dradis-nmap 3.18.0

data/spec/fixtures/files/sample.xml

@@ -0,0 +1,72 @@
+<?xml version="1.0"?>
+<?xml-stylesheet href="file:///usr/local/bin/../share/nmap/nmap.xsl" type="text/xsl"?>
+<!-- Nmap 5.59BETA3 scan initiated Fri Sep  9 18:33:41 2011 as:
+     nmap -T4 -A -p 1-1000 -oX - scanme.nmap.org -->
+<nmaprun scanner="nmap" args="nmap -T4 -A -p 1-1000 -oX - scanme.nmap.org" start="1315618421"
+         startstr="Fri Sep  9 18:33:41 2011" version="5.59BETA3" xmloutputversion="1.03">
+ <scaninfo type="syn" protocol="tcp" numservices="1000" services="1-1000"/>
+ <verbose level="0"/>
+ <debugging level="0"/>
+ <host starttime="1315618421" endtime="1315618434">
+  <status state="up" reason="echo-reply"/>
+  <address addr="74.207.244.221" addrtype="ipv4"/>
+  <hostnames>
+   <hostname name="scanme.nmap.org" type="user"/>
+   <hostname name="li86-221.members.linode.com" type="PTR"/>
+  </hostnames>
+  <ports>
+   <extraports state="closed" count="997">
+    <extrareasons reason="resets" count="997"/>
+   </extraports>
+   <port protocol="tcp" portid="22">
+    <state state="open" reason="syn-ack" reason_ttl="53"/>
+    <service name="ssh" product="OpenSSH" version="5.3p1 Debian 3ubuntu7"
+             extrainfo="protocol 2.0" ostype="Linux" method="probed" conf="10">
+     <cpe>cpe:/a:openbsd:openssh:5.3p1</cpe>
+     <cpe>cpe:/o:linux:kernel</cpe>
+    </service>
+    <script id="ssh-hostkey"
+            output="1024 8d:60:f1:7c:ca:b7:3d:0a:d6:67:54:9d:69:d9:b9:dd (DSA)&#xa;
+                    2048 79:f8:09:ac:d4:e2:32:42:10:49:d3:bd:20:82:85:ec (RSA)"/>
+   </port>
+   <port protocol="tcp" portid="80">
+    <state state="open" reason="syn-ack" reason_ttl="53"/>
+    <service name="http" product="Apache httpd" version="2.2.14"
+             extrainfo="(Ubuntu)" method="probed" conf="10">
+     <cpe>cpe:/a:apache:http_server:2.2.14</cpe>
+    </service>
+    <script id="http-title" output="Go ahead and ScanMe!"/>
+   </port>
+  </ports>
+  <os>
+   <portused state="open" proto="tcp" portid="22"/>
+   <portused state="closed" proto="tcp" portid="1"/>
+   <portused state="closed" proto="udp" portid="31289"/>
+   <osclass type="general purpose" vendor="Linux" osfamily="Linux"
+            osgen="2.6.X" accuracy="100">
+    <cpe>cpe:/o:linux:linux_kernel:2.6.39</cpe>
+   </osclass>
+   <osmatch name="Linux 2.6.39" accuracy="100" line="39278"/>
+  </os>
+  <uptime seconds="23450" lastboot="Fri Sep  9 12:03:04 2011"/>
+  <distance value="11"/>
+  <tcpsequence index="199" difficulty="Good luck!"
+               values="49018209,48C3EBED,495A2E7F,493EF30C,48ED43B3,495A9B0C"/>
+  <ipidsequence class="All zeros" values="0,0,0,0,0,0"/>
+  <tcptssequence class="1000HZ"
+                 values="165CC09,165CC6E,165CCD2,165CD36,165CD9A,165CE48"/>
+  <trace port="256" proto="tcp">
+   <!-- Several hop elements removed for brevity -->
+   <hop ttl="9" ipaddr="72.52.92.109" rtt="15.69" host="10gigabitethernet1-1.core1.fmt1.he.net"/>
+   <hop ttl="10" ipaddr="64.62.250.6" rtt="12.06" host="linode-llc.10gigabitethernet2-3.core1.fmt1.he.net"/>
+   <hop ttl="11" ipaddr="74.207.244.221" rtt="16.55" host="li86-221.members.linode.com"/>
+  </trace>
+  <times srtt="26517" rttvar="19989" to="106473"/>
+ </host>
+ <runstats>
+  <finished time="1315618434" timestr="Fri Sep  9 18:33:54 2011" elapsed="13.66"
+            summary="Nmap done at Fri Sep  9 18:33:54 2011; 1 IP address (1 host up)
+                     scanned in 13.66 seconds" exit="success"/>
+  <hosts up="1" down="0" total="1"/>
+ </runstats>
+</nmaprun>

