RubyGems - nexpose_servicenow - Versions diffs - 0.7.3 → 0.8.0 - Mend

nexpose_servicenow 0.7.3 → 0.8.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (18) hide show

checksums.yaml +4 -4
data/README.md +51 -15
data/bin/nexpose_servicenow +10 -2
data/lib/nexpose_servicenow.rb +1 -174
data/lib/nexpose_servicenow/version.rb +14 -1
data/nexpose_servicenow.gemspec +2 -4
metadata +13 -59
data/lib/nexpose_servicenow/arg_parser.rb +0 -283
data/lib/nexpose_servicenow/chunker.rb +0 -109
data/lib/nexpose_servicenow/csv_compare.rb +0 -177
data/lib/nexpose_servicenow/helpers/connection_helper.rb +0 -84
data/lib/nexpose_servicenow/helpers/data_warehouse_helper.rb +0 -140
data/lib/nexpose_servicenow/helpers/nexpose_console_helper.rb +0 -164
data/lib/nexpose_servicenow/historical_data.rb +0 -102
data/lib/nexpose_servicenow/nx_logger.rb +0 -166
data/lib/nexpose_servicenow/queries/nexpose_queries.rb +0 -459
data/lib/nexpose_servicenow/queries/queries_base.rb +0 -25
data/lib/nexpose_servicenow/queries/warehouse_queries.rb +0 -341

data/lib/nexpose_servicenow/chunker.rb DELETED

@@ -1,109 +0,0 @@
-#TODO: Check if using site_id is OK. If the object is changed, the code on SN will likely need changed.
-module NexposeServiceNow
-  class Chunker
-    def initialize(report_details, row_limit)
-      @row_limit = row_limit
-      @size_limit = 4_500_000
-      @report_details = report_details
-      @header = get_header
-      setup_logging
-    end
-    def setup_logging
-      @log = NexposeServiceNow::NxLogger.instance
-      @log.log_message("Chunk File Limit:\t#{@size_limit}MB")
-      @log.log_message("Chunk Row Limit:\t#{@row_limit}")
-    end
-    # Grab the header from the first file
-    def get_header
-      file = File.open(@report_details.first[:report_name], 'r')
-      header = file.readline
-      file.close
-      header
-    end
-    def preprocess
-      all_chunks = []
-      @report_details.each do |report|
-        @log.log_message("Dividing file #{report[:report_name]} into chunks.")
-        chunks = process_file(report[:report_name], report[:id])
-        all_chunks.concat chunks
-      end
-      @log.log_message("Files divided into #{all_chunks.count} chunks")
-      puts all_chunks.to_json
-    end
-    def process_file(file_path, site_id=nil)
-      relative_size_limit = @size_limit - @header.bytesize
-      chunk = { site_id: site_id,
-                start: @header.bytesize,
-                length: 0,
-                row_count: 0 }
-      chunks = []
-      csv_file = CSV.open(file_path, 'r', headers: true)
-      while(true)
-        position = csv_file.pos
-        line = csv_file.shift
-        row_length = line.to_s.bytesize
-        if line.nil?
-          chunks << chunk
-          break
-        elsif chunk[:length]+row_length < relative_size_limit &&
-              chunk[:row_count] + 1 < @row_limit
-          chunk[:length] += row_length
-          chunk[:row_count] += 1
-        else
-          chunks << chunk
-          #Initialise chunk with this row information
-          chunk = { site_id: site_id,
-                    start: position,
-                    length: row_length,
-                    row_count: 1 }
-        end
-      end
-      csv_file.close
-      #Should we include the row count?
-      chunks.each do |c|
-        c.delete :row_count
-        #Should we do this...?
-        c.delete :site_id if c[:site_id].nil? || c[:site_id] == -1
-      end
-      chunks
-    end
-    def get_file(site_id=nil)
-      # -1 indicates a single query report
-      return @report_details.first[:report_name] if site_id.to_i <= 0
-      report = @report_details.find { |r| r[:id].to_s == site_id.to_s }
-      report[:report_name]
-    end
-    def read_chunk(start, length, site_id=nil)
-      file_path = get_file(site_id)
-      msg = "Returning chunk. Start: #{start}, " \
-            "Length: #{length}, File: #{file_path}"
-      @log.log_message(msg)
-      #If the header isn't in the chunk, prepend it
-      header = start == 0 ? '' : @header
-      file = File.open(file_path, 'rb')
-      file.seek(start)
-      puts header + file.read(length)
-      file.close
-    end
-  end
-end

