nexpose 0.8.5 → 0.8.6
Sign up to get free protection for your applications and to get access to all the features.
- checksums.yaml +4 -4
- data/lib/nexpose/discovery.rb +5 -43
- data/lib/nexpose/filter.rb +3 -1
- metadata +2 -2
checksums.yaml
CHANGED
|
@@ -1,7 +1,7 @@
|
|
|
1
1
|
---
|
|
2
2
|
SHA1:
|
|
3
|
-
metadata.gz:
|
|
4
|
-
data.tar.gz:
|
|
3
|
+
metadata.gz: 2d155da8a6809996a0d6b256536545a3c45554be
|
|
4
|
+
data.tar.gz: 2ef562dc10924617e59593730c587791c3226523
|
|
5
5
|
SHA512:
|
|
6
|
-
metadata.gz:
|
|
7
|
-
data.tar.gz:
|
|
6
|
+
metadata.gz: 084f5d5a5bded5948d052145cff788905552b745f2898dbb013da506d1affeaf36d5913f1bebaebb95fc339401f97ebda6e4742b2815a7f5bf239716daf47564
|
|
7
|
+
data.tar.gz: abd42a4cf1f65811dacc7533f811566f3d18fff448af16028d97cdab659a1a0f4a343d0c0b97bab9d3aa970320b94c5678e5258c2759db60baec330b33bb7e33
|
data/lib/nexpose/discovery.rb
CHANGED
|
@@ -35,11 +35,6 @@ module Nexpose
|
|
|
35
35
|
HTTPS = 'HTTPS'
|
|
36
36
|
end
|
|
37
37
|
|
|
38
|
-
module Type
|
|
39
|
-
V_SPHERE = 'VSPHERE'
|
|
40
|
-
AWS = 'AWS'
