dradis-nikto 4.11.0 → 4.13.0

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 67e4bf7d7723dcfe5012564b1fa8b5e7f042c65ca5dc67df4b7cfb8baebfa2cf
-  data.tar.gz: f0a039d26c1bb7e77bbf803edee818658f0307a084dd69461c9d0ad70108918c
+  metadata.gz: b3f0440372ee5cd5e262c97d69db973f977f0a6d4e43db6d53fc12d2b053d503
+  data.tar.gz: a9b06f2bbe8f2b66ab9e3df1df65889597eff58dbd289cbe709d3aac135b86f8
 SHA512:
-  metadata.gz: 8fc903ac43bde5ece621e98da2871c4320dcb9c4d67113f1984274f98ab37fe19c51289a07bc765db80e5f2018755a63215aec27e35ebe37f9ca945750761d7d
-  data.tar.gz: 4626d6011bf20333946dd6d10f3cf03a79a632750e86235d4bcada7e95f61597fec3ce8b77bd667caa081a7d60f56b8bed25a81c9cdfe10692e2de07be783c92
+  metadata.gz: 91361b14d3fc1c240fd3e367fccbc11d2ebe42d33d0f0f45d6c8da93ab32e3930bd5c64257ac3d7ffe3c5749400196c6363437c86a397c9ad3546af4efaf7a7f
+  data.tar.gz: 29f766b6e244160d70ea1a3fefb0e6dec53d50855d57b065fc78401cd49e4ed897d7d4957d64d7e9f0a2a8631b2ce85579c982454ca0aec15da4949ec2cd7d64

data/CHANGELOG.md

@@ -1,3 +1,10 @@
+v4.13.0 (July 2024)
+  - No changes
+
+v4.12.0 (May 2024)
+ - Migrate integration to use Mappings Manager
+ - Update Dradis links in README
+
 v4.11.0 (January 2024)
   - No changes
 

data/README.md

@@ -4,8 +4,7 @@
 
 Upload Nikto files into Dradis.
 
-The add-on requires [Dradis CE](https://dradisframework.org/) > 3.0, or [Dradis Pro](https://dradisframework.com/pro/).
-
+The add-on requires [Dradis CE](https://dradis.com/ce/) > 3.0, or [Dradis Pro](https://dradis.com/).
 
 ## More information
 

data/dradis-nikto.gemspec

@@ -26,7 +26,7 @@ Gem::Specification.new do |spec|
   spec.add_dependency 'dradis-plugins', '~> 4.0'
   spec.add_dependency 'nokogiri', '~> 1.3'
 
-  spec.add_development_dependency 'bundler', '~> 1.6'
+  spec.add_development_dependency 'bundler', '~> 2.0'
   spec.add_development_dependency 'rake', '~> 10.0'
   spec.add_development_dependency 'rspec-rails'
   spec.add_development_dependency 'combustion', '~> 0.5.2'

data/lib/dradis/plugins/nikto/gem_version.rb

@@ -8,7 +8,7 @@ module Dradis
 
       module VERSION
         MAJOR = 4
-        MINOR = 11
+        MINOR = 13
         TINY = 0
         PRE = nil
 

data/lib/dradis/plugins/nikto/importer.rb

@@ -39,7 +39,7 @@ module Dradis::Plugins::Nikto
         # Scan details
         logger.info{ 'Adding ' + host_label }
         host_node = content_service.create_node(label: host_label, type: :host)
-        scan_text = template_service.process_template(template: 'scan', data: xml_scan)
+        scan_text = mapping_service.apply_mapping(source: 'scan', data: xml_scan)
         content_service.create_note(
           text: scan_text,
           node: host_node)
@@ -55,7 +55,7 @@ module Dradis::Plugins::Nikto
         # Check for SSL cert tag and add that data in as well
         unless xml_scan.at_xpath("ssl").nil?
           xml_ssl = xml_scan.at_xpath("ssl")
-          ssl_text = template_service.process_template(template: 'ssl', data: xml_ssl)
+          ssl_text = mapping_service.apply_mapping(source: 'ssl', data: xml_ssl)
           content_service.create_note(
             text: ssl_text,
             node: host_node)
@@ -64,12 +64,12 @@ module Dradis::Plugins::Nikto
         # Items
         xml_scan.xpath("item").each do |xml_item|
           plugin_id = xml_item.has_attribute?("id") ? xml_item["id"] : "Unknown"
-          item_text = template_service.process_template(template: 'item', data: xml_item)
+          item_text = mapping_service.apply_mapping(source: 'item', data: xml_item)
           logger.info{ 'Creating Issue ID' + plugin_id }
           issue = content_service.create_issue(text: item_text, id: plugin_id)
 