data/lib/nexpose_servicenow/csv_compare.rb DELETED

@@ -1,177 +0,0 @@
-require 'fileutils'
-require 'tempfile'
-require 'csv-diff'
-require 'csv'
-class CSVDiff
-  class CSVSource
-    def find_field_indexes(key_fields, field_names)
-      key_fields.map do |field|
-        if field.is_a?(Integer)
-          field
-        else
-          field_names.index{ |field_name| field.to_s.downcase == field_name.downcase } or
-              raise ArgumentError, "Could not locate field '#{field}' in source field names: #{
-              field_names.join(', ')}"
-        end
-      end
-    end
-  end
-end
-module NexposeServiceNow
-  class CsvCompare
-    def self.get_columns(csv_file)
-      columns = ''
-      File::open(csv_file,'r') do |f|
-        columns = f.readline.rstrip
-      end
-      columns.split(',')
-    end
-    def self.get_row(value, columns, status)
-      columns.map { |c| value.fields[c] }.push(status)
-    end
-    def self.get_delete(value, columns)
-      self.get_row(value, columns, 'old')
-    end
-    def self.get_add(value, columns)
-      self.get_row(value, columns, 'new')
-    end
-    def self.update_to_old(value, columns)
-      self.update_to_row(value, columns, 0, 'old')
-    end
-    def self.update_to_new(value, columns)
-      self.update_to_row(value, columns, 1, 'new')
-    end
-    def self.update_to_row(value, columns, index, status)
-      row = []
-      columns.each do |c|
-        val = value.fields[c]
-        row << (val.kind_of?(Array) ? val[index] : val)
-      end
-      row.push(status)
-    end
-    def self.append_to_filename(current_filename, string_to_append)
-      extension = File.extname current_filename
-      name = File.basename current_filename, extension
-      path = File.dirname current_filename
-      "#{path}/#{name}-#{string_to_append}#{extension}"
-    end
-    def self.update_report_with_diff(report_file, key_fields=[0])
-      old_filename = self.append_to_filename(report_file, 'old')
-      new_filename = self.append_to_filename(report_file, 'new')
-      # Report is 'new' file for purpose of diff
-      FileUtils.mv(report_file, new_filename)
-      # If the old file doesn't exist, we can just add the status column
-      if File.exists?(old_filename)
-        self.create_csv_diff(old_filename,
-                             new_filename,
-                             report_file,
-                             key_fields)
-      else
-        self.overwrite_existing_report(new_filename, report_file)
-      end
-      # 'new' file becomes the basis of comparison next time
-      FileUtils.mv(new_filename, old_filename, :force => true)
-    end
-    # Instead of diffing, append 'status' column to an existing file
-    def self.overwrite_existing_report(source_file, target_file)
-      temp = Tempfile.new("#{File.basename source_file}tmp")
-      #TODO: Don't do the column_written check every time
-      CSV.open(temp, 'w') do |temp_csv|
-        column_written = false
-        new_column_value = ['status']
-        CSV.foreach(source_file) do |orig|
-          temp_csv << (orig + new_column_value)
-          unless column_written
-            new_column_value = ['new']
-            column_written = true
-          end
-        end
-      end
-      temp.close
-      FileUtils.mv(temp, target_file, :force => true)
-    end
-    def self.create_csv_diff(old_file, new_file, target_file, key_fields=[0])
-      old_temp = Tempfile.new("#{File.basename old_file}tmp")
-      new_temp = Tempfile.new("#{File.basename new_file}tmp")
-      File.open(old_file) do |f|
-        IO.copy_stream(f, old_temp)
-      end
-      File.open(new_file) do |f|
-        IO.copy_stream(f, new_temp)
-      end
-      begin
-        diff = CSVDiff.new(
-          File.expand_path(old_temp),
-          File.expand_path(new_temp),
-          ignore_moves: true,
-          key_fields: key_fields
-        )
-      rescue Exception => e
-        file_name = File.basename target_file
-        raise "Unable to diff file: #{file_name}. \nError received: #{e}"
-      ensure
-        old_temp.close!
-        new_temp.close!
-      end
-      columns = self.get_columns(new_file)
-      CSV.open(target_file, 'wb') do |csv|
-        csv << (columns+['status'])
-        diff.deletes.each_value { |v| csv << get_delete(v, columns) }
-        diff.adds.each_value { |v| csv << get_add(v, columns) }
-        if key_fields.count == 1
-          # If only a single key field, we don't need the old values
-          # Just grab the row and let ServiceNow coalesce and update the row
-          update_rows = diff.updates.each_value.map { |u| u.row }
-          update_rows = update_rows.map(&:to_i).sort
-          update_row_num = update_rows.shift
-          current_row_num = 0
-          CSV.foreach(new_file, headers: true) do |new_csv|
-            current_row_num = current_row_num + 1
-            next unless current_row_num == update_row_num
-            csv << new_csv.push('new')
-            update_row_num = update_rows.shift
-            break if update_row_num == nil
-          end
-        elsif key_fields.count == 2
-          # Multiple key fields result in row "updates"
-          diff.updates.each_value do |v|
-            csv << self.update_to_old(v, columns)
-            csv << self.update_to_new(v, columns)
-          end
-        else
-          raise "Received #{key_fields.count} key fields. Only 1/2 supported."
-        end
-      end
-    end
-  end
-end

