dradis-nmap 3.1.0

data/spec/nmap_upload_spec.rb

@@ -0,0 +1,90 @@
+require 'spec_helper'
+
+describe 'Nmap upload plugin' do
+  describe "Importer" do
+
+    before(:each) do
+      # Stub template service
+      templates_dir = File.expand_path('../../templates', __FILE__)
+      expect_any_instance_of(Dradis::Plugins::TemplateService)
+      .to receive(:default_templates_dir).and_return(templates_dir)
+
+      # Init services
+      plugin = Dradis::Plugins::Nmap
+
+      @content_service = Dradis::Plugins::ContentService.new(plugin: plugin)
+      template_service = Dradis::Plugins::TemplateService.new(plugin: plugin)
+
+      @importer = plugin::Importer.new(
+        content_service: @content_service,
+        template_service: template_service
+      )
+
+      # Stub dradis-plugins methods
+      #
+      # They return their argument hashes as objects mimicking
+      # Nodes, Issues, etc
+      allow(@content_service).to receive(:create_node) do |args|
+        # puts "create_node: #{ args.inspect }"
+        OpenStruct.new(args)
+      end
+      allow(@content_service).to receive(:create_note) do |args|
+        # puts "create_note: #{ args.inspect }"
+        OpenStruct.new(args)
+      end
+      allow(@content_service).to receive(:create_issue) do |args|
+        # puts "create_issue: #{ args.inspect }"
+        OpenStruct.new(args)
+      end
+      allow(@content_service).to receive(:create_evidence) do |args|
+        # puts "create_evidence: #{ args.inspect }"
+        OpenStruct.new(args)
+      end
+    end
+
+    it "creates an error note when the xml is not valid" do
+      expect(@content_service).to receive(:create_note) do |args|
+        expect(args[:text]).to include("#[Title]#\nInvalid file format")
+        OpenStruct.new(args)
+      end.once
+      # Run the import
+      @importer.import(file: 'spec/fixtures/files/invalid.xml')
+    end
+
+    it "creates nodes, issues, notes and an evidences as needed" do
+      expect(@content_service).to receive(:create_node) do |args|
+        # puts "create_node: #{ args.inspect }"
+        expect(args[:label]).to eq('74.207.244.221')
+        expect(args[:type]).to eq(:host)
+        OpenStruct.new(args)
+      end.once
+      expect(@content_service).to receive(:create_note) do |args|
+        puts "create_note: #{ args.inspect }"
+        expect(args[:text]).to include("#[Title]#\nNmap info: 74.207.244.221")
+        expect(args[:text]).to_not include("not recognized by the plugin")
+        expect(args[:node].label).to eq("74.207.244.221")
+        OpenStruct.new(args)
+      end.once
+      expect(@content_service).to receive(:create_note) do |args|
+        puts "create_note: #{ args.inspect }"
+        expect(args[:text]).to include("#[Title]#\n22/tcp is open (syn-ack)")
+        expect(args[:text]).to_not include("not recognized by the plugin")
+        expect(args[:text]).to include("#[Host]#\n74.207.244.221")
+        expect(args[:node].label).to eq("74.207.244.221")
+        OpenStruct.new(args)
+      end.once
+      expect(@content_service).to receive(:create_note) do |args|
+        puts "create_note: #{ args.inspect }"
+        expect(args[:text]).to include("#[Title]#\n80/tcp is open (syn-ack)")
+        expect(args[:text]).to_not include("not recognized by the plugin")
+        expect(args[:text]).to include("#[Host]#\n74.207.244.221")
+        expect(args[:node].label).to eq("74.207.244.221")
+        OpenStruct.new(args)
+      end.once
+
+      # Run the import
+      @importer.import(file: 'spec/fixtures/files/sample.xml')
+    end
+
+  end
+end

data/spec/spec_helper.rb

@@ -0,0 +1,9 @@
+require 'rubygems'
+require 'bundler/setup'
+require 'nokogiri'
+require 'combustion'
+
+Combustion.initialize!
+
+RSpec.configure do |config|
+end

data/templates/host.fields

@@ -0,0 +1,4 @@
+host.hostnames
+host.ip
+host.service_table
+host.os

data/templates/host.sample

@@ -0,0 +1,37 @@
+<host starttime="1378483073" endtime="1378483078">
+  <status state="up" reason="localhost-response" reason_ttl="0"/>
+  <address addr="127.0.0.1" addrtype="ipv4"/>
+  <hostnames>
+    <hostname name="localhost" type="user"/>
+    <hostname name="localhost" type="PTR"/>
+  </hostnames>
+  <ports>
+    <extraports state="closed" count="65529">
+      <extrareasons reason="resets" count="65529"/>
+    </extraports>
+    <port protocol="tcp" portid="25">
+      <state state="open" reason="syn-ack" reason_ttl="64"/>
+      <service name="smtp" method="table" conf="3"/>
+    </port>
+    <port protocol="tcp" portid="80">
+      <state state="open" reason="syn-ack" reason_ttl="64"/>
+      <service name="http" method="table" conf="3"/>
+    </port>
+    <port protocol="tcp" portid="443">
+      <state state="open" reason="syn-ack" reason_ttl="64"/>
+      <service name="https" method="table" conf="3"/>
+    </port>
+    <port protocol="tcp" portid="3000">
+      <state state="open" reason="syn-ack" reason_ttl="64"/>
+      <service name="ppp" method="table" conf="3"/>
+    </port>
+    <port protocol="tcp" portid="3306">
+      <state state="open" reason="syn-ack" reason_ttl="64"/>
+      <service name="mysql" method="table" conf="3"/>
+    </port>
+    <port protocol="tcp" portid="22007">
+      <state state="open" reason="syn-ack" reason_ttl="64"/>
+    </port>
+  </ports>
+  <times srtt="35" rttvar="5" to="100000"/>
+</host>

