nexpose 0.8.1 → 0.8.2
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- checksums.yaml +4 -4
- data/lib/nexpose/creds.rb +8 -8
- data/lib/nexpose/engine.rb +2 -1
- data/lib/nexpose/group.rb +35 -15
- data/lib/nexpose/shared_cred.rb +2 -5
- data/lib/nexpose/site.rb +10 -0
- metadata +2 -2
checksums.yaml
CHANGED
|
@@ -1,7 +1,7 @@
|
|
|
1
1
|
---
|
|
2
2
|
SHA1:
|
|
3
|
-
metadata.gz:
|
|
4
|
-
data.tar.gz:
|
|
3
|
+
metadata.gz: 76877d89513e91bd92e4d7bc09ab16be5afe194d
|
|
4
|
+
data.tar.gz: a7549665718107444363121e17a38437b9113909
|
|
5
5
|
SHA512:
|
|
6
|
-
metadata.gz:
|
|
7
|
-
data.tar.gz:
|
|
6
|
+
metadata.gz: 3888ad225335ef937c16697b12bc5d496cd6f7aff2f98a73461bfea2cf1932ee390532650bf40dd215198b16157a2f6e48164c5ac695ec95c703ada1959f9714
|
|
7
|
+
data.tar.gz: 3bfb038b351745655d45c19b7700d116ff9ca4f0c05624c581e121ba0af52baced607e225dd1dae3b4386bd549240a771d25798144a0a501772511c63775b2bd
|
data/lib/nexpose/creds.rb
CHANGED
|
@@ -32,9 +32,9 @@ module Nexpose
|
|
|
32
32
|
|
|
33
33
|
# Security blob for an existing set of credentials
|
|
34
34
|
attr_accessor :blob
|
|
35
|
-
# The service for these credentials.
|
|
35
|
+
# The service for these credentials.
|
|
36
36
|
attr_accessor :service
|
|
37
|
-
# The host for these credentials.
|
|
37
|
+
# The host for these credentials.
|
|
38
38
|
attr_accessor :host
|
|
39
39
|
# The port on which to use these credentials.
|
|
40
40
|
attr_accessor :port
|
|
@@ -60,7 +60,7 @@ module Nexpose
|
|
|
60
60
|
attr_accessor :auth_type
|
|
61
61
|
# The privacy/encryption type to use with SNMP v3 credentials
|
|
62
62
|
attr_accessor :privacy_type
|
|
63
|
-
# The privacy/encryption
|
|
63
|
+
# The privacy/encryption pass phrase to use with SNMP v3 credentials
|
|
64
64
|
attr_accessor :privacy_password
|
|
65
65
|
|
|
66
66
|
def self.for_service(service, user, password, realm = nil, host = nil, port = nil)
|
|
@@ -231,7 +231,7 @@ module Nexpose
|
|
|
231
231
|
attr_reader :soft403
|
|
232
232
|
# Base URL of the application for which the form authentication applies.
|
|
233
233
|
attr_reader :webapproot
|
|
234
|
-
# When using
|
|
234
|
+
# When using HTTP headers, this represents the set of headers to pass with the authentication request.
|
|
235
235
|
attr_reader :headers
|
|
236
236
|
|
|
237
237
|
def initialize(webapproot, soft403)