data/lib/nexpose_servicenow/helpers/connection_helper.rb DELETED

@@ -1,84 +0,0 @@
-require_relative '../queries/queries_base'
-module NexposeServiceNow
-  class ConnectionHelper
-    NOT_IMPL = 'Error: Method not implemented.'
-    def initialize(url, port, username, password, silo='')
-      @log = NexposeServiceNow::NxLogger.instance
-      @url = url
-      @port = port
-      @username = username
-      @password = password
-      @silo = silo
-      @timeout = 21600
-    end
-    def self.get_report_names(query_name, ids)
-      if QueriesBase.single_report?(query_name)
-        return [ id: -1, report_name: get_report_name(query_name) ]
-      end
-      ids.map do |id|
-        { id: id.first, report_name: get_report_name(query_name, id.first) }
-      end
-    end
-    def self.get_report_name(query_name, id=nil)
-      name = "Nexpose-ServiceNow-#{query_name}"
-      name += "-#{id}" unless QueriesBase.single_report?(query_name) || id.nil?
-      name
-    end
-    def create_query_options(query_options, nexpose_id=nil)
-      options = {}
-      options[:vuln_query_date] = query_options[:vuln_query_date]
-      options[:site_id] = nexpose_id
-      options[:id_type] = 'site'
-      options[:filters] = query_options[:filters] || {}
-      options[:cvss_v] = query_options[:cvss_v]
-      # Without a nexpose ID, we don't have a specific delta
-      return options if [nil, -1].include? nexpose_id
-      if query_options[:delta_values].empty?
-        error_msg = 'No delta values provided. Exiting...'
-        @log.log_error_message error_msg
-        raise error_msg
-      end
-      options[:delta] = "#{query_options[:delta_values][nexpose_id] || 0}"
-      @log.log_message("Query options: #{options}")
-      options
-    end
-    def self.get_filepath(report_name, output_dir)
-      path = File.join output_dir, "#{report_name}.csv"
-      File.expand_path path
-    end
-    def connect(username, password)
-      raise NOT_IMPL
-    end
-    def generate_report(query_name, ids, id_type, output_dir, query_options={})
-      raise NOT_IMPL
-    end
-    # Pulls the collection IDs from Nexpose (e.g. asset groups, sites)
-    def collection_ids(collection_type)
-      raise NOT_IMPL
-    end
-    def save_report(report_name, report_id, output_dir)
-      raise NOT_IMPL
-    end
-    def get_cvss_version_strings(use_v3)
-      raise NOT_IMPL
-    end
-  end
-end

