RubyGems - pwn - Versions diffs - 0.4.430 → 0.4.433 - Mend

pwn 0.4.430 → 0.4.433

Files changed (13) hide show

checksums.yaml +4 -4
data/Gemfile +4 -4
data/README.md +2 -2
data/bin/pwn_nessus_cloud_create_scan +171 -25
data/etc/userland/aws/nessus/vagrant.yaml.EXAMPLE +13 -0
data/etc/userland/docker/nessus/vagrant.yaml.EXAMPLE +13 -0
data/etc/userland/qemu/nessus/vagrant.yaml.EXAMPLE +13 -0
data/etc/userland/ruby-gem/nessus/vagrant.yaml.EXAMPLE +13 -0
data/etc/userland/virtualbox/nessus/vagrant.yaml.EXAMPLE +13 -0
data/etc/userland/vmware/nessus/vagrant.yaml.EXAMPLE +13 -0
data/lib/pwn/plugins/nessus_cloud.rb +182 -21
data/lib/pwn/version.rb +1 -1
metadata +11 -11

checksums.yaml CHANGED Viewed

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: c31b2ac11c6feecd92b4cd5fb270270c7cf91794dec67257bd18b1ba5ce330f4
-  data.tar.gz: b774b6329c49e18d65720fad8e4ae0976cbce0507489e039b2b5745baf85055e
+  metadata.gz: 0a46e9457e6865983d6c0c7fe5c80bdef0daf3a89145cf5c4d8209eff0b36ad0
+  data.tar.gz: 27dc83bbbad652c62eca8b27dddda5696c995bc4f129fcbf7678e50b4aeae6b8
 SHA512:
-  metadata.gz: '08fc344ede5c67f38ef52aba9ed5d6fa9a9fcc7d1ec6b0f0f8486520a118ca94bf8de5219a93d00286813d1174270793805b3866ea99841571c0ddceedaff00f'
-  data.tar.gz: 9061c5bd187b2c0c99229cd35dbe31aec1d1935c6465a07b5bfaa55691888d280f68eade1217e5a518d2ecfda5b2509a81dfe35b26d60f6dca8cffb7b302c6b6
+  metadata.gz: 8d7e7119ff10f046fbd3963135e26536385edc6cefc8d83b2c92b0bb11f5c2845df0dc2891e73eb8b5ec55c2af9cb94cd3ad4ae4fc3b45bd6fb06d9f95ab93a6
+  data.tar.gz: 668308f6e0c04786f522a28feea4a9758f1e423aaea1610011665d9e1329d093547f40dbf508d8b70d3544a2f76f50711926ed23fc04086cefc816fc2feb298d

data/Gemfile CHANGED Viewed

@@ -18,8 +18,8 @@ gem 'aws-sdk', '3.1.0'
 gem 'bettercap', '1.6.2'
 gem 'brakeman', '5.2.3'
 gem 'bson', '4.15.0'
-gem 'bundler', '>=2.3.13'
-gem 'bundler-audit', '0.9.0.1'
+gem 'bundler', '>=2.3.14'
+gem 'bundler-audit', '0.9.1'
 gem 'bunny', '2.19.0'
 gem 'colorize', '0.8.1'
 gem 'credit_card_validations', '5.0.0'
@@ -61,7 +61,7 @@ gem 'rspec', '3.11.0'
 gem 'rtesseract', '3.1.2'
 gem 'rubocop', '1.29.1'
 gem 'rubocop-rake', '0.6.0'
-gem 'rubocop-rspec', '2.11.0'
+gem 'rubocop-rspec', '2.11.1'
 gem 'ruby-audio', '1.6.1'
 gem 'ruby-nmap', '0.10.0'
 gem 'ruby-saml', '1.14.0'
@@ -79,5 +79,5 @@ gem 'tty-prompt', '0.23.1'
 gem 'watir', '7.1.0'
 gem 'waveform', '0.1.2'
 gem 'webrick', '1.7.0'
-gem 'wicked_pdf', '2.6.2'
+gem 'wicked_pdf', '2.6.3'
 gem 'yard', '0.9.27'