data/spec/nmap_upload_spec.rb

@@ -0,0 +1,71 @@
+require 'spec_helper'
+
+describe 'Nmap upload plugin' do
+  describe "Importer" do
+
+    before(:each) do
+      # Stub template service
+      templates_dir = File.expand_path('../../templates', __FILE__)
+      expect_any_instance_of(Dradis::Plugins::TemplateService)
+      .to receive(:default_templates_dir).and_return(templates_dir)
+
+      # Init services
+      plugin = Dradis::Plugins::Nmap
+
+      @content_service = Dradis::Plugins::ContentService::Base.new(plugin: plugin)
+
+      @importer = plugin::Importer.new(
+        content_service: @content_service
+      )
+    end
+
+    it "creates an error note when the xml is not valid" do
+      expect(@content_service).to receive(:create_note) do |args|
+        expect(args[:text]).to include("#[Title]#\nInvalid file format")
+        OpenStruct.new(args)
+      end.once
+      
+      # Run the import
+      @importer.import(file: 'spec/fixtures/files/invalid.xml')
+    end
+
+    it "creates nodes, issues, notes and an evidences as needed" do
+      expect(@content_service).to receive(:create_node) do |args|
+        puts "create_node: #{ args.inspect }"
+        expect(args[:label]).to eq('74.207.244.221')
+        expect(args[:type]).to eq(:host)
+        obj = OpenStruct.new(args)
+        obj.define_singleton_method(:set_property) { |*| }
+        obj.define_singleton_method(:set_service) { |*| }
+        obj
+      end.once
+      expect(@content_service).to receive(:create_note) do |args|
+        puts "create_note: #{ args.inspect }"
+        expect(args[:text]).to include("#[Title]#\nNmap info: 74.207.244.221")
+        expect(args[:text]).to_not include("not recognized by the plugin")
+        expect(args[:node].label).to eq("74.207.244.221")
+        OpenStruct.new(args)
+      end.once
+      expect(@content_service).to receive(:create_note) do |args|
+        puts "create_note: #{ args.inspect }"
+        expect(args[:text]).to include("#[Title]#\n22/tcp is open (syn-ack)")
+        expect(args[:text]).to_not include("not recognized by the plugin")
+        expect(args[:text]).to include("#[Host]#\n74.207.244.221")
+        expect(args[:node].label).to eq("74.207.244.221")
+        OpenStruct.new(args)
+      end.once
+      expect(@content_service).to receive(:create_note) do |args|
+        puts "create_note: #{ args.inspect }"
+        expect(args[:text]).to include("#[Title]#\n80/tcp is open (syn-ack)")
+        expect(args[:text]).to_not include("not recognized by the plugin")
+        expect(args[:text]).to include("#[Host]#\n74.207.244.221")
+        expect(args[:node].label).to eq("74.207.244.221")
+        OpenStruct.new(args)
+      end.once
+
+      # Run the import
+      @importer.import(file: 'spec/fixtures/files/sample.xml')
+    end
+
+  end
+end

data/spec/spec_helper.rb

@@ -0,0 +1,9 @@
+require 'rubygems'
+require 'bundler/setup'
+require 'nokogiri'
+require 'combustion'
+
+Combustion.initialize!
+
+RSpec.configure do |config|
+end

data/templates/host.fields

@@ -0,0 +1,4 @@
+host.hostnames
+host.ip
+host.service_table
+host.os

data/templates/host.sample

@@ -0,0 +1,37 @@
+<host starttime="1378483073" endtime="1378483078">
+  <status state="up" reason="localhost-response" reason_ttl="0"/>
+  <address addr="127.0.0.1" addrtype="ipv4"/>
+  <hostnames>
+    <hostname name="localhost" type="user"/>
+    <hostname name="localhost" type="PTR"/>
+  </hostnames>
+  <ports>
+    <extraports state="closed" count="65529">
+      <extrareasons reason="resets" count="65529"/>
+    </extraports>
+    <port protocol="tcp" portid="25">
+      <state state="open" reason="syn-ack" reason_ttl="64"/>
+      <service name="smtp" method="table" conf="3"/>
+    </port>
+    <port protocol="tcp" portid="80">
+      <state state="open" reason="syn-ack" reason_ttl="64"/>
+      <service name="http" method="table" conf="3"/>
+    </port>
+    <port protocol="tcp" portid="443">
+      <state state="open" reason="syn-ack" reason_ttl="64"/>
+      <service name="https" method="table" conf="3"/>
+    </port>
+    <port protocol="tcp" portid="3000">
+      <state state="open" reason="syn-ack" reason_ttl="64"/>
+      <service name="ppp" method="table" conf="3"/>
+    </port>
+    <port protocol="tcp" portid="3306">
+      <state state="open" reason="syn-ack" reason_ttl="64"/>
+      <service name="mysql" method="table" conf="3"/>
+    </port>
+    <port protocol="tcp" portid="22007">
+      <state state="open" reason="syn-ack" reason_ttl="64"/>
+    </port>
+  </ports>
+  <times srtt="35" rttvar="5" to="100000"/>
+</host>

