prenus 0.0.3 → 0.0.4

data/README.rdoc

@@ -10,19 +10,15 @@ This is a quickly hacked together Ruby script that can consume version 2 nessus
 
 == Installation
 
-* Clone our copy of the ruby-nessus gem and install it
-  git clone git://github.com/AsteriskLabs/ruby-nessus.git
-  cd ruby-nessus
-  rake install
-* Install the Prenus gem
-  gem install prenus
+* Install the Prenus gem:
+* # gem install prenus
 
 == Usage
 
 * Download the .nessus files from Nessus you want to Prettify (make sure they're version 2 files, not version 1)
 * Cd into the folder where the files are
-* Run Prenus
-  prenus -t html -o tmp *.nessus
+* Run Prenus:
+* # prenus -t html -o tmp *.nessus
 * Happy Happy Joy Joy
 
 == Command Line Options
@@ -100,6 +96,7 @@ This will only work if you're in the Circos Tools tableviewer folder (in my inst
 This will dump the png into the img/ folder.
 
 == Changes
+* Version 0.0.4 - Shifted my copy of ruby-nessus into my lib/gemcache folder
 * Version 0.0.3 - Botched the gem push - like a chump - this should be identical to 0.0.2
 * Version 0.0.2 - Updated input - handles duplicate hosts a bit nicer (but not much nicer)
 * Version 0.0.1 - initial release .. buggy to the max

data/bin/prenus

@@ -8,7 +8,7 @@ end
 $root_dir = File.expand_path(File.join(File.dirname(__FILE__),'..'))
 
 #require some goodies
-require 'ruby-nessus'
+#require 'ruby-nessus'
 
 require 'fileutils'
 require 'optparse'
@@ -16,6 +16,7 @@ require 'yaml'
 
 require 'lib/output'
 require 'lib/input'
+require 'lib/gemcache/ruby-nessus/ruby-nessus'
 
 #Versioning and .. those things
 $verstring = "Version 0.0.3 - 20th of August, 2012 - Created by Christian \"xntrik\" Frichot.\n\n"

data/lib/gemcache/ruby-nessus/ruby-nessus.rb

@@ -0,0 +1,3 @@
+# Ruby-Nessus Files
+require 'lib/gemcache/ruby-nessus/ruby-nessus/nessus'
+require 'lib/gemcache/ruby-nessus/ruby-nessus/version'

data/lib/gemcache/ruby-nessus/ruby-nessus/Version1/event.rb

@@ -0,0 +1,90 @@
+require 'lib/gemcache/ruby-nessus/ruby-nessus/Version1/port'
+
+module Nessus
+  module Version1
+    
+    class Event
+
+      # Return the total event count for a given host.
+      # @return [Integer]
+      #   Return the total event count for a given host.
+      # @example
+      #   host.event_count #=> 3456
+      def initialize(event)
+        @event = event
+      end
+
+      # Return the event port.
+      # @return [Object]
+      #    Return the event port object or port string.
+      # @example
+      #   event.port            #=> "https (443/tcp)"
+      #   event.port.number     #=> 443
+      #   event.port.service    #=> "https"
+      #   event.port.protocol   #=> "tcp"
+      def port
+        @port ||= Port.parse(@event.at('port').inner_text)
+      end
+
+      # Return the event severity.
+      # @return [String]
+      #    Return the event severity.
+      # @example
+      #   event.severity          #=> 3
+      #   event.severity.in_words #=> "High Severity"
+      # @see String#in_words
+      def severity
+        @severity ||= @event.at('severity').inner_text.to_i
+      end
+
+      # Return the event object nessus plugin id
+      # @return [String]
+      #    Return the event object nessus plugin id
+      # @example
+      #   event.plugin_id #=> 3245
+      def plugin_id
+        @plugin_id ||= @event.at('pluginID').inner_text.to_i
+      end
+
+      # Return the event name (plugin_name)
+      # @return [String]
+      #    Return the event name (plugin_name)
+      # @example
+      #   event.plugin_name   #=> "PHP < 5.2.4 Multiple Vulnerabilities"
+      #   event.name          #=> "PHP < 5.2.4 Multiple Vulnerabilities"
+      def plugin_name
+        s = @event.at('pluginName').inner_text
+
+        @plugin_name ||= unless s.empty?
+                           @event.at('pluginName').inner_text || "N/A"
+                         else
+                           false
+                         end
+
+        return @plugin_name
+      end
+      alias name plugin_name
+
+      # Return the event plugin output data
+      # @return [String]
+      #    Return the event plugin output data
+      # @example
+      #   event.output        #=> "..."
+      #   event.data          #=> "..."
+      def data
+        d = "#{@event.at('data')}" || ""
+
+        @data ||= unless d.empty?
+                           @event.at('data').inner_text || "N/A"
+                         else
+                           false
+                         end
+        return @data
+      end
+      alias output data
+
+    end
+    
+  end
+  
+end

