nessana 0.1.0

checksums.yaml

@@ -0,0 +1,7 @@
+---
+SHA256:
+  metadata.gz: 841b59ccd2b8e575f45f778d97a1b5c7b158c13fca2bf3bf554792ef25d931b7
+  data.tar.gz: 056feefeef224de161623a01593d0620def012e44346ab9d5cdae79174d41e29
+SHA512:
+  metadata.gz: 9b1d6e33a8fccc0a1b6685c5ee6f4d98ef24a1084bc7066138a851c700b886c422c79858cb80dc33eb45ae779ee50a2a09eb234e0eb683fd7ff78105addbaaed
+  data.tar.gz: 2012a1a887a6b291c1b82636504104808335f6901beb7deca7ed3acf8dc38b220a39bc251df8b49ba6ec8e5d50eb693dada3e4e99343c02ff5885b9544f9c2e7

data/README.md

@@ -0,0 +1,13 @@
+# nessana
+
+Parse Nessus dumps and intelligently create Asana tasks.
+
+## Usage
+
+```console
+$ nessana -c config.yml scan.csv
+```
+
+## Contributing
+
+See [CONTRIBUTING.md](CONTRIBUTING.md)

data/bin/nessana

@@ -0,0 +1,5 @@
+#!/usr/bin/env ruby
+
+require 'nessana/executor'
+
+Nessana::Executor.execute!

