pwn 0.4.429 → 0.4.432

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 101c2b7768232bb1ffc67b7304cd58d8d1968fd2549958dadd8d1fbfc79b9ac1
-  data.tar.gz: 3a56e33451f7bf6868a2dbe124ae1c6cb9a03389a5af7dea8e1c567d46081fb2
+  metadata.gz: b53a054a6de64ad97760f3d1fe8e6dedbac6fd173d66600dcf08301635d88990
+  data.tar.gz: 459e0d3b96d8e297f0f48827202912f49e9e275c6f88bf242095c6bfbf3b33c7
 SHA512:
-  metadata.gz: 54c49f48521be56ba68642530ed280253a6835acbab991ee6bf9560e9912e103f34d17127be3dc4a27dcbddc03c426118705d2e4428d6753760a58d449f9f3ac
-  data.tar.gz: 5f05900cb509d463f888852ea36a3c40a36d360912009c4c476a1deae04049e35e825aa5d75fc6c2afa22f9887a54a320f5108df5e424e3de84267c8acd6cb17
+  metadata.gz: 2094fcfe3d226dd7cea5dd8a9be4593ba853b968be90c657cfae828b74aebde36f3fe654aaf693782320a882fcfc2e18cf937998aff1dcf11cc04c4c655a79ec
+  data.tar.gz: 3b6dcdb9d2fc4fc65028485aa87418e5a1f0858c4475ab120d4f8e53b183f9c8d62d73ed3134a2648547a8e21fd41271b1a58e4f2785e13258b19a00406b9789

data/Gemfile

@@ -18,7 +18,7 @@ gem 'aws-sdk', '3.1.0'
 gem 'bettercap', '1.6.2'
 gem 'brakeman', '5.2.3'
 gem 'bson', '4.15.0'
-gem 'bundler', '>=2.3.13'
+gem 'bundler', '>=2.3.14'
 gem 'bundler-audit', '0.9.0.1'
 gem 'bunny', '2.19.0'
 gem 'colorize', '0.8.1'
@@ -61,7 +61,7 @@ gem 'rspec', '3.11.0'
 gem 'rtesseract', '3.1.2'
 gem 'rubocop', '1.29.1'
 gem 'rubocop-rake', '0.6.0'
-gem 'rubocop-rspec', '2.11.0'
+gem 'rubocop-rspec', '2.11.1'
 gem 'ruby-audio', '1.6.1'
 gem 'ruby-nmap', '0.10.0'
 gem 'ruby-saml', '1.14.0'
@@ -79,5 +79,5 @@ gem 'tty-prompt', '0.23.1'
 gem 'watir', '7.1.0'
 gem 'waveform', '0.1.2'
 gem 'webrick', '1.7.0'
-gem 'wicked_pdf', '2.6.2'
+gem 'wicked_pdf', '2.6.3'
 gem 'yard', '0.9.27'

data/README.md

@@ -37,7 +37,7 @@ $ rvm use ruby-3.1.2@pwn
 $ rvm list gemsets
 $ gem install --verbose pwn
 $ pwn
-pwn[v0.4.429]:001 >>> PWN.help
+pwn[v0.4.432]:001 >>> PWN.help
 ```
 
 [![Installing the pwn Security Automation Framework](https://raw.githubusercontent.com/0dayInc/pwn/master/documentation/pwn_install.png)](https://youtu.be/G7iLUY4FzsI)
@@ -52,7 +52,7 @@ $ rvm use ruby-3.1.2@pwn
 $ gem uninstall --all --executables pwn
 $ gem install --verbose pwn
 $ pwn
-pwn[v0.4.429]:001 >>> PWN.help
+pwn[v0.4.432]:001 >>> PWN.help
 ```
 
 

data/bin/pwn_nessus_cloud_create_scan

@@ -19,33 +19,53 @@ OptionParser.new do |options|
     opts[:scan_name] = n
   end
 
+  options.on('-TTARGETS', '--text-targets=TARGETS', '<Required - Comma-delimited list of targets to scan>') do |t|
+    opts[:text_targets] = t
+  end
+
   options.on('-tVALUE', '--scan-template=VALUE', '<Optional - Canned Scan Template to Use for Scan Creation (Defaults to "Basic Network Scan">') do |t|
     opts[:scan_template] = t
   end
 