           logger.info{ "\t\t => Creating new evidence" }
-          evidence_content = template_service.process_template(template: 'evidence', data: xml_item)
+          evidence_content = mapping_service.apply_mapping(source: 'evidence', data: xml_item)
           content_service.create_evidence(issue: issue, node: host_node, content: evidence_content)
         end
       end

data/lib/dradis/plugins/nikto/mapping.rb

@@ -0,0 +1,61 @@
+module Dradis::Plugins::Nikto
+  module Mapping
+    DEFAULT_MAPPING = {
+      evidence: {
+        'Request' => 'Request Method: {{ nikto[item.request_method] }}',
+        'Links' => "Link: {{ nikto[item.namelink] }}\nIP Based Link: {{ nikto[item.iplink] }}"
+      },
+      item: {
+        'Title' => '{{ nikto[item.description] }}',
+        'Details' => '{{ nikto[item.description] }}',
+        'References' => '{{ nikto[item.references] }}'
+      },
+      scan: {
+        'Title' => 'Nikto upload: {{ nikto[scan.filename] }}',
+        'Details' => "IP: {{ nikto[scan.targetip] }}\nHostname: {{ nikto[scan.targethostname] }}\nPort: {{ nikto[scan.targetport] }}\nBanner: {{ nikto[scan.targetbanner] }}\nStarttime: {{ nikto[scan.starttime] }}\nSite Name: {{ nikto[scan.sitename] }}\nSite IP: {{ nikto[scan.siteip] }}\nHost Header: {{ nikto[scan.hostheader] }}\nErrors: {{ nikto[scan.errors] }}\nTotal Checks: {{ nikto[scan.checks] }}"
+      },
+      ssl: {
+        'Title' => 'SSL Cert Information',
+        'Details' => "Ciphers: {{ nikto[ssl.ciphers] }}\nIssuers: {{ nikto[ssl.issuers] }}\nInfo: {{ nikto[ssl.info] }}"
+      }
+    }.freeze
+
+    SOURCE_FIELDS = {
+      evidence: [
+        'item.request_method',
+        'item.uri',
+        'item.namelink',
+        'item.iplink'
+      ],
+      item: [
+        'item.description',
+        'item.id',
+        'item.iplink',
+        'item.namelink',
+        'item.osvdbid',
+        'item.osvdblink',
+        'item.references',
+        'item.request_method',
+        'item.uri'
+      ],
+      scan: [
+        'scan.filename',
+        'scan.targetip',
+        'scan.targethostname',
+        'scan.targetport',
+        'scan.targetbanner',
+        'scan.starttime',
+        'scan.sitename',
+        'scan.siteip',
+        'scan.hostheader',
+        'scan.errors',
+        'scan.checks'
+      ],
+      ssl: [
+        'ssl.ciphers',
+        'ssl.issuers',
+        'ssl.info'
+      ]
+    }.freeze
+  end
+end

data/lib/dradis/plugins/nikto.rb

@@ -7,5 +7,6 @@ end
 
 require 'dradis/plugins/nikto/engine'
 require 'dradis/plugins/nikto/field_processor'
+require 'dradis/plugins/nikto/mapping'
 require 'dradis/plugins/nikto/importer'
 require 'dradis/plugins/nikto/version'