|
|
@@ -259,7 +259,7 @@ module Nexpose
|
|
|
259
259
|
|
|
260
260
|
end
|
|
261
261
|
|
|
262
|
-
# When using
|
|
262
|
+
# When using HTML form, this represents the login form information.
|
|
263
263
|
#
|
|
264
264
|
class Field
|
|
265
265
|
include XMLUtils
|
|
@@ -299,7 +299,7 @@ module Nexpose
|
|
|
299
299
|
alias_method :to_xml_elem, :as_xml
|
|
300
300
|
end
|
|
301
301
|
|
|
302
|
-
# When using
|
|
302
|
+
# When using HTML form, this represents the login form information.
|
|
303
303
|
#
|
|
304
304
|
class HTMLForm
|
|
305
305
|
include XMLUtils
|
|
@@ -344,7 +344,7 @@ module Nexpose
|
|
|
344
344
|
alias_method :to_xml_elem, :as_xml
|
|
345
345
|
end
|
|
346
346
|
|
|
347
|
-
# When using
|
|
347
|
+
# When using HTML form, this represents the login form information.
|
|
348
348
|
#
|
|
349
349
|
class HTMLForms
|
|
350
350
|
include XMLUtils
|
|
@@ -386,7 +386,7 @@ module Nexpose
|
|
|
386
386
|
alias_method :to_xml_elem, :as_xml
|
|
387
387
|
end
|
|
388
388
|
|
|
389
|
-
# When using ssh-key, this represents the PEM-format
|
|
389
|
+
# When using ssh-key, this represents the PEM-format key-pair information.
|
|
390
390
|
class PEMKey
|
|
391
391
|
# TODO
|
|
392
392
|
end
|
data/lib/nexpose/engine.rb
CHANGED
data/lib/nexpose/group.rb
CHANGED
|
@@ -47,7 +47,7 @@ module Nexpose
|
|
|
47
47
|
attr_reader :id, :name, :description, :risk_score, :dynamic
|
|
48
48
|
|
|
49
49
|
def initialize(id, name, desc, risk, dynamic)
|
|
50
|
-
@id, @name, @description, @risk_score, @
|
|
50
|
+
@id, @name, @description, @risk_score, @dynamic = id, name, desc, risk, dynamic
|
|
51
51
|
end
|
|
52
52
|
|
|
53
53
|
def dynamic?
|
|
@@ -89,6 +89,34 @@ module Nexpose
|
|
|
89
89
|
@id = res.attributes['group-id'].to_i if res.success and @id < 1
|
|
90
90
|
end
|
|
91
91
|
|
|
92
|
+
# Generate an XML representation of this group configuration
|
|
93
|
+
#
|
|
94
|
+
# @return [String] XML valid for submission as part of other requests.
|
|
95
|
+
#
|
|
96
|
+
def as_xml
|
|
97
|
+
xml = REXML::Element.new('AssetGroup')
|
|
98
|
+
xml.attributes['id'] = @id
|
|
99
|
+
xml.attributes['name'] = @name
|
|
100
|
+
xml.attributes['description'] = @description
|
|
101
|
+
|
|
102
|
+
if @description && !@description.empty?
|
|
103
|
+
elem = REXML::Element.new('Description')
|
|
104
|
+
elem.add_text(@description)
|
|
105
|
+
xml.add_element(elem)
|
|
106
|
+
end
|
|
107
|
+
|
|
108
|
+
elem = REXML::Element.new('Devices')
|
|
109
|
+
@assets.each { |a| elem.add_element('device', {'id' => a.id}) }
|
|
110
|
+
xml.add_element(elem)
|
|
111
|
+
|
|
112
|
+
unless tags.empty?
|
|
113
|
+
tag_xml = xml.add_element(REXML::Element.new('Tags'))
|
|
114
|
+
@tags.each { |tag| tag_xml.add_element(tag.as_xml) }
|
|
115
|
+
end
|
|
116
|
+
|
|
117
|
+
xml
|
|
118
|
+
end
|
|
119
|
+
|
|
92
120
|
# Get an XML representation of the group that is valid for a save request.
|
|
93
121
|
# Note that only name, description, and asset ID information is accepted
|
|
94
122
|
# by a save request.
|
|
@@ -96,20 +124,7 @@ module Nexpose
|
|
|
96
124
|
# @return [String] XML representation of the asset group.
|
|
97
125
|
#
|
|
98
126
|
def to_xml
|
|
99
|
-
|
|
100
|
-
xml << %( description="#{replace_entities(@description)}") if @description
|
|
101
|
-
xml << '>'
|
|
102
|
-
xml << '<Devices>'
|
|
103
|
-
@assets.each do |asset|
|
|
104
|
-
xml << %(<device id="#{asset.id}"/>)
|
|
105
|
-
end
|
|
106
|
-
xml << '</Devices>'
|
|
107
|
-
xml << '<Tags>'
|
|
108
|
-
@tags.each do |tag|
|
|
109
|
-
xml << tag.as_xml.to_s
|
|
110
|
-
end
|
|
111
|
-
xml << '</Tags>'
|
|
112
|
-
xml << '</AssetGroup>'