data/templates/host.template

@@ -0,0 +1,19 @@
+#[Title]#
+Nmap info: %host.ip%
+
+#[IP]#
+%host.ip%
+
+#[Hostnames]#
+%host.hostnames%
+
+#[OS]#
+%host.os%
+
+#[Services]#
+|_. Port number |_. Protocol |_. State |_. Service |_. Product |_. Version |
+%host.service_table%
+
+
+#[Type]#
+Properties

data/templates/port.fields

@@ -0,0 +1,8 @@
+port.number
+port.protocol
+port.state
+port.reason
+port.service.name
+port.service.product
+port.service.version
+port.host

data/templates/port.sample

@@ -0,0 +1,14 @@
+<port
+  protocol="tcp"
+  portid="25">
+
+  <state
+    state="open"
+    reason="syn-ack"
+    reason_ttl="64"/>
+  
+  <service
+    name="smtp"
+    method="table"
+    conf="3"/>
+</port>

data/templates/port.template

@@ -0,0 +1,14 @@
+#[Title]#
+%port.number%/%port.protocol% is %port.state% (%port.reason%)
+
+#[Service]#
+%port.service.name%
+
+#[Product]#
+%port.service.product%
+
+#[Version]#
+%port.service.version%
+
+#[Host]#
+%port.host%

metadata

@@ -0,0 +1,161 @@
+--- !ruby/object:Gem::Specification
+name: dradis-nmap
+version: !ruby/object:Gem::Version
+  version: 3.1.0
+platform: ruby
+authors:
+- Daniel Martin
+autorequire: 
+bindir: bin
+cert_chain: []
+date: 2016-08-12 00:00:00.000000000 Z
+dependencies:
+- !ruby/object:Gem::Dependency
+  name: dradis-plugins
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '3.2'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '3.2'
+- !ruby/object:Gem::Dependency
+  name: ruby-nmap
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '0.7'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '0.7'
+- !ruby/object:Gem::Dependency
+  name: bundler
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '1.6'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '1.6'
+- !ruby/object:Gem::Dependency
+  name: rake
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '10.0'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '10.0'
+- !ruby/object:Gem::Dependency
+  name: rspec-rails
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: combustion
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: 0.5.2
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: 0.5.2
+description: This add-on allows you to upload and parse output produced from Nmap
+  web server scanner into Dradis.
+email:
+- etd@nomejortu.com
+executables: []
+extensions: []
+extra_rdoc_files: []
+files:
+- ".gitignore"
+- ".rspec"
+- CONTRIBUTING.md
+- Gemfile
+- LICENSE
+- README.md
+- Rakefile
+- dradis-nmap.gemspec
+- lib/dradis-nmap.rb
+- lib/dradis/plugins/nmap.rb
+- lib/dradis/plugins/nmap/engine.rb
+- lib/dradis/plugins/nmap/field_processor.rb
+- lib/dradis/plugins/nmap/gem_version.rb
+- lib/dradis/plugins/nmap/importer.rb
+- lib/dradis/plugins/nmap/version.rb
+- lib/tasks/thorfile.rb
+- spec/fixtures/files/invalid.xml
+- spec/fixtures/files/nse-01.xml
+- spec/fixtures/files/sample.xml
+- spec/nmap_upload_spec.rb
+- spec/spec_helper.rb
+- templates/host.fields
+- templates/host.sample
+- templates/host.template
+- templates/port.fields
+- templates/port.sample
+- templates/port.template
+homepage: http://dradisframework.org
+licenses:
+- GPL-2
+metadata: {}
+post_install_message: 
+rdoc_options: []
+require_paths:
+- lib
+required_ruby_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - ">="
+    - !ruby/object:Gem::Version
+      version: '0'
+required_rubygems_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - ">="
+    - !ruby/object:Gem::Version
+      version: '0'
+requirements: []
+rubyforge_project: 
+rubygems_version: 2.2.3
+signing_key: 
+specification_version: 4
+summary: Nmap add-on for the Dradis Framework.
+test_files:
+- spec/fixtures/files/invalid.xml
+- spec/fixtures/files/nse-01.xml
+- spec/fixtures/files/sample.xml
+- spec/nmap_upload_spec.rb
+- spec/spec_helper.rb