-  options.on('-pPOLICY', '--policy-name=POLICY', '<Optional - Policy to Use to Create the Scan (Defaults to "")>') do |p|
+  options.on('-pPOLICY', '--policy-name=POLICY', '<Optional - Policy to Use to Create the Scan>') do |p|
     opts[:policy_name] = p
   end
 
-  options.on('-fFOLDER', '--folder-name=FOLDER', '<Optional - Where to Store the Scan (Defaults to "main")>') do |f|
+  options.on('-fFOLDER', '--folder-name=FOLDER', '<Optional - Where to Store the Scan (Defaults to "My Scans")>') do |f|
     opts[:folder_name] = f
   end
 
-  options.on('-sSCANNER', '--scanner=SCANNER', '<Optional - Scanner to Use (Defaults to "AUTO-ROUTED")>') do |s|
-    opts[:scanner] = s
+  options.on('-sSCANNER', '--scanner-name=SCANNER', '<Optional - Scanner to Use (Defaults to "AUTO-ROUTED")>') do |s|
+    opts[:scanner_name] = s
   end
 
-  options.on('-nTARGET', '--target-network=TARGET', '<Optional if --scanner other than AUTO-ROUTED, Otherwise Required - Network to Scan (Defaults to "default-network")>') do |n|
-    opts[:target_network] = n
+  options.on('-D', '--disable-scan', '<Optional - If true, the schedule for the scan is disabled (Defaults to false)>') do |d|
+    opts[:disabled] = d
   end
 
-  options.on('-lWHEN', '--launch=WHEN', '<Optional When to Launch Scan - ON_DEMAND || DAILY || WEEKLY || MONTHLY || YEARLY (Defaults to "ON_DEMAND")>') do |l|
-    opts[:launch] = l
+  options.on('-NTARGET', '--target-network-name=TARGET', '<Optional - If --scanner other than AUTO-ROUTED, Otherwise Required - Network to Scan (Defaults to "Default")>') do |n|
+    opts[:target_network_name] = n
   end
 
-  options.on('-wTIME', '--scan-time-window=TIME', '<Optional Scan Time Window in Minutes - (Defaults to 0 if nessus scanner scan || 180 if nessus agent scan)>') do |l|
+  options.on('-lWHEN', '--launch=WHEN', '<Optional - When to Launch Scan - ON_DEMAND || DAILY || WEEKLY || MONTHLY || YEARLY (Defaults to "ON_DEMAND")>') do |l|
     opts[:launch] = l
   end
+
+  options.on('-wTIME', '--scan-time-window=TIME', '<Optional - Scan Time Window in Minutes - (Defaults to 0 if nessus scanner scan || 180 if nessus agent scan)>') do |t|
+    opts[:scan_time_window] = t
+  end
+
+  options.on('-STIME', '--start-time=TIME', '<Optional - For One-Time Scans, the Starting Time and Date for the Scan - (Defaults to Time.now.strftime("%Y%m%dT%H%M%S")>') do |t|
+    opts[:starttime] = t
+  end
+
+  options.on('-rRRULES', '--rrules=RRULES', '<Optional - For One-Time Scans, the Starting Time and Date for the Scan - (Defaults to "FREQ=ONETIME;INTERVAL=0;BYDAY=null")>') do |r|
+    opts[:rrules] = r
+  end
+
+  options.on('-zTIMEZONE', '--timezone=TIMEZONE', '<Optional - Timezone of the scheduled start time for the scan - (Defaults to "UTC")>') do |t|
+    opts[:timezone] = t
+  end
 end.parse!
 
 if opts.empty?
@@ -54,6 +74,7 @@ if opts.empty?
 end
 
 begin
+  # Get Options Passed to pwn_nessus_cloud_create_scan
   yaml_config = opts[:yaml_config]
 
   raise "YAML Config Not Found: #{yaml_config}" unless File.exist?(yaml_config)
@@ -75,54 +96,167 @@ begin
   policy_name ||= ''
 
   folder_name = opts[:folder_name]
-  folder_name ||= 'main'
+  folder_name ||= 'My Scans'
+
+  scanner_name = opts[:scanner_name]
+  scanner_name ||= 'AUTO-ROUTED'
 
-  scanner = opts[:scanner]
-  scanner ||= 'AUTO-ROUTED'
+  target_network_name = opts[:target_network_name]
+  target_network_name ||= 'Default'
 
