RubyGems - nexposecli - Versions diffs - 0.2.2 → 0.2.5 - Mend

nexposecli 0.2.2 → 0.2.5

Files changed (7) hide show

checksums.yaml CHANGED Viewed

@@ -1,7 +1,7 @@
 ---
 SHA1:
-  metadata.gz: 32679195424a83f6b44efeca2e90d924d7c4fc87
-  data.tar.gz: 8dbe421c0b1e50ced40c6c2f9fbf15a64b9c8013
+  metadata.gz: 71e0ff1d5349522c0af200b465da46429d4790b6
+  data.tar.gz: e9d0d3467cfc8bcaafeb034f7f7484ba8f2cae71
 SHA512:
-  metadata.gz: cc58cf7f660a44fff37f18522745a13927c6e1fad89254e5dafdbdc31129b6840cee42cd1338b3acef8cfe04999346f42db4cf704e5a95749afb593d8fab5257
-  data.tar.gz: 7c57f719981fce6ed6de548081bbf40c00adfdf779c5d91e485ef67fdb2513c9c61ddb180aefcc671b62dae0b5ce97f27639421eb958a75ba8688304d04d01ec
+  metadata.gz: 50fab0be43a770c53be083afa71490014dacb1f56ea88ce4b70d858ee9ef7652597c222fa0b5127ca284a3bbcfe9926a2a02c21163546ded47daa0ac197c31be
+  data.tar.gz: 9ea66667ba4f8522a72b9d685fc304b910be87277d8d605173da204c74abd0b4d51ed340cbcbdb6c7b93905ecbc519f069d6708eea9afd15a77c7dbf1652f4eb

data/bin/nexposecli CHANGED Viewed

@@ -56,7 +56,7 @@ max_scan_task_attempts = 3
 def uputs( facility, ulog )
   # add string validation
   @logger.info( @nsc_server + "," + @evm_reqid + " [" + facility.to_s + "] " + ulog.to_s)
-  if $debug
+  if $debug || (facility.to_s == "BAIL")
     puts "[" + facility.to_s + "]" + ulog.to_s
   end
 end
@@ -415,24 +415,44 @@ when 1   # TARGET USER
     puts "The user: #{user.name} was created with id: #{user.id}"
     uputs("USER", "New user created: #{user.name} (id:#{user.id})")
     upp user
-  when 2   # list
+  when 2, 4   # list, show
     uputs("ACTION", 'list USER action requested')
     user_listing = @nsc.list_users
     puts "Users:"
-    puts " -  " + '%-6.6s' % 'Admin?' + " " + '%-15.15s' % 'Username' + " " + '%-25.25s' % 'Full Name' + " " + '%-30.30s' % 'Email' + " " + '%-25.25s' % "Role" + "\tAuth Module:Source"
+    puts " -  " + '%-5.5s' % 'Id' + " " + '%-6.6s' % 'Admin?' + " " + '%-15.15s' % 'Username' + " " + '%-25.25s' % 'Full Name' + " " + '%-30.30s' % 'Email' + " " + '%-25.25s' % "Role" + "\tAuth Module:Source"
     user_listing.each do |user|
        role = Nexpose::User.load(@nsc, user.id).role_name
-       puts " -  " + '%-6.6s' % user.is_admin.to_s + " " + '%-15.15s' % user.name + " " + '%-25.25s' % user.full_name + " " + '%-30.30s' % user.email + " " + '%-25.25s' % role + "\t#{user.auth_module}:#{user.auth_source}"
+       if (@action == 4) && (!args.id.to_str.eql? user.name.to_s)
+          next
+       end
+       puts " -  " + '%-5.5s' % user.id + " " + '%-6.6s' % user.is_admin.to_s + " " + '%-15.15s' % user.name + " " + '%-25.25s' % user.full_name + " " + '%-30.30s' % user.email + " " + '%-25.25s' % role + "\t#{user.auth_module}:#{user.auth_source}"
     end
     upp user_listing
-  when 4   # show
-    uputs("ACTION", 'show USER action requested')
-    userid = args.id.to_str
-    user = Nexpose::User.load(@nsc, userid)
-    pp user
+#  when 4   # show
+#    uputs("ACTION", 'show USER action requested')
+#    userid = args.id.to_str
+#    user = Nexpose::User.load(@nsc, userid)
+#    pp user
   when 8   # update
     uputs("ACTION", 'update USER action requested')
-    puts 'Not yet implemented'
+    userid = args.id.to_str
+    user = Nexpose::User.load(@nsc, userid)
+    if args.authsrc
+       user.authsrcid = args.authsrc
+       user.password = nil
+    end
+    if args.password
+      user.password = "#{args.password}"
+    end
+    # Begin User save attempt
+    begin
+       user.save(@nsc)
+    rescue Nexpose::APIError => e
+       STDERR.puts "ERROR [ #{e.to_s} ]"
+       exit(-1)
+    end
+    puts "User #{user.name} has been updated. Run a --show --USER --id <id> to confirm."
   when 16  # delete
     uputs("ACTION", 'delete USER action requested')
     puts 'Not yet implemented'
@@ -912,6 +932,16 @@ when 8   # TARGET SCAN
       end
    when 2   # list
       uputs("SCAN", 'list SCAN action requested')
+      # EJG
+      scans = @nsc.past_scans(args.id.to_i)
+      puts "Requested: nsc.past_scans(#{args.id}), but past scans length is: #{scans.length}"
+      puts "Past Scans:"
+      scans.each do |scan|
+         puts " -  " + '%-6.6s' % scan.id + " " + '%-15.15s' % scan.engine_name + " " + '%-30.30s' % scan.end_time + " " + '%-25.25s' % scan.status
+      end
+      exit(0)
+      # EJG
       scan_activity = scan_activity()
       upp scan_activity
       if scan_activity.length > 0
@@ -1640,6 +1670,14 @@ when 16384 # TARGET QUERY
       sql_config = Nexpose::AdhocReportConfig.new(nil, 'sql')
       sql_config.add_filter('version', '2.0.1')
       sql_config.add_filter('query', sql)
+      # EJG
+      if args.filter
+         if ['site','group','device','scan','vuln-categories','vuln-severity','vuln-status'].include?(args.filter)
+            sql_config.add_filter(args.filter, args.filterv)
+         else
+           ubail(-1, "The report filter type passed is not valid")
+         end
+      end
       if args.timeout
          rpt_to = args.timeout.to_int