data/README.md CHANGED Viewed

@@ -37,7 +37,7 @@ $ rvm use ruby-3.1.2@pwn
 $ rvm list gemsets
 $ gem install --verbose pwn
 $ pwn
-pwn[v0.4.430]:001 >>> PWN.help
+pwn[v0.4.433]:001 >>> PWN.help
 ```
 [![Installing the pwn Security Automation Framework](https://raw.githubusercontent.com/0dayInc/pwn/master/documentation/pwn_install.png)](https://youtu.be/G7iLUY4FzsI)
@@ -52,7 +52,7 @@ $ rvm use ruby-3.1.2@pwn
 $ gem uninstall --all --executables pwn
 $ gem install --verbose pwn
 $ pwn
-pwn[v0.4.430]:001 >>> PWN.help
+pwn[v0.4.433]:001 >>> PWN.help
 ```

data/bin/pwn_nessus_cloud_create_scan CHANGED Viewed

@@ -11,7 +11,7 @@ OptionParser.new do |options|
     #{$PROGRAM_NAME} [opts]
   "
-  options.on('-cYPATH', '--yaml-config=YPATH', '<Required - YAML Config Containing Access & Secret Keys for Authentication>') do |c|
+  options.on('-cYPATH', '--yaml-config=YPATH', '<Required - YAML Config Containing Access & Secret Keys for Authentication, Including Credential Information for Scan Creation (https://developer.tenable.com/docs/determine-settings-for-credential-type)>') do |c|
     opts[:yaml_config] = c
   end
@@ -19,15 +19,23 @@ OptionParser.new do |options|
     opts[:scan_name] = n
   end
+  options.on('-TTARGETS', '--text-targets=TARGETS', '<Required - Comma-delimited list of targets to scan>') do |t|
+    opts[:text_targets] = t
+  end
+  options.on('-dDESC', '--scan-description=DESC', '<Optional - Scan Description (Defaults to nil)>') do |d|
+    opts[:scan_desc] = d
+  end
   options.on('-tVALUE', '--scan-template=VALUE', '<Optional - Canned Scan Template to Use for Scan Creation (Defaults to "Basic Network Scan">') do |t|
     opts[:scan_template] = t
   end
-  options.on('-pPOLICY', '--policy-name=POLICY', '<Optional - Policy to Use to Create the Scan (Defaults to "")>') do |p|
+  options.on('-pPOLICY', '--policy-name=POLICY', '<Optional - Policy to Use to Create the Scan>') do |p|
     opts[:policy_name] = p
   end
-  options.on('-fFOLDER', '--folder-name=FOLDER', '<Optional - Where to Store the Scan (Defaults to "main")>') do |f|
+  options.on('-fFOLDER', '--folder-name=FOLDER', '<Optional - Where to Store the Scan (Defaults to "My Scans")>') do |f|
     opts[:folder_name] = f
   end
@@ -35,17 +43,33 @@ OptionParser.new do |options|
     opts[:scanner_name] = s
   end
-  options.on('-nTARGET', '--target-network=TARGET', '<Optional if --scanner other than AUTO-ROUTED, Otherwise Required - Network to Scan (Defaults to "default-network")>') do |n|
-    opts[:target_network] = n
+  options.on('-D', '--disable-scan', '<Optional - If true, the schedule for the scan is disabled (Defaults to false)>') do |d|
+    opts[:disabled] = d
   end
-  options.on('-lWHEN', '--launch=WHEN', '<Optional When to Launch Scan - ON_DEMAND || DAILY || WEEKLY || MONTHLY || YEARLY (Defaults to "ON_DEMAND")>') do |l|
-    opts[:launch] = l
+  options.on('-NTARGET', '--target-network-name=TARGET', '<Optional - If --scanner other than AUTO-ROUTED, Otherwise Required - Network to Scan (Defaults to "Default")>') do |n|
+    opts[:target_network_name] = n
   end
-  options.on('-wTIME', '--scan-time-window=TIME', '<Optional Scan Time Window in Minutes - (Defaults to 0 if nessus scanner scan || 180 if nessus agent scan)>') do |l|