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: dradis-nikto
 version: !ruby/object:Gem::Version
-  version: 4.11.0
+  version: 4.13.0
 platform: ruby
 authors:
 - Daniel Martin
 autorequire:
 bindir: bin
 cert_chain: []
-date: 2024-01-17 00:00:00.000000000 Z
+date: 2024-08-07 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: dradis-plugins
@@ -44,14 +44,14 @@ dependencies:
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: '1.6'
+        version: '2.0'
   type: :development
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: '1.6'
+        version: '2.0'
 - !ruby/object:Gem::Dependency
   name: rake
   requirement: !ruby/object:Gem::Requirement
@@ -119,6 +119,7 @@ files:
 - lib/dradis/plugins/nikto/field_processor.rb
 - lib/dradis/plugins/nikto/gem_version.rb
 - lib/dradis/plugins/nikto/importer.rb
+- lib/dradis/plugins/nikto/mapping.rb
 - lib/dradis/plugins/nikto/version.rb
 - lib/nikto/item.rb
 - lib/nikto/scan.rb
@@ -129,18 +130,10 @@ files:
 - spec/spec_helper.rb
 - spec/upload_v2.1.4_spec.rb
 - spec/upload_v2.5.0_spec.rb
-- templates/evidence.fields
 - templates/evidence.sample
-- templates/evidence.template
-- templates/item.fields
 - templates/item.sample
-- templates/item.template
-- templates/scan.fields
 - templates/scan.sample
-- templates/scan.template
-- templates/ssl.fields
 - templates/ssl.sample
-- templates/ssl.template
 homepage: https://dradis.com/integrations/nikto.html
 licenses:
 - GPL-2
@@ -160,7 +153,7 @@ required_rubygems_version: !ruby/object:Gem::Requirement
     - !ruby/object:Gem::Version
       version: '0'
 requirements: []
-rubygems_version: 3.3.7
+rubygems_version: 3.5.6
 signing_key:
 specification_version: 4
 summary: Nikto add-on for the Dradis Framework.

data/templates/evidence.fields

@@ -1,4 +0,0 @@
-item.request_method
-item.uri
-item.namelink
-item.iplink

data/templates/evidence.template

@@ -1,6 +0,0 @@
-#[Request]#
-Request Method: %item.request_method%
-
-#[Links]#
-Link: %item.namelink%
-IP Based Link: %item.iplink%

data/templates/item.fields

@@ -1,9 +0,0 @@
-item.description
-item.id
-item.iplink
-item.namelink
-item.osvdbid
-item.osvdblink
-item.references
-item.request_method
-item.uri

data/templates/item.template

@@ -1,8 +0,0 @@
-#[Title]#
-%item.description%
-
-#[Details]#
-%item.description%
-
-#[References]#
-%item.references%

data/templates/scan.fields

@@ -1,11 +0,0 @@
-scan.filename
-scan.targetip
-scan.targethostname
-scan.targetport
-scan.targetbanner
-scan.starttime
-scan.sitename
-scan.siteip
-scan.hostheader
-scan.errors
-scan.checks

data/templates/scan.template

@@ -1,14 +0,0 @@
-#[Title]#
-Nikto upload: %scan.filename%
-
-#[Details]#
-IP: %scan.targetip%
-Hostname: %scan.targethostname%
-Port: %scan.targetport%
-Banner: %scan.targetbanner%
-Starttime: %scan.starttime%
-Site Name: %scan.sitename%
-Site IP: %scan.siteip%
-Host Header: %scan.hostheader%
-Errors: %scan.errors%
-Total Checks: %scan.checks%

data/templates/ssl.fields

@@ -1,3 +0,0 @@
-ssl.ciphers
-ssl.issuers
-ssl.info

data/templates/ssl.template

@@ -1,7 +0,0 @@
-#[Title]#
-SSL Cert Information
-
-#[Details]#
-Ciphers: %ssl.ciphers%
-Issuers: %ssl.issuers%
-Info: %ssl.info%