data/lib/gemcache/ruby-nessus/ruby-nessus/Version1/host.rb

@@ -0,0 +1,273 @@
+module Nessus
+  module Version1
+
+    class Host
+      include Enumerable
+
+      # Creates A New Host Object
+      # @param [Object] Host Object
+      # @example
+      # Host.new(object)
+      def initialize(host)
+        @host = host
+      end
+
+      def to_s
+        "#{ip}"
+      end
+
+      # Return the Host Object hostname.
+      # @return [String]
+      #   The Host Object Hostname
+      # @example
+      #   host.hostname #=> "127.0.0.1"
+      def hostname
+        @hostname ||= @host.at('HostName').inner_text
+      end
+      alias ip hostname
+
+      # Return the host scan start time.
+      # @return [DateTime]
+      #   The Host Scan Start Time
+      # @example
+      #   scan.scan_start_time #=> 'Fri Nov 11 23:36:54 1985'
+      def scan_start_time
+        if @host.at('startTime').inner_text.blank?
+          return false
+        else
+          @host_scan_time = DateTime.strptime(@host.at('startTime').inner_text, fmt='%a %b %d %H:%M:%S %Y')
+        end
+      end
+
+      # Return the host scan stop time.
+      # @return [DateTime]
+      #   The Host Scan Stop Time
+      # @example
+      #   scan.scan_start_time #=> 'Fri Nov 11 23:36:54 1985'
+      def scan_stop_time
+        if @host.at('stopTime').inner_text.blank?
+          return false
+        else
+          @host_scan_time = DateTime.strptime(@host.at('stopTime').inner_text, fmt='%a %b %d %H:%M:%S %Y')
+        end
+      end
+
+      # Return the host run time.
+      # @return [String]
+      #   The Host Scan Run Time
+      # @example
+      #   scan.scan_run_time #=> '2 hours 5 minutes and 16 seconds'
+      def scan_runtime
+        get_runtime
+      end
+      alias runtime scan_runtime
+
+      # Return the Host Netbios Name.
+      # @return [String]
+      #   The Host Netbios Name
+      # @example
+      #   host.netbios_name #=> "SOMENAME4243"
+      def netbios_name
+        @netbios_name ||= @host.at('netbios_name').inner_text
+      end
+
+      # Return the Host Mac Address.
+      # @return [String]
+      #   Return the Host Mac Address
+      # @example
+      #   host.mac_addr #=> "00:11:22:33:44:55"
+      def mac_addr
+        @mac_addr ||= @host.at('mac_addr').inner_text
+      end
+      alias mac_address mac_addr
+
+      # Return the Host DNS Name.
+      # @return [String]
+      #   Return the Host DNS Name
+      # @example
+      #   host.dns_name #=> "snorby.org"
+      def dns_name
+        @dns_name ||= @host.at('dns_name').inner_text
+      end
+
+      # Return the Host OS Name.
+      # @return [String]
+      #   Return the Host OS Name
+      # @example
+      #   host.dns_name #=> "Microsoft Windows 2000, Microsoft Windows Server 2003"
+      def os_name
+        @os_name ||= @host.at('os_name').inner_text
+      end
+      alias operating_system os_name
+
+      # Return the open ports for a given host object.
+      # @return [Integer]
+      #   Return the open ports for a given host object.
+      # @example
+      #   host.open_ports #=> 213
+      def open_ports
+        @scanned_ports ||= @host.at('num_ports').inner_text.to_i
+      end
+
+      # Returns All Informational Event Objects For A Given Host.
+      # @yield [prog] If a block is given, it will be passed the newly
+      #               created Event object.
+      # @yieldparam [EVENT] prog The newly created Event object.
+      # @return [Integer]
+      #   Return The Informational Event Count For A Given Host.
+      # @example
+      #   host.informational_events do |info|
+      #     puts info.port
+      #     puts info.data if info.data
+      #   end
+      def informational_events(&block)
+        unless @informational_events
+          @informational_events = []
+          @informational_event_count = 0
+
+          @host.xpath("ReportItem").each do |event|
+            next if event.at('severity').inner_text.to_i != 0
+            @informational_events << Event.new(event)
+            @informational_event_count += 1
+          end
+
+        end
+
+        @informational_events.each(&block)
+        return @informational_event_count
+      end
+
+      # Returns All Low Event Objects For A Given Host.
+      # @yield [prog] If a block is given, it will be passed the newly
+      #               created Event object.