+  options.on('-lWHEN', '--launch=WHEN', '<Optional - When to Launch Scan - ON_DEMAND || DAILY || WEEKLY || MONTHLY || YEARLY (Defaults to "ON_DEMAND")>') do |l|
     opts[:launch] = l
   end
+  options.on('-wTIMEWINDOW', '--scan-time-window=TIMEWINDOW', '<Optional - Scan Time Window in Minutes - (Defaults to 0)>') do |t|
+    opts[:scan_time_window] = t
+  end
+  options.on('-STIME', '--start-time=TIME', '<Optional - For One-Time Scans, the Starting Time and Date for the Scan - (Defaults to Time.now.strftime("%Y%m%dT%H%M%S")>') do |t|
+    opts[:starttime] = t
+  end
+  options.on('-rRRULES', '--rrules=RRULES', '<Optional - For One-Time Scans, the Starting Time and Date for the Scan - (Defaults to "FREQ=ONETIME;INTERVAL=0;BYDAY=null")>') do |r|
+    opts[:rrules] = r
+  end
+  options.on('-zTIMEZONE', '--timezone=TIMEZONE', '<Optional - Timezone of the scheduled start time for the scan - (Defaults to "UTC")>') do |t|
+    opts[:timezone] = t
+  end
 end.parse!
 if opts.empty?
@@ -54,6 +78,7 @@ if opts.empty?
 end
 begin
+  # Get Options Passed to pwn_nessus_cloud_create_scan
   yaml_config = opts[:yaml_config]
   raise "YAML Config Not Found: #{yaml_config}" unless File.exist?(yaml_config)
@@ -66,7 +91,10 @@ begin
   access_key = yaml[:access_key]
   secret_key = yaml[:secret_key]
+  credentials = yaml[:create_scan][:credentials]
   scan_name = opts[:scan_name]
+  scan_desc = opts[:scan_desc]
   scan_template = opts[:scan_template]
   scan_template ||= 'Basic Network Scan'
@@ -75,57 +103,175 @@ begin
   policy_name ||= ''
   folder_name = opts[:folder_name]
-  folder_name ||= 'main'
+  folder_name ||= 'My Scans'
   scanner_name = opts[:scanner_name]
   scanner_name ||= 'AUTO-ROUTED'
-  target_network = opts[:target_network]
-  target_network ||= '00000000-0000-0000-0000-000000000000'
-  target_network = '00000000-0000-0000-0000-000000000000' if target_network == 'default-network'
+  target_network_name = opts[:target_network_name]
+  target_network_name ||= 'Default'
+  disabled = true if opts[:disabled]
+  disabled ||= false
+  enabled = true
+  enabled = false if disabled
   launch = opts[:launch]
   launch ||= 'ON_DEMAND'
-  scan_time_window = opts[:scan_time_window]
+  scan_time_window = opts[:scan_time_window].to_i
+  scan_time_window ||= 0
+  starttime = opts[:starttime]
+  starttime ||= Time.now.strftime('%Y%m%dT%H%M%S')
+  rrules = opts[:rrules]
+  rrules ||= 'FREQ=ONETIME;INTERVAL=0;BYDAY=null'
+  timezone = opts[:timezone]
+  timezone ||= 'UTC'
+  text_targets = opts[:text_targets]
+  raise 'ERROR: --text-targets (i.e. List of targets to scan) is required.' unless text_targets
+  target_groups = opts[:target_groups]
+  file_targets = opts[:file_targets]
+  tag_targets = opts[:tag_targets]
+  tag_targets_arr = tag_targets.split(',')
+  agent_group_name = opts[:agent_group_name]
+  agent_group_id_arr = []
+  agent_scan_launch_type = opts[:agent_scan_launch_type]
+  agent_scan_launch_type ||= 'triggered'
+  triggers_arr = []
+  triggers = {}
+  triggers[:type] = agent_scan_launch_type
+  triggers[:type] ||= 'periodic'
+  triggers[:options] = {}
+  case agent_scan_launch_type
+  when 'periodic'
+    triggers[:options][:periodic_hourly_interval] = opts[:periodic_hourly_interval]
+    triggers[:options][:periodic_hourly_interval] ||= 0
+  when 'file-exists'
+    triggers[:options][:filename] = opts[:filename]
+  end