-  target_network = opts[:target_network]
-  target_network ||= '00000000-0000-0000-0000-000000000000'
-  target_network = '00000000-0000-0000-0000-000000000000' if target_network == 'default-network'
+  disabled = true if opts[:disabled]
+  disabled ||= false
+
+  enabled = true
+  enabled = false if disabled
 
   launch = opts[:launch]
   launch ||= 'ON_DEMAND'
 
   scan_time_window = opts[:scan_time_window]
 
+  starttime = opts[:starttime]
+  starttime ||= Time.now.strftime('%Y%m%dT%H%M%S')
+
+  rrules = opts[:rrules]
+  rrules ||= 'FREQ=ONETIME;INTERVAL=0;BYDAY=null'
+  # if opts[:rrules].nil?
+  #   # SU, MO, TU, WE, TH, FR, SA
+  #   byday_today = Time.now.strftime('%A').upcase[0..1]
+  #   rrules = "FREQ=ONETIME;INTERVAL=0;BYDAY=#{byday_today}"
+  # end
+
+  timezone = opts[:timezone]
+  timezone ||= 'UTC'
+
+  text_targets = opts[:text_targets]
+  raise 'ERROR: --text-targets (i.e. List of targets to scan) is required.' unless text_targets
+
+  text_targets_arr = text_targets.split(',')
+
+  target_groups = opts[:target_groups]
+
+  file_targets = opts[:file_targets]
+
+  tag_targets = opts[:tag_targets]
+
+  agent_group_name = opts[:agent_group_name]
+  agent_group_id = ''
+
+  agent_scan_launch_type = opts[:agent_scan_launch_type]
+  agent_scan_launch_type ||= 'triggered'
+
+  triggers = {}
+  triggers[:trigger_type] = agent_scan_launch_type
+  triggers[:trigger_type] ||= 'periodic'
+
+  triggers[:options] = {}
+  case agent_scan_launch_type
+  when 'periodic'
+    triggers[:options][:periodic_hourly_interval] = opts[:periodic_hourly_interval]
+    triggers[:options][:periodic_hourly_interval] ||= 0
+  when 'file-exists'
+    triggers[:options][:filename] = opts[:filename]
+  end
+
+  emails = opts[:emails]
+
+  acls = {}
+  acls[:permissions] = opts[:acl_permissions]
+  acls[:owner] = opts[:acl_owner]
+  acls[:display_name] = opts[:acl_display_name]
+  acls[:name] = opts[:acl_name]
+  acls[:id] = opts[:acl_id]
+  acls[:type] = opts[:acl_type]
+
+  # Begin Here
   nessus_obj = PWN::Plugins::NessusCloud.login(
     access_key: access_key,
     secret_key: secret_key
   )
 
-  scan_template_list = PWN::Plugins::NessusCloud.get_canned_scan_templates(
-    nessus_obj: nessus_obj
+  # Requirements to create a scan:
+  # Part 1: Populate uuid
+  # Part 2: Populate settings object
+  # Part 3: Populate credentials object
+  # Part 4: Populate plugins object (optional)
+
+  # Part 1: Populate uuid
+  # TODO: add --list-canned-scan-templates option
+  scan_template = PWN::Plugins::NessusCloud.get_canned_scan_templates(
+    nessus_obj: nessus_obj,
+    name: scan_template
   )
+  scan_template_uuid = scan_template[:uuid]
+  puts scan_template_uuid
+
+  # Part 2: Populate settings object
+  settings = {}
+  policy = PWN::Plugins::NessusCloud.get_policies(
+    nessus_obj: nessus_obj,
+    name: policy_name
+  )
+  policy_id = policy[:id]
+  puts policy_id
 
-  selected_scan_template = scan_template_list[:templates].select do |sc|
-    sc[:title] == scan_template
-  end
-
-  scan_template_id = selected_scan_template.first[:uuid]
-
-  policy_list = PWN::Plugins::NessusCloud.get_policies(
-    nessus_obj: nessus_obj
+  folder = PWN::Plugins::NessusCloud.get_folders(
+    nessus_obj: nessus_obj,
+    name: folder_name
   )
-  puts policy_list.inspect
+  folder_id = folder[:id]
+  puts folder_id
 