data/lib/nexpose_servicenow/helpers/data_warehouse_helper.rb DELETED

@@ -1,140 +0,0 @@
-require 'pg'
-require_relative './connection_helper'
-require_relative '../queries/warehouse_queries'
-module NexposeServiceNow
-  class DataWarehouseHelper < ConnectionHelper
-    SSL_MODE = 'prefer'
-    GRANULARITY = 500
-    CHUNK_LIMIT = 4_500_000
-    def initialize(url, port, username, password, silo='')
-      super(url, port, username, password, silo)
-    end
-    def connect
-      @log.log_message 'Creating DWH connection'
-      PG::Connection.open(:host => @url,
-                          :dbname => @silo,
-                          :port => @port,
-                          :user => @username,
-                          :password => @password,
-                          :sslmode => SSL_MODE)
-    end
-    def generate_report(query_name, ids, id_type, output_dir, query_options={})
-      output_dir = File.expand_path(output_dir.to_s)
-      #A single report doesn't use site filters
-      ids = [-1] if WarehouseQueries.single_report?(query_name)
-      query_options[:cvss_v] = get_cvss_version_strings(query_options[:cvss_v3])
-      page_size = query_options[:page_size]
-      row_limit = query_options[:row_limit]
-      chunks = []
-      base_name = "query_#{query_name}"
-      ids.each do |id|
-        delta_options = create_query_options(query_options, id)
-        query = WarehouseQueries.send(query_name, delta_options)
-        # Open the CSV file to write as pages are retrieved
-        report_name = self.class.get_report_name(query_name, id)
-        @log.log_message "Running query for #{report_name}"
-        local_file_name = self.class.get_filepath(report_name, output_dir)
-        csvFile = File.open(local_file_name, 'wb')
-        conn = connect
-        conn.transaction do
-          table_name = "query_#{query_name}"
-          table_name = "#{base_name}_#{id}" if id && id.to_i > 0
-          @log.log_message "Creating cursor: #{table_name}"
-          conn.exec("DECLARE #{table_name} CURSOR FOR #{query}")
-          res = conn.exec("FETCH #{page_size} FROM #{table_name}")
-          # Headers
-          headers = res.fields.join(',')
-          csvFile.puts(headers)
-          # Declare the initial chunk
-          chunk = { start: csvFile.pos, length: 0, row_count: 0 }
-          chunk[:site_id] = id unless id.nil? || id == -1
-          # Should we overwrite 'res' to release the memory?
-          all_lines = res.values.map { |r| r.join(',') }
-          # Table declared, so keep reading pages until it's consumed
-          data_left = true
-          while(data_left)
-            # Lift out a number of lines in a chunk
-            text = all_lines.slice!(0, GRANULARITY)
-            # Try to get the next page
-            if text.nil? || text.count == 0
-              res = conn.exec("FETCH #{page_size} FROM #{table_name}")
-              if res.values.count == 0
-                chunks << chunk
-                break
-              end
-              all_lines = res.values.map { |r| r.join(',') }
-              next
-            end
-            # Work out the details for this chunk
-            line_count = text.count
-            text = text.join("\n")
-            text << "\n"
-            byte_size = text.bytesize
-            # Test whether limits would be exceeded
-            below_row_limit = chunk[:row_count] + line_count <= row_limit
-            below_size_limit = chunk[:length] + byte_size < CHUNK_LIMIT
-            if below_size_limit && below_row_limit
-              chunk[:length] += byte_size
-              chunk[:row_count] += line_count
-            else
-              chunks << chunk.dup
-              # Store the current pos since the next chunk isn't written
-              chunk[:start] = csvFile.pos
-              chunk[:length] = byte_size
-              chunk[:row_count] = line_count
-            end
-            csvFile.write(text)
-          end
-        end
-        conn.finish
-        # Close the file for this specific report
-        csvFile.close
-        @log.log_message "Report generated: #{report_name}"
-      end
-      chunks.each { |c| c.delete :row_count }
-      @log.log_message "Finished running query: #{query_name}"
-      chunks.to_json
-    end
-    def collection_ids
-      @log.log_message 'Retrieving list of site IDs'
-      connection = connect
-      query = 'select site_id from dim_site'
-      result = connection.query(query)
-      result.map { |r| r['site_id'] }
-      connection.finish
-    end
-    def get_cvss_version_strings(use_v3)
-      use_v3 ? { choice: '_v3', fallback: '' } : { choice: '', fallback: '' }
-    end
-  end
-end