+  triggers_arr.push(triggers)
+  emails = opts[:emails]
+  acls = {}
+  acls[:permissions] = opts[:acl_permissions]
+  acls[:owner] = opts[:acl_owner]
+  acls[:display_name] = opts[:acl_display_name]
+  acls[:name] = opts[:acl_name]
+  acls[:id] = opts[:acl_id]
+  acls[:type] = opts[:acl_type]
+  credential_category = opts[:credential_category]
+  credential_type = opts[:credential_type]
+  # Begin Here
   nessus_obj = PWN::Plugins::NessusCloud.login(
     access_key: access_key,
     secret_key: secret_key
   )
+  # Requirements to create a scan:
+  # Part 1: Populate uuid
+  # Part 2: Populate settings object from options passed to driver
+  # Part 3: Populate credentials object from YAML config (optional)
+  # Part 4: Populate plugins object from YAML config (optional)
+  # Part 1: Populate uuid
+  # TODO: add --list-canned-scan-templates option
   scan_template = PWN::Plugins::NessusCloud.get_canned_scan_templates(
     nessus_obj: nessus_obj,
-    title: scan_template
+    name: scan_template
   )
-  scan_template_id = scan_template[:uuid]
-  puts scan_template_id
+  scan_template_uuid = scan_template[:uuid]
+  puts scan_template_uuid
+  # Part 2: Populate settings object from options passed to driver
+  settings = {}
+  settings[:name] = scan_name
+  settings[:description] = scan_desc
   policy = PWN::Plugins::NessusCloud.get_policies(
     nessus_obj: nessus_obj,
     name: policy_name
   )
-  policy_id = policy[:id]
-  puts policy_id
+  settings[:policy_id] = policy[:id]
   folder = PWN::Plugins::NessusCloud.get_folders(
     nessus_obj: nessus_obj,
     name: folder_name
   )
-  folder_id = folder[:id]
-  puts folder_id
+  settings[:folder_id] = folder[:id]
   scanner = PWN::Plugins::NessusCloud.get_scanners(
     nessus_obj: nessus_obj,
     name: scanner_name
   )
-  scanner_id = scanner[:id]
-  puts scanner_id
+  settings[:scanner_id] = scanner[:id]
+  target_network = PWN::Plugins::NessusCloud.get_target_networks(
+    nessus_obj: nessus_obj,
+    name: target_network_name
+  )
+  settings[:target_network_uuid] = target_network[:uuid]
+  settings[:enabled] = enabled
+  settings[:launch] = launch
+  settings[:scan_time_window] = scan_time_window
+  settings[:starttime] = starttime
+  settings[:rrules] = rrules
-  target_network_list = PWN::Plugins::NessusCloud.get_target_networks(
-    nessus_obj: nessus_obj
+  settings[:timezone] = timezone
+  settings[:text_targets] = text_targets
+  settings[:target_groups] = target_groups
+  settings[:file_targets] = file_targets
+  settings[:tag_targets] = tag_targets_arr
+  settings[:agent_group_id] = agent_group_id_arr
+  settings[:agent_scan_launch_type] = agent_scan_launch_type
+  settings[:triggers] = triggers_arr
+  settings[:emails] = emails
+  settings[:acls] = acls
+  # Part 3: Populate credentials object from YAML config (optional)
+  credentials = yaml[:credentials]
+  # Part 4: Populate plugins object from YAML config (optional)
+  plugins = yaml[:plugins]
+  create_scan_resp = PWN::Plugins::NessusCloud.create_scan(
+    nessus_obj: nessus_obj,
+    scan_template_uuid: scan_template_uuid,
+    settings: settings,
+    credentials: credentials,
+    plugins: plugins
   )
-  puts target_network_list.inspect
+  puts create_scan_resp.inspect
 rescue Interrupt
   puts 'CTRL+C detected...goodbye.'
 rescue StandardError => e