data/bin/nessana_old

@@ -0,0 +1,145 @@
+#!/usr/bin/env ruby
+
+require 'asana'
+require 'csv'
+require 'json'
+require 'logger'
+require 'pp'
+require 'pry'
+require 'ruby-prof'
+require 'ruby-prof-flamegraph'
+require 'yaml'
+
+require 'nessana/vulnerability'
+require 'nessana/vulnerability_list'
+
+result = RubyProf.profile do
+
+$logger = Logger.new(STDOUT)
+$logger.level = Logger::DEBUG
+
+$file_contents = open('secrets.yml', 'rb') do |io|
+	io.read
+end
+
+$asana_access_token = YAML.load($file_contents)['ASANA_PAT']
+
+$client = Asana::Client.new do |c|
+	c.authentication :access_token, $asana_access_token
+end
+
+workspace = $client.workspaces.find_all.select do |workspace|
+	workspace.name == 'stolaf.org'
+end.first
+
+project = $client.projects.find_all(workspace: workspace.id).select do |project|
+	project.name == '[Sys] Security'
+end.first
+
+tag = $client.tags.find_all(workspace: workspace.id).select do |tag|
+	tag.name == 'Automated [Nessana]'
+end.first
+
+pp project.sections
+
+tasks = $client.tasks.find_by_tag(tag: tag.id).map do |flat_task|
+	$logger.debug "Fetching task with id=#{flat_task.id}"
+	$client.tasks.find_by_id(flat_task.id).to_h
+end.select do |task_hash|
+	!task_hash["completed"]
+end
+
+pp tasks
+
+end
+
+printer = RubyProf::FlameGraphPrinter.new(result)
+printer.print(STDERR, {})
+
+__END__
+
+output = nil
+
+result = RubyProf.profile do
+	vulnerabilities = VulnerabilityList.from_csv(ARGV[0])
+
+	$vulnerabilities = vulnerabilities.filter_risks.filter_not_accessible
+
+	# vuln_plugin_mapping = $vulnerabilities.each_with_object({}) do |vuln, hash|
+	# 	cve_string = vuln.cve ? " (#{vuln.cve})" : ""
+	# 	puts "Adding entry for #{vuln.plugin_id}#{cve_string} on host #{vuln.host}:#{vuln.port} (#{vuln.protocol})"
+	# 	hash[vuln.plugin_id] ||= []
+	# 	hash[vuln.plugin_id].push vuln
+	# end
+
+	vulns_by_plugin = $vulnerabilities.each_with_object({}) do |vuln, hash|
+		hash[vuln.plugin_id] ||= []
+		hash[vuln.plugin_id] << vuln
+	end
+
+	reports = vulns_by_plugin.map do |plugin_id, vulns|
+		uniqued_titles = vulns.map do |vuln|
+			vuln.name
+		end.uniq
+
+		uniqued_cves = vulns.map do |vuln|
+			vuln.cve
+		end.uniq
+
+		uniqued_cvsss = vulns.map do |vuln|
+			vuln.cvss
+		end.uniq
+
+		uniqued_risks = vulns.map do |vuln|
+			vuln.risk
+		end.uniq
+
+		throw "Plugin #{plugin_id} produced #{uniqued_titles.count} != 1 unique titles!" unless uniqued_titles.count == 1
+		throw "Plugin #{plugin_id} produced #{uniqued_cvsss.count} != 1 unique CVSS's!" unless uniqued_cvsss.count == 1
+		throw "Plugin #{plugin_id} produced #{uniqued_risks.count} != 1 unique risks!" unless uniqued_risks.count == 1
+
+		uniqued_hosts = vulns.map do |vuln|
+			vuln.readable_host
+		end.uniq
+
+		uniqued_synopses = vulns.map do |vuln|
+			vuln.synopsis
+		end.uniq
+
+		throw "More than one unique synopsis given?" unless uniqued_synopses.count == 1
+
+		uniqued_descriptions = vulns.map do |vuln|
+			vuln.description
+		end.uniq
+
+		throw "More than one unique description given?" unless uniqued_descriptions.count == 1
+
+		uniqued_solutions = vulns.map do |vuln|
+			vuln.solution
+		end.uniq
+
+		throw "More than one unique solution given?" unless uniqued_solutions.count == 1
+
+		{
+			cvss: uniqued_cvsss.first,
+			title: "[Nessus #{plugin_id}] #{uniqued_titles.join(', ')}",
+			body: "CVE: #{uniqued_cves.first || 'N/A'}\nCVSS: #{uniqued_cvsss.first || 'N/A'}\nRisk: #{uniqued_risks.first || 'N/A'}\n\nSYNOPSIS\n\n#{uniqued_synopses.first}\n\nDESCRIPTION\n\n#{uniqued_descriptions.first.join("\n\n")}\n\nSOLUTION\n\n#{uniqued_solutions.first.join("\n\n")}\n\nThis issue was detected on #{uniqued_hosts.count} hosts: #{uniqued_hosts.join(', ')}",
+			hosts: uniqued_hosts
+		}
+	end
+
+	output = reports.sort do |report_a, report_b|
+		report_b[:cvss] <=> report_a[:cvss]
+	end.map do |report|
+		[report[:title], report[:body]]
+	end.to_a
+end
+
+printer = RubyProf::GraphPrinter.new(result)
+printer.print(STDOUT, {})
+
+CSV.open(ARGV[1], 'wb') do |csv|
+	output.each do |row|
+		csv << row
+	end
+end

data/lib/nessana.rb

@@ -0,0 +1,6 @@
+require 'nessana/detection'
+require 'nessana/dump'
+require 'nessana/executor'
+require 'nessana/filter'
+require 'nessana/version'
+require 'nessana/vulnerability'

data/lib/nessana/detection.rb

@@ -0,0 +1,45 @@
+module Nessana
+	class Detection
+		attr_reader :host, :protocol, :port
+		attr_accessor :status
+
+		def initialize(host, protocol, port, status = nil)
+			@host = host
+			@protocol = protocol
+			@port = port
+			@status = status
+		end
+
+		def to_s
+			"#{@status ? status_prefix : ''}#{@host}:#{@port}/#{@protocol}"
+		end
+
+		def hash
+			"#{@host}:#{@port}/#{@protocol}".hash
+		end
+
+		def ==(other)
+			@host == other.host &&
+				@protocol == other.protocol &&
+				@port == other.port &&
+				@status == other.status || false
+		end
+
+		alias eql? ==
+
+		protected
+
+		def status_prefix
+			case @status
+			when :added
+				'+ '
+			when :removed
+				'- '
+			when :present
+				'  '
+			else
+				'? '
+			end
+		end
+	end
+end