-  folder_list = PWN::Plugins::NessusCloud.get_folders(
-    nessus_obj: nessus_obj
+  scanner = PWN::Plugins::NessusCloud.get_scanners(
+    nessus_obj: nessus_obj,
+    name: scanner_name
   )
-  puts folder_list.inspect
+  scanner_id = scanner[:id]
+  puts scanner_id
 
-  scanner_list = PWN::Plugins::NessusCloud.get_scanners(
-    nessus_obj: nessus_obj
+  target_network = PWN::Plugins::NessusCloud.get_target_networks(
+    nessus_obj: nessus_obj,
+    name: target_network_name
   )
-  puts scanner_list.inspect
+  target_network_id = target_network[:uuid]
+  puts target_network_id
 
-  target_network_list = PWN::Plugins::NessusCloud.get_target_networks(
+  # Part 3: Populate credentials object
+  credentials = {}
+  credential_types = PWN::Plugins::NessusCloud.get_credential_types(
     nessus_obj: nessus_obj
   )
-  puts target_network_list.inspect
+  puts credential_types.inspect
+  # TODO: add --list-credential-types option
+  # credentials[:add] = {}
+
+  # case opts[:credential_type]
+  # when 'host/ssh'
+  #   credential_type_parent = opts[:credential_type].split('/').first.to_sym
+  #   credential_type = opts[:credential_type].split('/').last.to_sym
+  #   credentials[:add][credential_type_parent] = {}
+  #   credentials[:add][credential_type_parent][credential_type] = []
+  # when 'host/windows'
+  #   credential_type_parent = opts[:credential_type].split('/').first.to_sym
+  #   credential_type = opts[:credential_type].split('/').last.to_sym
+  #   credentials[:add][credential_type_parent] = {}
+  #   credentials[:add][credential_type_parent][credential_type] = []
+  # else
+  #   raise "ERROR: #{opts[:credential_type]} Not Supported."
+  # end
+
+  # Part 4: Populate plugins object (optional)
+  # TODO: Implment Plugins During Scan Creation
+  plugins = {}
+
+  # create_scan_resp = PWN::Plugins::NessusCloud.create_scan(
+  #   nessus_obj: nessus_obj,
+  #   scan_template_uuid: scan_template_uuid,
+  #   settings: settings,
+  #   credentials: credentials,
+  #   plugins: plugins
+  # )
+
+  # puts create_scan_resp.inspect
 rescue Interrupt
   puts 'CTRL+C detected...goodbye.'
 rescue StandardError => e

data/bin/pwn_nessus_cloud_vulnscan

@@ -54,15 +54,11 @@ begin
     secret_key: secret_key
   )
 
-  scan_list = PWN::Plugins::NessusCloud.get_scans(
-    nessus_obj: nessus_obj
+  scan = PWN::Plugins::NessusCloud.get_scans(
+    nessus_obj: nessus_obj,
+    name: scan_name
   )
-
-  selected_scan_to_launch = scan_list[:scans].select do |scan|
-    scan[:name] == scan_name
-  end
-
-  scan_id = selected_scan_to_launch.first[:id]
+  scan_id = scan[:id]
 
   PWN::Plugins::NessusCloud.launch_scan(
     nessus_obj: nessus_obj,

data/lib/pwn/plugins/nessus_cloud.rb

@@ -94,90 +94,272 @@ module PWN
 
       # Supported Method Parameters::
       # PWN::Plugins::NessusCloud.get_canned_scan_templates(
-      #   nessus_obj: 'required - nessus_obj returned from #login method'
+      #   nessus_obj: 'required - nessus_obj returned from #login method',
+      #   name: 'optional - name of scan template'
       # )
 
       public_class_method def self.get_canned_scan_templates(opts = {})
         nessus_obj = opts[:nessus_obj]
+        name = opts[:name]
 
         scan_templates_resp = nessus_cloud_rest_call(
           nessus_obj: nessus_obj,
           rest_call: 'editor/scan/templates'
         ).body
 
-        JSON.parse(scan_templates_resp, symbolize_names: true)
+        scan_templates = JSON.parse(scan_templates_resp, symbolize_names: true)
+
+        if name
+          selected_scan_template = scan_templates[:templates].select do |sc|
+            sc[:title] == name
+          end
+          scan_templates = selected_scan_template.first if selected_scan_template.any?
+          scan_templates ||= {}
+        end
+
+        scan_templates
       rescue StandardError, SystemExit, Interrupt => e
         raise e
       end
 