data/etc/userland/aws/nessus/vagrant.yaml.EXAMPLE CHANGED Viewed

@@ -1,2 +1,15 @@
 access_key: 'ACCESS_KEY'
 secret_key: 'SECRET_KEY'
+credentials:
+  add:
+    Host:
+      Windows:
+      - domain: 'dc.local'
+        username: 'USERNAME'
+        auth_method: 'Password'
+        password: 'PASSWORD'
+plugins:
+  Web Servers:
+    individual:
+      '11213': enabled
+      '18261': enabled

data/etc/userland/docker/nessus/vagrant.yaml.EXAMPLE CHANGED Viewed

@@ -1,2 +1,15 @@
 access_key: 'ACCESS_KEY'
 secret_key: 'SECRET_KEY'
+credentials:
+  add:
+    Host:
+      Windows:
+      - domain: 'dc.local'
+        username: 'USERNAME'
+        auth_method: 'Password'
+        password: 'PASSWORD'
+plugins:
+  Web Servers:
+    individual:
+      '11213': enabled
+      '18261': enabled

data/etc/userland/qemu/nessus/vagrant.yaml.EXAMPLE CHANGED Viewed

@@ -1,2 +1,15 @@
 access_key: 'ACCESS_KEY'
 secret_key: 'SECRET_KEY'
+credentials:
+  add:
+    Host:
+      Windows:
+      - domain: 'dc.local'
+        username: 'USERNAME'
+        auth_method: 'Password'
+        password: 'PASSWORD'
+plugins:
+  Web Servers:
+    individual:
+      '11213': enabled
+      '18261': enabled

data/etc/userland/ruby-gem/nessus/vagrant.yaml.EXAMPLE CHANGED Viewed

@@ -1,2 +1,15 @@
 access_key: 'ACCESS_KEY'
 secret_key: 'SECRET_KEY'
+credentials:
+  add:
+    Host:
+      Windows:
+      - domain: 'dc.local'
+        username: 'USERNAME'
+        auth_method: 'Password'
+        password: 'PASSWORD'
+plugins:
+  Web Servers:
+    individual:
+      '11213': enabled
+      '18261': enabled

data/etc/userland/virtualbox/nessus/vagrant.yaml.EXAMPLE CHANGED Viewed

@@ -1,2 +1,15 @@
 access_key: 'ACCESS_KEY'
 secret_key: 'SECRET_KEY'
+credentials:
+  add:
+    Host:
+      Windows:
+      - domain: 'dc.local'
+        username: 'USERNAME'
+        auth_method: 'Password'
+        password: 'PASSWORD'
+plugins:
+  Web Servers:
+    individual:
+      '11213': enabled
+      '18261': enabled

data/etc/userland/vmware/nessus/vagrant.yaml.EXAMPLE CHANGED Viewed

@@ -1,2 +1,15 @@
 access_key: 'ACCESS_KEY'
 secret_key: 'SECRET_KEY'
+credentials:
+  add:
+    Host:
+      Windows:
+      - domain: 'dc.local'
+        username: 'USERNAME'
+        auth_method: 'Password'
+        password: 'PASSWORD'
+plugins:
+  Web Servers:
+    individual:
+      '11213': enabled
+      '18261': enabled