data/lib/nessana/dump.rb

@@ -0,0 +1,176 @@
+require 'time'
+
+require 'csv'
+require 'fastcsv'
+require 'tty-spinner'
+
+require 'nessana/detection'
+require 'nessana/vulnerability'
+
+module Nessana
+	class Dump < Hash
+		attr_reader :filters
+		attr_reader :filename
+
+		def initialize(filename = nil, filters = [])
+			@filename, @filters = filename, filters
+
+			if @filename
+				if File.readable?(@filename)
+					spinner_options = {
+						success_mark: "\u2713".encode('utf-8'),
+						format: :dots_3
+					}
+					spinner = TTY::Spinner.new("[:spinner] Loading #{@filename}...", **spinner_options)
+					spinner.auto_spin
+
+					read_csv!
+
+					spinner.success('done!')
+				else
+					throw 'file not readable; sad face'
+				end
+			end
+		end
+
+		def -(other)
+			spinner_options = {
+				success_mark: "\u2713".encode('utf-8'),
+				format: :dots_3
+			}
+
+			spinner = TTY::Spinner.new('[:spinner] :action...', **spinner_options)
+			spinner.update(action: 'Generating detections...')
+
+			other_plugin_ids = other.keys
+			self_plugin_ids = keys
+
+			spinner.update(action: 'Finding L detections')
+
+			other_detection_pairs = other.map do |plugin_id, vulnerability|
+				spinner.update(action: "Finding L detections (#{plugin_id})")
+				spinner.auto_spin
+
+				vulnerability.detections.map do |detection|
+					{ plugin_id => detection }
+				end
+			end
+
+			other_detections = Set.new(other_detection_pairs.flatten)
+
+			spinner.update(action: 'Finding R detections')
+
+			detection_pairs = map do |plugin_id, vulnerability|
+				spinner.update(action: "Finding R detections (#{plugin_id})")
+				spinner.auto_spin
+
+				vulnerability.detections.map do |detection|
+					{ plugin_id => detection }
+				end
+			end
+
+			self_detections = Set.new(detection_pairs.flatten)
+
+			spinner.update(action: 'Joining detection sets')
+			spinner.auto_spin
+
+			detections = Set.new([other_detections, self_detections]).flatten
+
+			spinner.update(action: 'Processing detections')
+			spinner.auto_spin
+
+			detections.each do |detection_entry|
+				in_self = self_detections.include? detection_entry
+				in_other = other_detections.include? detection_entry
+
+				detection = detection_entry.values.first
+
+				if in_self && in_other
+					detection.status = :present
+				elsif !in_self && in_other
+					detection.status = :removed
+				elsif in_self && !in_other
+					detection.status = :added
+				else
+					detection.status = true
+				end
+			end
+
+			spinner.success('done!')
+
+			added_plugin_ids = self_plugin_ids - other_plugin_ids
+			deleted_plugin_ids = other_plugin_ids - self_plugin_ids
+			all_plugin_ids = other_plugin_ids + added_plugin_ids
+
+			all_vulnerabilities = all_plugin_ids.map do |plugin_id|
+				vulnerability = nil
+
+				if !self[plugin_id]
+					vulnerability = other[plugin_id].clone
+				else
+					vulnerability = self[plugin_id].clone
+				end
+
+				plugin_detections = detections.select do |detection_entry|
+					detection_entry.keys.first == vulnerability.plugin_id
+				end.map do |detection_entry|
+					detection_entry.values.first
+				end
+
+				vulnerability.detections = plugin_detections.map do |detection|
+					detection.dup
+				end
+
+				vulnerability
+			end
+
+			all_vulnerabilities
+		end
+
+		def read_csv!
+			data = read_csv(filename)
+
+			filtered_data = data.select do |_, vulnerability|
+				!vulnerability.matches?(@filters)
+			end
+
+			merge!(filtered_data)
+		end
+
+		protected
+
+		def read_csv(filename)
+			dump_data = {}
+
+			first_row = true
+
+			File.open(filename, 'rb') do |io|
+				io.advise(:willneed)
+				io.advise(:noreuse)
+				io.advise(:sequential)
+
+				FastCSV.raw_parse(io) do |row|
+					if first_row
+						first_row = false
+						next
+					end
+
+					row_nessus_data = row[0..3] + row[7..-1]
+					row_detection_data = row[4..6]
+
+					plugin_id = row[0]
+
+					unless dump_data[plugin_id]
+						dump_data[plugin_id] = Vulnerability.new(*row_nessus_data)
+					end
+
+					row_detection = Detection.new(*row_detection_data)
+
+					dump_data[plugin_id].add_detection(row_detection)
+				end
+			end
+
+			dump_data
+		end
+	end
+end