|
|
41
|
-
end
|
|
42
|
-
|
|
43
38
|
# A unique identifier for this connection.
|
|
44
39
|
attr_accessor :id
|
|
45
40
|
|
|
@@ -47,7 +42,6 @@ module Nexpose
|
|
|
47
42
|
attr_accessor :name
|
|
48
43
|
|
|
49
44
|
# The IP address or fully qualified domain name of the server.
|
|
50
|
-
# For AWS connections, this is the address of the regional server.
|
|
51
45
|
attr_accessor :address
|
|
52
46
|
|
|
53
47
|
# A user name that can be used to log into the server.
|
|
@@ -62,12 +56,6 @@ module Nexpose
|
|
|
62
56
|
# The port used for connecting to the server. A valid port from 1 to 65535.
|
|
63
57
|
attr_accessor :port
|
|
64
58
|
|
|
65
|
-
# The type of discovery connection.
|
|
66
|
-
attr_accessor :type
|
|
67
|
-
|
|
68
|
-
# Whether the console and scan engine are inside the AWS network.
|
|
69
|
-
attr_accessor :inside_network
|
|
70
|
-
|
|
71
59
|
# Whether or not the connection is active.
|
|
72
60
|
# Discovery is only possible when the connection is active.
|
|
73
61
|
attr_accessor :status
|
|
@@ -85,7 +73,6 @@ module Nexpose
|
|
|
85
73
|
@id = -1
|
|
86
74
|
@port = 443
|
|
87
75
|
@protocol = Protocol::HTTPS
|
|
88
|
-
@type = Type::V_SPHERE
|
|
89
76
|
end
|
|
90
77
|
|
|
91
78
|
# Save this discovery connection to a Nexpose console.
|
|
@@ -143,35 +130,13 @@ module Nexpose
|
|
|
143
130
|
end
|
|
144
131
|
|
|
145
132
|
def as_xml
|
|
146
|
-
# TODO
|
|
147
|
-
# <DiscoveryConfig id="-1" name="aws" port="443" protocol="HTTPS" username="asdf" type="AWS" usePrivateIPAddress="0" engineid="2" region="ec2.us-west-1.amazonaws.com" password="asdf"> </DiscoveryConfig>
|
|
148
|
-
# <DiscoveryConfig id="-1" name="external AWS" port="443" protocol="HTTPS" username="acess-key-id" type="AWS" usePrivateIPAddress="0" engineid="2" region="ec2.sa-east-1.amazonaws.com" password="secret Access Key">
|
|
149
|
-
# <DiscoveryConfig id="-1" name="internal-aws" port="443" protocol="HTTPS" username=" " type="AWS" usePrivateIPAddress="1" engineid="2" region="ec2.ap-northeast-1.amazonaws.com" password="Not required">
|
|
150
|
-
# <DiscoveryConfig id="-1" name="V the Final Battle" fqdn="vcenter001.osdc.lax.rapid7.com" port="443" protocol="HTTPS" username="TOR\lmnexpose" type="VSPHERE" usePrivateIPAddress="0" engineid="2" region="ec2.us-east-1.amazonaws.com" password="22yQCA0P8nSvfrE">
|
|
151
|
-
# <DiscoveryConfig id="-1" name="duplicate vSphere" fqdn="vcenter001.osdc.lax.rapid7.com" port="443" protocol="HTTPS" username="blah" type="VSPHERE" usePrivateIPAddress="0" engineid="2" region="ec2.us-east-1.amazonaws.com" password="blah">
|
|
152
|
-
# <DiscoveryConfig id="10" name ="vCenter" fqdn ="vcenter001.osdc.lax.rapid7.com" port ="443" protocol ="HTTPS" username ="TOR\lmnexpose" type="VSPHERE" usePrivateIPAddress="0"> </DiscoveryConfig>
|
|
153
133
|
xml = REXML::Element.new('DiscoveryConnection')
|
|
154
|
-
xml.add_attributes({ '
|
|
155
|
-
'
|
|
134
|
+
xml.add_attributes({ 'name' => @name,
|
|
135
|
+
'address' => @address,
|
|
156
136
|
'port' => @port,
|
|
157
|
-
'protocol' => @protocol
|
|
158
|
-
|
|
159
|
-
|
|
160
|
-
xml.add_attributes({ 'region' => @address })
|
|
161
|
-
if @inside_network
|
|
162
|
-
xml.add_attributes({ 'usePrivateIPAddress' => 1,
|
|
163
|
-
'username' => ' ',
|
|
164
|
-
'password' => 'Not required' })
|
|
165
|
-
else
|
|
166
|
-
xml.add_attributes({ 'usePrivateIPAddress' => 0,
|
|
167
|
-
'username' => @user,
|
|
168
|
-
'password' => @password })
|
|
169
|
-
end
|
|
170
|
-
when Type::V_SPHERE
|
|
171
|
-
xml.add_attributes({ 'fqdn' => @address,
|
|
172
|
-
'username' => @user,
|
|
173
|
-
'password' => @password })
|
|
174
|
-
end
|
|
137
|
+
'protocol' => @protocol,
|
|
138
|
+
'user-name' => @user,
|
|
139
|
+
'password' => @password })
|
|
175
140
|
xml
|
|
176
141
|
end
|
|
177
142
|
|
|
@@ -180,9 +145,6 @@ module Nexpose
|
|
|
180
145
|
end
|
|
181
146
|
|
|
182
147
|
def self.parse(xml)
|
|
183
|
-
# <DiscoveryConfig id="10" name ="vCenter" fqdn ="vcenter001.osdc.lax.rapid7.com" port ="443" protocol ="HTTPS" username ="TOR\lmnexpose" type="VSPHERE" usePrivateIPAddress="0"> </DiscoveryConfig>
|
|
184
|
-
# <DiscoveryConfig id="34" name ="external AWS" region ="ec2.sa-east-1.amazonaws.com" port ="443" protocol ="HTTPS" username ="acess-key-id" type="AWS" usePrivateIPAddress="0">
|
|
185
|
-
# <DiscoveryConfig id="32" name ="my-aws" region ="ec2.ap-northeast-1.amazonaws.com" port ="443" protocol ="HTTPS" username =" " type="AWS" usePrivateIPAddress="1">
|
|
186
148
|
conn = new(xml.attributes['name'],
|
|
187
149
|
xml.attributes['address'],
|
|
188
150
|
xml.attributes['user-name'])
|
data/lib/nexpose/filter.rb
CHANGED
|
@@ -329,7 +329,9 @@ module Nexpose
|
|
|
329
329
|
end
|
|
330
330
|
|
|
331
331
|
def self.parse(json)
|
|
332
|
-
|
|
332
|
+
# The call returns empty JSON, so default to 'AND' if not present.
|
|
333
|
+
operator = json['operator'] || 'AND'
|
|
334
|
+
ret = Criteria.new([], operator)
|
|
333
335
|
json['criteria'].each do |c|
|
|
334
336
|
ret.criteria << Criterion.parse(c)
|
|
335
337
|
end
|
metadata
CHANGED
|
@@ -1,7 +1,7 @@
|
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
|
2
2
|
name: nexpose
|
|
3
3
|
version: !ruby/object:Gem::Version
|
|
4
|
-
version: 0.8.
|
|
4
|
+
version: 0.8.6
|
|
5
5
|
platform: ruby
|
|
6
6
|
authors:
|
|
7
7
|
- HD Moore
|
|
@@ -11,7 +11,7 @@ authors:
|
|
|
11
11
|
autorequire:
|
|
12
12
|
bindir: bin
|
|
13
13
|
cert_chain: []
|
|
14
|
-
date: 2014-10-
|
|
14
|
+
date: 2014-10-13 00:00:00.000000000 Z
|
|
15
15
|
dependencies:
|
|
16
16
|
- !ruby/object:Gem::Dependency
|
|
17
17
|
name: rex
|