data/lib/pwn/plugins/nessus_cloud.rb CHANGED Viewed

@@ -94,12 +94,13 @@ module PWN
       # Supported Method Parameters::
       # PWN::Plugins::NessusCloud.get_canned_scan_templates(
-      #   nessus_obj: 'required - nessus_obj returned from #login method'
+      #   nessus_obj: 'required - nessus_obj returned from #login method',
+      #   name: 'optional - name of scan template'
       # )
       public_class_method def self.get_canned_scan_templates(opts = {})
         nessus_obj = opts[:nessus_obj]
-        title = opts[:title]
+        name = opts[:name]
         scan_templates_resp = nessus_cloud_rest_call(
           nessus_obj: nessus_obj,
@@ -108,9 +109,9 @@ module PWN
         scan_templates = JSON.parse(scan_templates_resp, symbolize_names: true)
-        if title
+        if name
           selected_scan_template = scan_templates[:templates].select do |sc|
-            sc[:title] == title
+            sc[:title] == name
           end
           scan_templates = selected_scan_template.first if selected_scan_template.any?
           scan_templates ||= {}
@@ -123,19 +124,20 @@ module PWN
       # Supported Method Parameters::
       # PWN::Plugins::NessusCloud.get_policies(
-      #   nessus_obj: 'required - nessus_obj returned from #login method'
+      #   nessus_obj: 'required - nessus_obj returned from #login method',
+      #   name: 'optional - name of policy (i.e. user-defined template)'
       # )
       public_class_method def self.get_policies(opts = {})
         nessus_obj = opts[:nessus_obj]
         name = opts[:name]
-        scan_templates_resp = nessus_cloud_rest_call(
+        policies_resp = nessus_cloud_rest_call(
           nessus_obj: nessus_obj,
           rest_call: 'policies'
         ).body
-        policies = JSON.parse(scan_templates_resp, symbolize_names: true)
+        policies = JSON.parse(policies_resp, symbolize_names: true)
         if name
           selected_policy = policies[:policies].select do |p|
@@ -152,19 +154,20 @@ module PWN
       # Supported Method Parameters::
       # PWN::Plugins::NessusCloud.get_folders(
-      #   nessus_obj: 'required - nessus_obj returned from #login method'
+      #   nessus_obj: 'required - nessus_obj returned from #login method',
+      #   name: 'optional - name of folder'
       # )
       public_class_method def self.get_folders(opts = {})
         nessus_obj = opts[:nessus_obj]
         name = opts[:name]
-        scan_templates_resp = nessus_cloud_rest_call(
+        folders_resp = nessus_cloud_rest_call(
           nessus_obj: nessus_obj,
           rest_call: 'folders'
         ).body
-        folders = JSON.parse(scan_templates_resp, symbolize_names: true)
+        folders = JSON.parse(folders_resp, symbolize_names: true)
         if name
           selected_folder = folders[:folders].select do |f|
@@ -181,19 +184,20 @@ module PWN
       # Supported Method Parameters::
       # PWN::Plugins::NessusCloud.get_scanners(
-      #   nessus_obj: 'required - nessus_obj returned from #login method'
+      #   nessus_obj: 'required - nessus_obj returned from #login method',
+      #   name: 'optional - name of scanner'
       # )
       public_class_method def self.get_scanners(opts = {})
         nessus_obj = opts[:nessus_obj]
         name = opts[:name]
-        scan_templates_resp = nessus_cloud_rest_call(
+        scanners_resp = nessus_cloud_rest_call(
           nessus_obj: nessus_obj,
           rest_call: 'scanners'
         ).body
-        scanners = JSON.parse(scan_templates_resp, symbolize_names: true)
+        scanners = JSON.parse(scanners_resp, symbolize_names: true)
         if name
           selected_scanner = scanners[:scanners].select do |s|
@@ -210,18 +214,165 @@ module PWN
       # Supported Method Parameters::
       # PWN::Plugins::NessusCloud.get_target_networks(
-      #   nessus_obj: 'required - nessus_obj returned from #login method'
+      #   nessus_obj: 'required - nessus_obj returned from #login method',
+      #   name: 'optional - name of target network'
       # )
       public_class_method def self.get_target_networks(opts = {})
         nessus_obj = opts[:nessus_obj]
+        name = opts[:name]
-        scan_templates_resp = nessus_cloud_rest_call(
+        target_networks_resp = nessus_cloud_rest_call(
           nessus_obj: nessus_obj,
           rest_call: 'networks'
         ).body
-        JSON.parse(scan_templates_resp, symbolize_names: true)
+        target_networks = JSON.parse(target_networks_resp, symbolize_names: true)
+        if name
+          selected_network = target_networks[:networks].select do |tn|
+            tn[:name] == name
+          end
+          target_networks = selected_network.first if selected_network.any?
+          target_networks ||= {}
+        end
+        target_networks
+      rescue StandardError, SystemExit, Interrupt => e
+        raise e
+      end
+      # Supported Method Parameters::
+      # PWN::Plugins::NessusCloud.get_timezones(
+      #   nessus_obj: 'required - nessus_obj returned from #login method',
+      #   name: 'optional - name of timezone'
+      # )
+      public_class_method def self.get_timezones(opts = {})
+        nessus_obj = opts[:nessus_obj]
+        name = opts[:name]
+        timezones_resp = nessus_cloud_rest_call(
+          nessus_obj: nessus_obj,
+          rest_call: 'scans/timezones'
+        ).body
+        timezones = JSON.parse(timezones_resp, symbolize_names: true)
+        if name
+          selected_timezone = timezones[:networks].select do |tz|
+            tz[:name] == name
+          end
+          timezones = selected_timezone.first if selected_timezone.any?