       # Supported Method Parameters::
       # PWN::Plugins::NessusCloud.get_policies(
-      #   nessus_obj: 'required - nessus_obj returned from #login method'
+      #   nessus_obj: 'required - nessus_obj returned from #login method',
+      #   name: 'optional - name of policy (i.e. user-defined template)'
       # )
 
       public_class_method def self.get_policies(opts = {})
         nessus_obj = opts[:nessus_obj]
+        name = opts[:name]
 
-        scan_templates_resp = nessus_cloud_rest_call(
+        policies_resp = nessus_cloud_rest_call(
           nessus_obj: nessus_obj,
           rest_call: 'policies'
         ).body
 
-        JSON.parse(scan_templates_resp, symbolize_names: true)
+        policies = JSON.parse(policies_resp, symbolize_names: true)
+
+        if name
+          selected_policy = policies[:policies].select do |p|
+            p[:name] == name
+          end
+          policies = selected_policy.first if selected_policy.any?
+          policies ||= {}
+        end
+
+        policies
       rescue StandardError, SystemExit, Interrupt => e
         raise e
       end
 
       # Supported Method Parameters::
       # PWN::Plugins::NessusCloud.get_folders(
-      #   nessus_obj: 'required - nessus_obj returned from #login method'
+      #   nessus_obj: 'required - nessus_obj returned from #login method',
+      #   name: 'optional - name of folder'
       # )
 
       public_class_method def self.get_folders(opts = {})
         nessus_obj = opts[:nessus_obj]
+        name = opts[:name]
 
-        scan_templates_resp = nessus_cloud_rest_call(
+        folders_resp = nessus_cloud_rest_call(
           nessus_obj: nessus_obj,
-          rest_call: 'policies'
+          rest_call: 'folders'
         ).body
 
-        JSON.parse(scan_templates_resp, symbolize_names: true)
+        folders = JSON.parse(folders_resp, symbolize_names: true)
+
+        if name
+          selected_folder = folders[:folders].select do |f|
+            f[:name] == name
+          end
+          folders = selected_folder.first if selected_folder.any?
+          folders ||= {}
+        end
+
+        folders
       rescue StandardError, SystemExit, Interrupt => e
         raise e
       end
 
       # Supported Method Parameters::
       # PWN::Plugins::NessusCloud.get_scanners(
-      #   nessus_obj: 'required - nessus_obj returned from #login method'
+      #   nessus_obj: 'required - nessus_obj returned from #login method',
+      #   name: 'optional - name of scanner'
       # )
 
       public_class_method def self.get_scanners(opts = {})
         nessus_obj = opts[:nessus_obj]
+        name = opts[:name]
 
-        scan_templates_resp = nessus_cloud_rest_call(
+        scanners_resp = nessus_cloud_rest_call(
           nessus_obj: nessus_obj,
           rest_call: 'scanners'
         ).body
 
-        JSON.parse(scan_templates_resp, symbolize_names: true)
+        scanners = JSON.parse(scanners_resp, symbolize_names: true)
+
+        if name
+          selected_scanner = scanners[:scanners].select do |s|
+            s[:name] == name
+          end
+          scanners = selected_scanner.first if selected_scanner.any?
+          scanners ||= {}
+        end
+
+        scanners
       rescue StandardError, SystemExit, Interrupt => e
         raise e
       end
 
       # Supported Method Parameters::
       # PWN::Plugins::NessusCloud.get_target_networks(
-      #   nessus_obj: 'required - nessus_obj returned from #login method'
+      #   nessus_obj: 'required - nessus_obj returned from #login method',
+      #   name: 'optional - name of target network'
       # )
 
       public_class_method def self.get_target_networks(opts = {})
         nessus_obj = opts[:nessus_obj]
+        name = opts[:name]
 
-        scan_templates_resp = nessus_cloud_rest_call(
+        target_networks_resp = nessus_cloud_rest_call(
           nessus_obj: nessus_obj,
           rest_call: 'networks'
         ).body
 