data/lib/nessana/executor.rb

@@ -0,0 +1,100 @@
+require 'optparse'
+require 'pp'
+require 'ruby-prof'
+require 'ruby-prof-flamegraph'
+
+require 'nessana/executor/execution_configuration'
+require 'nessana/filter'
+require 'nessana/dump'
+
+module Nessana
+	module Executor
+		def self.print_usage!
+			puts @parser
+		end
+
+		def self.execute!(argv = ARGV)
+			parse!(*argv)
+
+			RubyProf.start if !!@configuration['performance']
+
+			unless @configuration['old_filename']
+				$stderr.puts 'No old dump filename given; will assume no prior knowledge.'
+			end
+
+			unless @configuration['new_filename']
+				puts 'No new dump filename given; cannot do anything.'
+				return
+			end
+
+			filters = @configuration['filters'].map do |filter_hash|
+				Filter.new(filter_hash)
+			end
+
+			old_dump = @configuration['old_filename'] ? Dump.new(@configuration['old_filename'], filters) : Dump.new
+			new_dump = Dump.new(@configuration['new_filename'], filters)
+
+			diff = new_dump - old_dump
+
+			diff.sort do |vulnerability_a, vulnerability_b|
+				vulnerability_a.plugin_id.to_i <=> vulnerability_b.plugin_id.to_i
+			end.sort do |vulnerability_a, vulnerability_b|
+				vulnerability_a.cvss.to_f <=> vulnerability_b.cvss.to_f
+			end.each do |v|
+				puts "#{v}
+
+DISCOVERIES"
+				v.detections.sort_by(&:port).sort_by(&:host).each do |detection|
+					if detection.status && detection.status != true
+						puts detection.to_s
+					end
+				end
+				puts "\n" * 2
+			end
+
+			if !!@configuration['performance']
+				result = RubyProf.stop
+				printer = RubyProf::FlameGraphPrinter.new(result)
+				io = open(@configuration['performance'], 'wb')
+				printer.print(io, {})
+			end
+		end
+
+		def self.parse(*argv)
+			configuration = ExecutionConfiguration.new
+
+			option_parser = OptionParser.new do |parser|
+				configuration.add_parser_hooks(parser)
+
+				if argv.count == 0
+					puts parser
+					exit 1
+				end
+
+				parser.parse(*argv)
+			end
+
+			remaining_arguments = option_parser.order!(argv)
+
+			case remaining_arguments.count
+			when 2
+				configuration['old_filename'] = remaining_arguments[0]
+				configuration['new_filename'] = remaining_arguments[1]
+			when 1
+				configuration['old_filename'] = nil
+				configuration['new_filename'] = remaining_arguments[0]
+			end
+
+			configuration.read_configuration_file!
+
+			configuration
+		end
+
+		protected
+
+		def self.parse!(*argv)
+			@configuration = parse(*argv)
+		end
+
+	end
+end