+          timezones ||= {}
+        end
+        timezones
+      rescue StandardError, SystemExit, Interrupt => e
+        raise e
+      end
+      # Supported Method Parameters::
+      # PWN::Plugins::NessusCloud.get_target_groups(
+      #   nessus_obj: 'required - nessus_obj returned from #login method',
+      #   name: 'optional - name of timezone'
+      # )
+      # )
+      public_class_method def self.get_target_groups(opts = {})
+        nessus_obj = opts[:nessus_obj]
+        name = opts[:name]
+        target_groups_resp = nessus_cloud_rest_call(
+          nessus_obj: nessus_obj,
+          rest_call: 'target-groups'
+        ).body
+        timezones = JSON.parse(target_groups_resp, symbolize_names: true)
+        if name
+          selected_timezone = timezones[:networks].select do |tz|
+            tz[:name] == name
+          end
+          timezones = selected_timezone.first if selected_timezone.any?
+          timezones ||= {}
+        end
+        timezones
+      rescue StandardError, SystemExit, Interrupt => e
+        raise e
+      end
+      # Supported Method Parameters::
+      # PWN::Plugins::NessusCloud.get_credential_types(
+      #   nessus_obj: 'required - nessus_obj returned from #login method',
+      #   category: 'optional - category of credential type (Defaults to "Host")',
+      #   name: 'optional - name of credential type (Defaults to "SSH")'
+      # )
+      # )
+      public_class_method def self.get_credential_types(opts = {})
+        nessus_obj = opts[:nessus_obj]
+        category = opts[:category].to_s.downcase
+        name = opts[:name].to_s.downcase
+        raise 'ERROR: name parameter requires category parameter.' if category.empty? && !name.empty?
+        credential_types_resp = nessus_cloud_rest_call(
+          nessus_obj: nessus_obj,
+          rest_call: 'credentials/types'
+        ).body
+        credential_types = JSON.parse(credential_types_resp, symbolize_names: true)
+        if category
+          selected_credential_category = credential_types[:credentials].select do |cc|
+            cc[:category].downcase == category
+          end
+          credential_types = selected_credential_category.first if selected_credential_category.any?
+          credential_types ||= {}
+          if name
+            selected_credential_type = credential_types[:types].select do |ct|
+              ct[:name].downcase == name
+            end
+            credential_types = selected_credential_type.first if selected_credential_type.any?
+            credential_types ||= {}
+          end
+        end
+        credential_types
+      rescue StandardError, SystemExit, Interrupt => e
+        raise e
+      end
+      # Supported Method Parameters::
+      # PWN::Plugins::NessusCloud.create_scan(
+      #   nessus_obj: 'required - nessus_obj returned from #login method',
+      #   scan_template_uuid: 'required - the UUID for the Tenable-provided scan template to use.  Run #get_canned_scan_templates for a list of UUIDs',
+      #   settings: 'required - settings object as defined by https://developer.tenable.com/reference/scans-create',
+      #   credentials: 'required - credentials object as defined by https://developer.tenable.com/reference/scans-create',
+      #   plugins: 'optional - plugins object as defined by https://developer.tenable.com/reference/scans-create (Defaults to {})'
+      # )
+      public_class_method def self.create_scan(opts = {})
+        nessus_obj = opts[:nessus_obj]
+        http_body = {}
+        http_body[:uuid] = opts[:scan_template_uuid]
+        http_body[:settings] = opts[:settings]
+        http_body[:credentials] = opts[:credentials]
+        http_body[:plugins] = opts[:plugins]
+        create_scan_resp = nessus_cloud_rest_call(
+          http_method: :post,
+          nessus_obj: nessus_obj,
+          rest_call: 'scans',
+          http_body: http_body
+        ).body
+        JSON.parse(create_scan_resp, symbolize_names: true)
       rescue StandardError, SystemExit, Interrupt => e
         raise e
       end
@@ -429,23 +580,33 @@ module PWN
           )
           #{self}.get_canned_scan_templates(
-            nessus_obj: 'required - nessus_obj returned from #login method'
+            nessus_obj: 'required - nessus_obj returned from #login method',
+            name: 'optional - name of scan template'
           )
           #{self}.get_policies(
-            nessus_obj: 'required - nessus_obj returned from #login method'
+            nessus_obj: 'required - nessus_obj returned from #login method',
+            name: 'optional - name of policy (i.e. user-defined template)'
           )
           #{self}.get_folders(
-            nessus_obj: 'required - nessus_obj returned from #login method'
+            nessus_obj: 'required - nessus_obj returned from #login method',
+            name: 'optional - name of folder'
           )
           #{self}.get_scanners(
-            nessus_obj: 'required - nessus_obj returned from #login method'
+            nessus_obj: 'required - nessus_obj returned from #login method',
+            name: 'optional - name of scanner'
           )
           #{self}.get_target_networks(
-            nessus_obj: 'required - nessus_obj returned from #login method'
+            nessus_obj: 'required - nessus_obj returned from #login method',
+            name: 'optional - name of target network'
+          )
+          #{self}.get_timezones(
+            nessus_obj: 'required - nessus_obj returned from #login method',
+            name: 'optional - name of timezone'
           )
           #{self}.get_scans(