+      # @yieldparam [EVENT] prog The newly created Event object.
+      # @return [Integer]
+      #   Return The Low Event Count For A Given Host.
+      # @example
+      #   host.low_severity_events do |low|
+      #     puts low.name if low.name
+      #   end
+      def low_severity_events(&block)
+
+        @low_severity_count = @host.at('num_lo').inner_text.to_i
+
+        unless @low_severity_events
+          @low_severity_events = []
+
+          @host.xpath("ReportItem").each do |event|
+            next if event.at('severity').inner_text.to_i != 1
+            @low_severity_events << Event.new(event)
+          end
+
+        end
+
+        @low_severity_events.each(&block)
+        return @low_severity_count
+      end
+
+      # Returns All Medium Event Objects For A Given Host.
+      # @yield [prog] If a block is given, it will be passed the newly
+      #               created Event object.
+      # @yieldparam [EVENT] prog The newly created Event object.
+      # @return [Integer]
+      #   Return The Medium Event Count For A Given Host.
+      # @example
+      #   host.medium_severity_events do |medium|
+      #     puts medium.name if medium.name
+      #   end
+      def medium_severity_events(&block)
+
+        @high_severity_count = @host.at('num_med').inner_text.to_i
+
+        unless @medium_severity_events
+          @medium_severity_events = []
+
+          @host.xpath("ReportItem").each do |event|
+            next if event.at('severity').inner_text.to_i != 2
+            @medium_severity_events << Event.new(event)
+          end
+
+        end
+
+        @medium_severity_events.each(&block)
+        return @high_severity_count
+      end
+
+      # Returns All High Event Objects For A Given Host.
+      # @yield [prog] If a block is given, it will be passed the newly
+      #               created Event object.
+      # @yieldparam [EVENT] prog The newly created Event object.
+      # @return [Integer]
+      #   Return The High Event Count For A Given Host.
+      # @example
+      #   host.high_severity_events do |high|
+      #     puts high.name if high.name
+      #   end
+      def high_severity_events(&block)
+
+        @high_severity_count = @host.at('num_hi').inner_text.to_i
+
+        unless @high_severity_events
+          @high_severity_events = []
+
+          @host.xpath("ReportItem").each do |event|
+            next if event.at('severity').inner_text.to_i != 3
+            @high_severity_events << Event.new(event)
+          end
+
+        end
+
+        @high_severity_events.each(&block)
+        return @high_severity_count
+      end
+
+      # Return the total event count for a given host.
+      # @return [Integer]
+      #   Return the total event count for a given host.
+      # @example
+      #   host.event_count #=> 3456
+      def event_count
+        ((low_severity_events.to_i) + (medium_severity_events.to_i) + (high_severity_events.to_i)).to_i
+      end
+
+      # Creates a new Event object to be parser
+      # @yield [prog] If a block is given, it will be passed the newly
+      #               created Event object.
+      # @yieldparam [EVENT] prog The newly created Event object.
+      # @example
+      #   host.events do |event|
+      #     puts event.name if event.name
+      #     puts event.port
+      #   end
+      def each_event(&block)
+        @host.xpath("ReportItem").each do |event|
+          block.call(Event.new(event)) if block
+        end
+      end
+
+      # Parses the events of the host.
+      # @return [Array<String>]
+      #   The events of the host.
+      def events
+        Enumerator.new(self,:each_event).to_a
+      end
+
+
+      private
+
+        def get_runtime
+          if scan_start_time && scan_stop_time
+            h = ("#{Time.parse(scan_stop_time.to_s).strftime('%H').to_i - Time.parse(scan_start_time.to_s).strftime('%H').to_i}").gsub('-', '')
+            m = ("#{Time.parse(scan_stop_time.to_s).strftime('%M').to_i - Time.parse(scan_start_time.to_s).strftime('%M').to_i}").gsub('-', '')
+            s = ("#{Time.parse(scan_stop_time.to_s).strftime('%S').to_i - Time.parse(scan_start_time.to_s).strftime('%S').to_i}").gsub('-', '')
+            return "#{h} hours #{m} minutes and #{s} seconds"
+          else
+            false
+          end
+        end
+
+    end
+
+  end
+
+end