-        JSON.parse(scan_templates_resp, symbolize_names: true)
+        target_networks = JSON.parse(target_networks_resp, symbolize_names: true)
+
+        if name
+          selected_network = target_networks[:networks].select do |tn|
+            tn[:name] == name
+          end
+          target_networks = selected_network.first if selected_network.any?
+          target_networks ||= {}
+        end
+
+        target_networks
+      rescue StandardError, SystemExit, Interrupt => e
+        raise e
+      end
+
+      # Supported Method Parameters::
+      # PWN::Plugins::NessusCloud.get_timezones(
+      #   nessus_obj: 'required - nessus_obj returned from #login method',
+      #   name: 'optional - name of timezone'
+      # )
+
+      public_class_method def self.get_timezones(opts = {})
+        nessus_obj = opts[:nessus_obj]
+        name = opts[:name]
+
+        timezones_resp = nessus_cloud_rest_call(
+          nessus_obj: nessus_obj,
+          rest_call: 'scans/timezones'
+        ).body
+
+        timezones = JSON.parse(timezones_resp, symbolize_names: true)
+
+        if name
+          selected_timezone = timezones[:networks].select do |tz|
+            tz[:name] == name
+          end
+          timezones = selected_timezone.first if selected_timezone.any?
+          timezones ||= {}
+        end
+
+        timezones
+      rescue StandardError, SystemExit, Interrupt => e
+        raise e
+      end
+
+      # Supported Method Parameters::
+      # PWN::Plugins::NessusCloud.get_target_groups(
+      #   nessus_obj: 'required - nessus_obj returned from #login method',
+      #   name: 'optional - name of timezone'
+      # )
+      # )
+
+      public_class_method def self.get_target_groups(opts = {})
+        nessus_obj = opts[:nessus_obj]
+        name = opts[:name]
+
+        target_groups_resp = nessus_cloud_rest_call(
+          nessus_obj: nessus_obj,
+          rest_call: 'target-groups'
+        ).body
+
+        timezones = JSON.parse(target_groups_resp, symbolize_names: true)
+
+        if name
+          selected_timezone = timezones[:networks].select do |tz|
+            tz[:name] == name
+          end
+          timezones = selected_timezone.first if selected_timezone.any?
+          timezones ||= {}
+        end
+
+        timezones
+      rescue StandardError, SystemExit, Interrupt => e
+        raise e
+      end
+
+      # Supported Method Parameters::
+      # PWN::Plugins::NessusCloud.get_credential_types(
+      #   nessus_obj: 'required - nessus_obj returned from #login method',
+      #   name: 'optional - name of credential type (e.g. SSH, Windows, HTTP, etc.)'
+      # )
+      # )
+
+      public_class_method def self.get_credential_types(opts = {})
+        nessus_obj = opts[:nessus_obj]
+        name = opts[:name]
+
+        credential_types_resp = nessus_cloud_rest_call(
+          nessus_obj: nessus_obj,
+          rest_call: 'credentials/types'
+        ).body
+
+        credential_types = JSON.parse(credential_types_resp, symbolize_names: true)
+
+        if name
+          selected_credential_type = credential_types[:networks].select do |tz|
+            tz[:name] == name
+          end
+          credential_types = selected_credential_type.first if selected_credential_type.any?
+          credential_types ||= {}
+        end
+
+        credential_types
+      rescue StandardError, SystemExit, Interrupt => e
+        raise e
+      end
+
+      # Supported Method Parameters::
+      # PWN::Plugins::NessusCloud.create_scan(
+      #   nessus_obj: 'required - nessus_obj returned from #login method',
+      #   scan_template_uuid: 'required - the UUID for the Tenable-provided scan template to use.  Run #get_canned_scan_templates for a list of UUIDs',
+      #   settings: 'required - settings object as defined by https://developer.tenable.com/reference/scans-create',
+      #   credentials: 'required - credentials object as defined by https://developer.tenable.com/reference/scans-create',
+      #   plugins: 'optional - plugins object as defined by https://developer.tenable.com/reference/scans-create (Defaults to {})'
+      # )
+
+      public_class_method def self.create_scan(opts = {})
+        nessus_obj = opts[:nessus_obj]
+
+        http_body = {}
+        http_body[:uuid] = opts[:scan_template_uuid]
+        http_body[:settings] = opts[:settings]
+        http_body[:credentials] = opts[:credentials]
+        http_body[:plugins] = opts[:plugins]
+
+        create_scan_resp = nessus_cloud_rest_call(
+          http_method: :post,
+          nessus_obj: nessus_obj,
+          rest_call: 'scans',
+          http_body: http_body
+        ).body
+
+        JSON.parse(create_scan_resp, symbolize_names: true)
       rescue StandardError, SystemExit, Interrupt => e
         raise e
       end
@@ -189,13 +371,24 @@ module PWN
 