data/lib/nessana/executor/execution_configuration.rb

@@ -0,0 +1,88 @@
+require 'mime-types'
+
+require 'nessana/version'
+
+module Nessana::Executor
+	class ExecutionConfiguration < ::Hash
+		def initialize
+			self['verbosity'] = 'info'
+			self['config'] = 'config.yml'
+			self['dump_filename'] = nil
+		end
+
+		# FIXME: too many lines
+		def add_parser_hooks(parser)
+			parser.banner = "Usage: #{$PROGRAM_NAME} [options] <filename.csv>"
+
+			parser.separator ''
+			parser.separator 'Execution Options'
+
+			add_config_option(parser)
+
+			parser.separator ''
+			parser.separator 'General Options'
+
+			add_usage_option(parser)
+			add_verbosity_option(parser)
+
+			parser.on_tail('-h', '--help', 'Show this message') do
+				puts parser
+				exit
+			end
+
+			parser.on_tail('--version', 'Show version') do
+				puts Nessana::VERSION
+				exit
+			end
+		end
+
+		# TODO: deep merge?
+		def read_configuration_file!
+			merge!(read_configuration_file(self['config']))
+		end
+
+		protected
+
+		def add_config_option(parser)
+			parser.on('-c', '--config CONFIG', "Load configuration from CONFIG (default: #{self['config']})") do |config|
+				self['config'] = config
+			end
+		end
+
+		def add_usage_option(parser)
+			parser.on('-h', '--help', 'Print usage summary.') do
+				puts parser
+				exit 0
+			end
+		end
+
+		def add_verbosity_option(parser)
+			parser.on('-v', '--verbosity VERBOSITY', "The level of verbosity to use. (default: #{self['verbosity']})")
+		end
+
+		def infer_mime_type(filename)
+			MIME::Types.type_for(filename).first.content_type
+		end
+
+		# FIXME: too many lines
+		def read_configuration_file(filename)
+			raise ArgumentError, 'Must pass a valid filename' if filename.nil?
+
+			mime_type = infer_mime_type(filename)
+			parsed = nil
+
+			data = File.open(filename, 'rb', &:read)
+
+			case mime_type
+			when /ya?ml/
+				require 'yaml'
+				parsed = YAML.safe_load(data, [Regexp])
+			when /json/
+				require 'json'
+				parsed = JSON.parse(data)
+			end
+
+			parsed.to_h
+		end
+	end
+end

data/lib/nessana/filter.rb

@@ -0,0 +1,34 @@
+require 'ostruct'
+
+require 'nessana/vulnerability'
+
+module Nessana
+	class Filter < ::Hash
+		def initialize(hash)
+			super
+
+			fixed_hash = hash.map do |key, value|
+				[key.to_sym, value]
+			end.to_h
+
+			merge!(fixed_hash)
+		end
+
+		def applies_to?(vulnerability)
+			each do |key, value|
+				method = key.to_sym
+
+				return false unless vulnerability.respond_to?(method)
+
+				case value
+				when Regexp
+					return true if vulnerability.send(method).to_s =~ value
+				else
+					return true if vulnerability.send(method).to_s == value
+				end
+			end
+
+			false
+		end
+	end
+end

data/lib/nessana/version.rb

@@ -0,0 +1,3 @@
+module Nessana
+	VERSION = '0.1.0'.freeze
+end

data/lib/nessana/vulnerability.rb

@@ -0,0 +1,77 @@
+module Nessana
+	class Vulnerability
+		attr_reader :plugin_id
+		attr_reader :cve, :cvss, :risk
+		attr_reader :name, :synopsis, :description, :solution
+		attr_reader :see_also, :plugin_output
+		attr_accessor :detections
+
+		def initialize(plugin_id, cve, cvss, risk, name, synopsis, description, solution, see_also, plugin_output)
+			@plugin_id = plugin_id
+			@cve = cve
+			@cvss = cvss
+			@risk = risk
+			@name = name
+			@synopsis = reformat_multiline(synopsis)
+			@description = reformat_multiline(description)
+			@solution = solution
+			@see_also = see_also
+			@plugin_output = plugin_output
+		end
+
+		def add_detection(detection)
+			@detections ||= []
+			@detections.push(detection)
+		end
+
+		def to_s
+			[title_line, @synopsis, cve_s, cvss_s, description_s, solution_s, see_also_s].join("\n\n")
+		end
+
+		def matches?(filters = [])
+			filters.each do |filter|
+				return true if filter.applies_to?(self)
+			end
+
+			false
+		end
+
+		def title_line
+			"[Nessus #{@plugin_id || "???"}] #{@name || "Unknown Vulnerability"} (#{@risk || "Unknown Risk"})"
+		end
+
+		def short_description
+			"#{title_line}
+#{@synopsis}"
+		end
+
+		protected
+
+		def cve_s
+			@cve ? "CVE: " + @cve : "No CVE."
+		end
+
+		def cvss_s
+			@cvss ? "CVSS: " + @cvss : "No CVSS."
+		end
+
+		def description_s
+			"DESCRIPTION:\n#{@description}"
+		end
+
+		def solution_s
+			"SOLUTION:\n#{@solution}"
+		end
+
+		def see_also_s
+			"SEE ALSO:\n#{@see_also}"
+		end
+
+		# TODO Replace with something not O(2 n)? [n = line count]
+		def reformat_multiline(multiline)
+			multiline.split("\n").map do |line|
+				line.length == 0 ? "\n\n" : line
+			end.join(' ').gsub(/^ /,'').gsub(/ {3,}/,' ')
+		end
+	end
+end