data/lib/nexposecli/args.rb CHANGED Viewed

@@ -118,6 +118,10 @@ module Nexposecli
        desc                  : The target port to be acted upon by the action
        required              : true
+     - name                  : password
+       desc                  : The target password
+       required              : true
      - name                  : authsrc
        desc                  : The target authsrc id
        required              : true

data/lib/nexposecli/version.rb CHANGED Viewed

@@ -1,3 +1,3 @@
 module Nexposecli
-  VERSION = "0.2.2"
+  VERSION = "0.2.5"
 end

data/nexposecli.gemspec CHANGED Viewed

@@ -18,7 +18,7 @@ Gem::Specification.new do |spec|
   spec.require_paths = ["lib"]
   spec.required_ruby_version = '>= 2.1'
-  spec.add_runtime_dependency "nexpose", '~> 4.0', '>= 4.0.4'
+  spec.add_runtime_dependency "nexpose", '>= 4.0.4'
   spec.add_runtime_dependency "netaddr", '~> 1.5', '>= 1.5.1'
   spec.add_runtime_dependency "net-ldap", '~> 0.14', '>= 0.14.0'

metadata CHANGED Viewed

@@ -1,7 +1,7 @@
 --- !ruby/object:Gem::Specification
 name: nexposecli
 version: !ruby/object:Gem::Version
-  version: 0.2.2
+  version: 0.2.5
 platform: ruby
 authors:
 - Erik Gomez
@@ -9,15 +9,12 @@ authors:
 autorequire:
 bindir: bin
 cert_chain: []
-date: 2016-06-21 00:00:00.000000000 Z
+date: 2016-10-17 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: nexpose
   requirement: !ruby/object:Gem::Requirement
     requirements:
-    - - "~>"
-      - !ruby/object:Gem::Version
-        version: '4.0'
     - - ">="
       - !ruby/object:Gem::Version
         version: 4.0.4
@@ -25,9 +22,6 @@ dependencies:
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
-    - - "~>"
-      - !ruby/object:Gem::Version
-        version: '4.0'
     - - ">="
       - !ruby/object:Gem::Version
         version: 4.0.4
@@ -131,7 +125,6 @@ files:
 - Rakefile
 - bin/console
 - bin/nexposecli
-- bin/nexposecli.test
 - bin/setup
 - lib/nexposecli.rb
 - lib/nexposecli/argparse.rb
@@ -163,7 +156,7 @@ required_rubygems_version: !ruby/object:Gem::Requirement
       version: '0'
 requirements: []
 rubyforge_project:
-rubygems_version: 2.5.1
+rubygems_version: 2.6.6
 signing_key:
 specification_version: 4
 summary: Ruby command-line utility for Rapid7 Nexpose

data/bin/nexposecli.test DELETED Viewed

@@ -1,15 +0,0 @@
-#!/usr/bin/env ruby
-require 'nexposecli'
-# chatter = Nexposecli::Chatter.new
-# chatter.say_hello
-# nxclass = Nexposecli::Target.const_get("Role")
-nxclass = Nexposecli::Target.const_get("#{ARGV[0]}")
-puts nxclass.new.list
-puts "and again but via const_get for method"
-puts nxclass.new.method("list").call("me")
-puts nxclass.new.method("list").call
-puts nxclass.new.method("list").call("Sarah")