue].id).to eq('test-02')
+          expect(args[:node].label).to eq('1.1.1.1')
+        end.once
+
+        @importer.import(file: @fixtures_dir + '/full.xml')
+
+        expect(Node.find_by(label: '1.1.1.1').properties[:os]).to eq('IOS')
+      end
 
-      expect_any_instance_of(OpenStruct).to receive(:set_property).with(:hostname, ['localhost:5000'])
-      expect_any_instance_of(OpenStruct).to receive(:set_property).with(:ip, '1.1.1.1')
-      expect_any_instance_of(OpenStruct).to receive(:set_property).with(:os, [])
-      expect_any_instance_of(OpenStruct).to receive(:set_property).with(:risk_score, '0.0')
+      it 'wraps ciphers inside ssl issues in code blocks' do
+        expect(@content_service).to receive(:create_issue) do |args|
+          expect(args[:text]).to include('bc. ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES128-GCM-SHA256')
+          OpenStruct.new(args)
+        end.once
 
-      @importer.import(file: 'spec/fixtures/files/full.xml')
-    end
+        @importer.import(file: @fixtures_dir + '/ssl.xml')
+      end
 
-    it "wraps ciphers inside ssl issues in code blocks" do
-      expect(@content_service).to receive(:create_issue) do |args|
-        expect(args[:text]).to include("bc. ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES128-GCM-SHA256")
-        OpenStruct.new(args)
-      end.once
+      # Regression test for github.com/dradis/dradis-nexpose/issues/1
+      it 'populates solutions regardless of if they are wrapped in paragraphs or lists' do
+        expect(@content_service).to receive(:create_issue) do |args|
+          expect(args[:text]).to include("#[Solution]#\n\nApache HTTPD >= 2.0 and < 2.0.65")
+          OpenStruct.new(args)
+        end.once
 
-      @importer.import(file: 'spec/fixtures/files/ssl.xml')
-    end
+        expect(@content_service).to receive(:create_issue) do |args|
+          expect(args[:text]).to include("#[Solution]#\n")
+          expect(args[:text]).to include('You can remove inode information from the ETag header')
+          OpenStruct.new(args)
+        end.once
 
-    # Regression test for github.com/dradis/dradis-nexpose/issues/1
-    it "populates solutions regardless they are wrapped in paragraphs or lists" do
-      expect(@content_service).to receive(:create_issue) do |args|
-        expect(args[:text]).to include("#[Solution]#\n\nApache HTTPD >= 2.0 and < 2.0.65")
-        OpenStruct.new(args)
-      end.once
+        @importer.import(file: @fixtures_dir + '/full.xml')
+      end
 
-      expect(@content_service).to receive(:create_issue) do |args|
-        expect(args[:text]).to include("#[Solution]#\n")
-        expect(args[:text]).to include("You can remove inode information from the ETag header")
-        OpenStruct.new(args)
-      end.once
+      it 'populates tests regardless of if they contain paragraphs or containerblockelements' do
+        expect(@content_service).to receive(:create_evidence) do |args|
+          expect(args[:content]).to include("#[Content]#\nThe following NTP variables")
+          OpenStruct.new(args)
+        end.once
+  
+        expect(@content_service).to receive(:create_evidence) do |args|
+          expect(args[:content]).to include("#[Content]#\nVulnerable URL:")
+          OpenStruct.new(args)
+        end.once
+
+        @importer.import(file: @fixtures_dir + '/full.xml')
+      end
 
-      @importer.import(file: 'spec/fixtures/files/full.xml')
-    end
+      it 'transforms html entities (&lt; and &gt;)' do
+        expect(@content_service).to receive(:create_issue) do |args|
+          expect(args[:text]).to include("#[Solution]#\n\nApache HTTPD >= 2.0 and < 2.0.65")
+          OpenStruct.new(args)
+        end
 
-    it "transforms html entities (&lt; and &gt;)" do
-      expect(@content_service).to receive(:create_issue) do |args|
-        expect(args[:text]).to include("#[Solution]#\n\nApache HTTPD >= 2.0 and < 2.0.65")
-        OpenStruct.new(args)
+        @importer.import(file: @fixtures_dir + '/full.xml')
       end
+    end
 
-      @importer.import(file: 'spec/fixtures/files/full.xml')
+    describe 'Importer: Full with duplicate nodes' do
+      it 'creates evidence for each instance of the node' do
+        expect(@content_service).to receive(:create_node).with(hash_including label: 'Nexpose Scan Summary').once
+        expect(@content_service).to receive(:create_node) do |args|
+          expect(args[:label]).to eq('1.1.1.1')
+          expect(args[:type]).to eq(:host)
+          create(:node, args.except(:type))
+        end
+
+        expect(@content_service).to receive(:create_evidence) do |args|
+          expect(args[:content]).to include("#[ID]#\nntp-clock-variables-disclosure\n\n")
+          expect(args[:issue].id).to eq('ntp-clock-variables-disclosure')
+          expect(args[:node].label).to eq('1.1.1.1')
+        end.twice
+
+        @importer.import(file: @fixtures_dir + '/full_with_duplicate_node.xml')
+      end
     end
   end
+
+  it 'parses the fingerprints field' do
+    doc = Nokogiri::XML(File.read(@fixtures_dir + '/full.xml'))
+
+    ts = Dradis::Plugins::TemplateService.new(plugin: Dradis::Plugins::Nexpose)
+    ts.set_template(template: 'full_node', content: "#[Fingerprints]#\n%node.fingerprints%\n")
+    result = ts.process_template(data: doc.at_xpath('//nodes/node'), template: 'full_node')
+
+    expect(result).to include('IOS')
+  end
 end

data/templates/full_evidence.sample

@@ -1,4 +1,4 @@
-<test id="http-coldfusion-cfide-unprotected" key="/CFIDE/adminapi/base.cfc?wsdl" status="vulnerable-exploited" scan-id="4" vulnerable-since="20141110T165124356" pci-compliance-status="fail">
+<test id="http-coldfusion-cfide-unprotected" key="/CFIDE/adminapi/base.cfc?wsdl" status="vulnerable-exploited" scan-id="4" vulnerable-since="20141110T165124356" pci-compliance-status="fail" port="123" protocol="udp">
   <Paragraph>
     <UnorderedList>
       <ListItem>Running HTTP service</ListItem>

data/templates/full_service.sample

@@ -14,4 +14,4 @@
 
   <tests>
   </tests>
-</service>
+</service>

data/templates/full_vulnerability.sample

@@ -6,6 +6,7 @@
   cvssScore="7.5"
   cvssVector="(AV:N/AC:L/Au:N/C:P/I:P/A:P)"
   published="19970101T000000000"
+  riskScore="123.4567"
   added="20041101T000000000"
   modified="20111117T000000000">