data/lib/pwn/version.rb CHANGED Viewed

@@ -1,5 +1,5 @@
 # frozen_string_literal: true
 module PWN
-  VERSION = '0.4.430'
+  VERSION = '0.4.433'
 end

metadata CHANGED Viewed

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: pwn
 version: !ruby/object:Gem::Version
-  version: 0.4.430
+  version: 0.4.433
 platform: ruby
 authors:
 - 0day Inc.
 autorequire:
 bindir: bin
 cert_chain: []
-date: 2022-05-18 00:00:00.000000000 Z
+date: 2022-05-20 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: activesupport
@@ -114,28 +114,28 @@ dependencies:
     requirements:
     - - ">="
       - !ruby/object:Gem::Version
-        version: 2.3.13
+        version: 2.3.14
   type: :development
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - ">="
       - !ruby/object:Gem::Version
-        version: 2.3.13
+        version: 2.3.14
 - !ruby/object:Gem::Dependency
   name: bundler-audit
   requirement: !ruby/object:Gem::Requirement
     requirements:
     - - '='
       - !ruby/object:Gem::Version
-        version: 0.9.0.1
+        version: 0.9.1
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - '='
       - !ruby/object:Gem::Version
-        version: 0.9.0.1
+        version: 0.9.1
 - !ruby/object:Gem::Dependency
   name: bunny
   requirement: !ruby/object:Gem::Requirement
@@ -702,14 +702,14 @@ dependencies:
     requirements:
     - - '='
       - !ruby/object:Gem::Version
-        version: 2.11.0
+        version: 2.11.1
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - '='
       - !ruby/object:Gem::Version
-        version: 2.11.0
+        version: 2.11.1
 - !ruby/object:Gem::Dependency
   name: ruby-audio
   requirement: !ruby/object:Gem::Requirement
@@ -954,14 +954,14 @@ dependencies:
     requirements:
     - - '='
       - !ruby/object:Gem::Version
-        version: 2.6.2
+        version: 2.6.3
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - '='
       - !ruby/object:Gem::Version
-        version: 2.6.2
+        version: 2.6.3
 - !ruby/object:Gem::Dependency
   name: yard
   requirement: !ruby/object:Gem::Requirement
@@ -1968,7 +1968,7 @@ required_rubygems_version: !ruby/object:Gem::Requirement
     - !ruby/object:Gem::Version
       version: '0'
 requirements: []
-rubygems_version: 3.3.13
+rubygems_version: 3.3.14
 signing_key:
 specification_version: 4
 summary: Automated Security Testing for CI/CD Pipelines & Beyond