|
|
127
|
+
as_xml.to_s
|
|
113
128
|
end
|
|
114
129
|
|
|
115
130
|
# Launch ad hoc scans against each group of assets per site.
|
|
@@ -149,6 +164,11 @@ module Nexpose
|
|
|
149
164
|
group.attributes['description'],
|
|
150
165
|
group.attributes['id'].to_i,
|
|
151
166
|
group.attributes['riskscore'].to_f)
|
|
167
|
+
|
|
168
|
+
group.elements.each('Description') do |desc|
|
|
169
|
+
asset_group.description = desc.text
|
|
170
|
+
end
|
|
171
|
+
|
|
152
172
|
group.elements.each('Devices/device') do |dev|
|
|
153
173
|
asset_group.assets << Device.new(dev.attributes['id'].to_i,
|
|
154
174
|
dev.attributes['address'],
|
data/lib/nexpose/shared_cred.rb
CHANGED
|
@@ -50,8 +50,6 @@ module Nexpose
|
|
|
50
50
|
cred.privilege_username = json['privilegeElevationUsername']
|
|
51
51
|
cred.all_sites = json['scope'] == 'ALL_SITES_ENABLED_DEFAULT'
|
|
52
52
|
cred.last_modified = Time.at(json['lastModified']['time'] / 1000)
|
|
53
|
-
cred.auth_type = json['snmpv3authtype']
|
|
54
|
-
cred.privacy_type = json['snmpv3privtype']
|
|
55
53
|
cred
|
|
56
54
|
end
|
|
57
55
|
|
|
@@ -81,13 +79,12 @@ module Nexpose
|
|
|
81
79
|
attr_accessor :privilege_password
|
|
82
80
|
# Permission elevation type. See Nexpose::Credential::ElevationType.
|
|
83
81
|
attr_accessor :privilege_type
|
|
82
|
+
# Privacty password of SNMP v3 credential
|
|
83
|
+
attr_accessor :privacy_password
|
|
84
84
|
# Authentication type of SNMP v3 credential
|
|
85
85
|
attr_accessor :auth_type
|
|
86
86
|
# Privacy type of SNMP v3 credential
|
|
87
87
|
attr_accessor :privacy_type
|
|
88
|
-
# Privacty password of SNMP v3 credential
|
|
89
|
-
attr_accessor :privacy_password
|
|
90
|
-
|
|
91
88
|
# IP address or host name to restrict this credential to.
|
|
92
89
|
attr_accessor :host
|
|
93
90
|
# Single port to restrict this credential to.
|
data/lib/nexpose/site.rb
CHANGED
|
@@ -337,6 +337,12 @@ module Nexpose
|
|
|
337
337
|
xml.attributes['riskfactor'] = @risk_factor
|
|
338
338
|
xml.attributes['isDynamic'] == '1' if dynamic?
|
|
339
339
|
|
|
340
|
+
if @description && !@description.empty?
|
|
341
|
+
elem = REXML::Element.new('Description')
|
|
342
|
+
elem.add_text(@description)
|
|
343
|
+
xml.add_element(elem)
|
|
344
|
+
end
|
|
345
|
+
|
|
340
346
|
unless @users.empty?
|
|
341
347
|
elem = REXML::Element.new('Users')
|
|
342
348
|
@users.each { |user| elem.add_element('user', { 'id' => user }) }
|
|
@@ -415,6 +421,10 @@ module Nexpose
|
|
|
415
421
|
site.risk_factor = s.attributes['riskfactor'] || 1.0
|
|
416
422
|
site.is_dynamic = true if s.attributes['isDynamic'] == '1'
|
|
417
423
|
|
|
424
|
+
s.elements.each('Description') do |desc|
|
|
425
|
+
site.description = desc.text
|
|
426
|
+
end
|
|
427
|
+
|
|
418
428
|
s.elements.each('Users/user') do |user|
|
|
419
429
|
site.users << user.attributes['id'].to_i
|
|
420
430
|
end
|
metadata
CHANGED
|
@@ -1,7 +1,7 @@
|
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
|
2
2
|
name: nexpose
|
|
3
3
|
version: !ruby/object:Gem::Version
|
|
4
|
-
version: 0.8.
|
|
4
|
+
version: 0.8.2
|
|
5
5
|
platform: ruby
|
|
6
6
|
authors:
|
|
7
7
|
- HD Moore
|
|
@@ -10,7 +10,7 @@ authors:
|
|
|
10
10
|
autorequire:
|
|
11
11
|
bindir: bin
|
|
12
12
|
cert_chain: []
|
|
13
|
-
date: 2014-
|
|
13
|
+
date: 2014-08-08 00:00:00.000000000 Z
|
|
14
14
|
dependencies:
|
|
15
15
|
- !ruby/object:Gem::Dependency
|
|
16
16
|
name: librex
|