       public_class_method def self.get_scans(opts = {})
         nessus_obj = opts[:nessus_obj]
+        name = opts[:name]
 
         scans_resp = nessus_cloud_rest_call(
           nessus_obj: nessus_obj,
           rest_call: 'scans'
         ).body
 
-        JSON.parse(scans_resp, symbolize_names: true)
+        scans = JSON.parse(scans_resp, symbolize_names: true)
+
+        if name
+          selected_scan = scans[:scans].select do |s|
+            s[:name] == name
+          end
+          scans = selected_scan.first if selected_scan.any?
+          scans ||= {}
+        end
+
+        scans
       rescue StandardError, SystemExit, Interrupt => e
         raise e
       end
@@ -374,23 +567,33 @@ module PWN
           )
 
           #{self}.get_canned_scan_templates(
-            nessus_obj: 'required - nessus_obj returned from #login method'
+            nessus_obj: 'required - nessus_obj returned from #login method',
+            name: 'optional - name of scan template'
           )
 
           #{self}.get_policies(
-            nessus_obj: 'required - nessus_obj returned from #login method'
+            nessus_obj: 'required - nessus_obj returned from #login method',
+            name: 'optional - name of policy (i.e. user-defined template)'
           )
 
           #{self}.get_folders(
-            nessus_obj: 'required - nessus_obj returned from #login method'
+            nessus_obj: 'required - nessus_obj returned from #login method',
+            name: 'optional - name of folder'
           )
 
           #{self}.get_scanners(
-            nessus_obj: 'required - nessus_obj returned from #login method'
+            nessus_obj: 'required - nessus_obj returned from #login method',
+            name: 'optional - name of scanner'
           )
 
           #{self}.get_target_networks(
-            nessus_obj: 'required - nessus_obj returned from #login method'
+            nessus_obj: 'required - nessus_obj returned from #login method',
+            name: 'optional - name of target network'
+          )
+
+          #{self}.get_timezones(
+            nessus_obj: 'required - nessus_obj returned from #login method',
+            name: 'optional - name of timezone'
           )
 
           #{self}.get_scans(

data/lib/pwn/version.rb

@@ -1,5 +1,5 @@
 # frozen_string_literal: true
 
 module PWN
-  VERSION = '0.4.429'
+  VERSION = '0.4.432'
 end

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: pwn
 version: !ruby/object:Gem::Version
-  version: 0.4.429
+  version: 0.4.432
 platform: ruby
 authors:
 - 0day Inc.
 autorequire: 
 bindir: bin
 cert_chain: []
-date: 2022-05-18 00:00:00.000000000 Z
+date: 2022-05-19 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: activesupport
@@ -114,14 +114,14 @@ dependencies:
     requirements:
     - - ">="
       - !ruby/object:Gem::Version
-        version: 2.3.13
+        version: 2.3.14
   type: :development
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - ">="
       - !ruby/object:Gem::Version
-        version: 2.3.13
+        version: 2.3.14
 - !ruby/object:Gem::Dependency
   name: bundler-audit
   requirement: !ruby/object:Gem::Requirement
@@ -702,14 +702,14 @@ dependencies:
     requirements:
     - - '='
       - !ruby/object:Gem::Version
-        version: 2.11.0
+        version: 2.11.1
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - '='
       - !ruby/object:Gem::Version
-        version: 2.11.0
+        version: 2.11.1
 - !ruby/object:Gem::Dependency
   name: ruby-audio
   requirement: !ruby/object:Gem::Requirement
@@ -954,14 +954,14 @@ dependencies:
     requirements:
     - - '='
       - !ruby/object:Gem::Version
-        version: 2.6.2
+        version: 2.6.3
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - '='
       - !ruby/object:Gem::Version
-        version: 2.6.2
+        version: 2.6.3
 - !ruby/object:Gem::Dependency
   name: yard
   requirement: !ruby/object:Gem::Requirement