data/templates/host.template

@@ -0,0 +1,19 @@
+#[Title]#
+Nmap info: %host.ip%
+
+#[IP]#
+%host.ip%
+
+#[Hostnames]#
+%host.hostnames%
+
+#[OS]#
+%host.os%
+
+#[Services]#
+|_. Port number |_. Protocol |_. State |_. Service |_. Product |_. Version |
+%host.service_table%
+
+
+#[Type]#
+Properties

data/templates/port.fields

@@ -0,0 +1,9 @@
+port.number
+port.protocol
+port.state
+port.reason
+port.service.name
+port.service.product
+port.service.tunnel
+port.service.version
+port.host

data/templates/port.sample

@@ -0,0 +1,15 @@
+<port
+  protocol="tcp"
+  portid="25">
+
+  <state
+    state="open"
+    reason="syn-ack"
+    reason_ttl="64"/>
+  
+  <service
+    name="smtp"
+    method="table"
+    conf="3"
+    tunnel="ssl"/>
+</port>

data/templates/port.template

@@ -0,0 +1,14 @@
+#[Title]#
+%port.number%/%port.protocol% is %port.state% (%port.reason%)
+
+#[Service]#
+%port.service.name%
+
+#[Product]#
+%port.service.product%
+
+#[Version]#
+%port.service.version%
+
+#[Host]#
+%port.host%

metadata

@@ -0,0 +1,163 @@
+--- !ruby/object:Gem::Specification
+name: dradis-nmap
+version: !ruby/object:Gem::Version
+  version: 3.18.0
+platform: ruby
+authors:
+- Daniel Martin
+autorequire: 
+bindir: bin
+cert_chain: []
+date: 2020-07-22 00:00:00.000000000 Z
+dependencies:
+- !ruby/object:Gem::Dependency
+  name: dradis-plugins
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '3.6'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '3.6'
+- !ruby/object:Gem::Dependency
+  name: ruby-nmap
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '0.7'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '0.7'
+- !ruby/object:Gem::Dependency
+  name: bundler
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: rake
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '10.0'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '10.0'
+- !ruby/object:Gem::Dependency
+  name: rspec-rails
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: combustion
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: 0.5.2
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: 0.5.2
+description: This add-on allows you to upload and parse output produced from Nmap
+  web server scanner into Dradis.
+email:
+- etd@nomejortu.com
+executables: []
+extensions: []
+extra_rdoc_files: []
+files:
+- ".github/issue_template.md"
+- ".github/pull_request_template.md"
+- ".gitignore"
+- ".rspec"
+- CHANGELOG.md
+- CONTRIBUTING.md
+- Gemfile
+- LICENSE
+- README.md
+- Rakefile
+- dradis-nmap.gemspec
+- lib/dradis-nmap.rb
+- lib/dradis/plugins/nmap.rb
+- lib/dradis/plugins/nmap/engine.rb
+- lib/dradis/plugins/nmap/field_processor.rb
+- lib/dradis/plugins/nmap/gem_version.rb
+- lib/dradis/plugins/nmap/importer.rb
+- lib/dradis/plugins/nmap/version.rb
+- lib/tasks/thorfile.rb
+- spec/fixtures/files/invalid.xml
+- spec/fixtures/files/nse-01.xml
+- spec/fixtures/files/sample.xml
+- spec/nmap_upload_spec.rb
+- spec/spec_helper.rb
+- templates/host.fields
+- templates/host.sample
+- templates/host.template
+- templates/port.fields
+- templates/port.sample
+- templates/port.template
+homepage: http://dradisframework.org
+licenses:
+- GPL-2
+metadata: {}
+post_install_message: 
+rdoc_options: []
+require_paths:
+- lib
+required_ruby_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - ">="
+    - !ruby/object:Gem::Version
+      version: '0'
+required_rubygems_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - ">="
+    - !ruby/object:Gem::Version
+      version: '0'
+requirements: []
+rubygems_version: 3.1.2
+signing_key: 
+specification_version: 4
+summary: Nmap add-on for the Dradis Framework.
+test_files:
+- spec/fixtures/files/invalid.xml
+- spec/fixtures/files/nse-01.xml
+- spec/fixtures/files/sample.xml
+- spec/nmap_upload_spec.rb
+- spec/spec_helper.rb