metadata

@@ -0,0 +1,252 @@
+--- !ruby/object:Gem::Specification
+name: nessana
+version: !ruby/object:Gem::Version
+  version: 0.1.0
+platform: ruby
+authors:
+- Kristofer Rye <kristofer.rye@gmail.com>
+autorequire: 
+bindir: bin
+cert_chain: []
+date: 2019-01-22 00:00:00.000000000 Z
+dependencies:
+- !ruby/object:Gem::Dependency
+  name: asana
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: 0.6.3
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: 0.6.3
+- !ruby/object:Gem::Dependency
+  name: fastcsv
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: 0.0.6
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: 0.0.6
+- !ruby/object:Gem::Dependency
+  name: mime-types
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '3.1'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '3.1'
+- !ruby/object:Gem::Dependency
+  name: tty-spinner
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: 0.8.0
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: 0.8.0
+- !ruby/object:Gem::Dependency
+  name: codecov
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: 0.1.14
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: 0.1.14
+- !ruby/object:Gem::Dependency
+  name: coveralls
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: 0.8.22
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: 0.8.22
+- !ruby/object:Gem::Dependency
+  name: guard
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '2.14'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '2.14'
+- !ruby/object:Gem::Dependency
+  name: guard-rspec
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '4.7'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '4.7'
+- !ruby/object:Gem::Dependency
+  name: pry
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: 0.11.3
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: 0.11.3
+- !ruby/object:Gem::Dependency
+  name: rspec
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '3.7'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '3.7'
+- !ruby/object:Gem::Dependency
+  name: rubocop
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '0.57'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '0.57'
+- !ruby/object:Gem::Dependency
+  name: ruby-prof
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: 0.17.0
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: 0.17.0
+- !ruby/object:Gem::Dependency
+  name: ruby-prof-flamegraph
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: 0.3.0
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: 0.3.0
+- !ruby/object:Gem::Dependency
+  name: simplecov
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: 0.16.1
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: 0.16.1
+description: 'A Nessus dump parser and differ which can create Asana tasks.
+
+'
+email: 
+executables:
+- nessana
+extensions: []
+extra_rdoc_files: []
+files:
+- README.md
+- bin/nessana
+- bin/nessana_old
+- lib/nessana.rb
+- lib/nessana/detection.rb
+- lib/nessana/dump.rb
+- lib/nessana/executor.rb
+- lib/nessana/executor/execution_configuration.rb
+- lib/nessana/filter.rb
+- lib/nessana/version.rb
+- lib/nessana/vulnerability.rb
+homepage: https://github.com/rye/nessana
+licenses:
+- MIT
+metadata: {}
+post_install_message: 
+rdoc_options: []
+require_paths:
+- lib
+required_ruby_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - "~>"
+    - !ruby/object:Gem::Version
+      version: '2.4'
+required_rubygems_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - ">="
+    - !ruby/object:Gem::Version
+      version: '0'
+requirements: []
+rubygems_version: 3.0.2
+signing_key: 
+specification_version: 4
+summary: A Nessus dump parser and Asana task creator
+test_files: []