data/lib/gemcache/ruby-nessus/ruby-nessus/Version1/port.rb

@@ -0,0 +1,91 @@
+module Nessus
+  module Version1
+    
+    class Port
+
+      # Port Service
+      attr_reader :service
+      # Port number
+      attr_reader :number
+      # Port Protocol
+      attr_reader :protocol
+      # Raw output string from nessus
+      attr_reader :raw_string
+
+      # Creates A New Port Object
+      # @param [String] service The Port Service.
+      # @param [Integer] number The Port number.
+      # @param [String] protocol The Port protocol.
+      # @param [String] raw output string from nessus.
+      # @example
+      # Port.new("ssh",22,"tcp", str)
+      def initialize(service,number,protocol,raw_string)
+        @service = service
+        @number = number
+        @protocol = protocol
+        @raw_string = raw_string
+      end
+
+      # Parse A passed port string and return a Port Object.
+      # @return [Object]
+      #   New Port Object
+      # @example
+      #   Port.parse(port)
+      def Port.parse(str)
+        begin
+          @full_port = str
+          components = str.match(/^([^\(]+)\((\d+)\/([^\)]+)\)/)
+
+          if components
+            return Port.new(components[1].strip, components[2].strip, components[3].strip, str)
+          else
+            return Port.new(false, false, false, str)
+          end
+
+        end
+
+      end
+
+      # Return true iF port protocol Ii tcp.
+      # @return [Boolean]
+      #   Return True If The Port Protocol Is TCP.
+      def tcp?
+        @protocol == 'tcp'
+      end
+
+      # Return true iF port protocol Ii udp.
+      # @return [Boolean]
+      #   Return True If The Port Protocol Is UDP.
+      def udp?
+        @protocol == 'udp'
+      end
+
+      # Return the port as a string.
+      # @return [String]
+      #   Return The Port As A String
+      # @example
+      #   port.to_s #=> https (443/tcp)
+      def to_s
+        if @service && @number && @protocol
+          "#{@service} (#{@number}/#{@protocol})"
+        else
+          "#{@raw_string}"
+        end
+      end
+
+      # Return false if the port object number is nil
+      # @return [Boolean]
+      #   Return false if the port object number is nil
+      def number
+        if @number
+          return @number
+        else
+          false
+        end
+      end
+
+    end
+    
+  end
+
+end