RubyGems - pwn - Versions diffs - 0.4.430 → 0.4.433 - Mend

pwn 0.4.430 → 0.4.433

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (13) hide show

checksums.yaml +4 -4
data/Gemfile +4 -4
data/README.md +2 -2
data/bin/pwn_nessus_cloud_create_scan +171 -25
data/etc/userland/aws/nessus/vagrant.yaml.EXAMPLE +13 -0
data/etc/userland/docker/nessus/vagrant.yaml.EXAMPLE +13 -0
data/etc/userland/qemu/nessus/vagrant.yaml.EXAMPLE +13 -0
data/etc/userland/ruby-gem/nessus/vagrant.yaml.EXAMPLE +13 -0
data/etc/userland/virtualbox/nessus/vagrant.yaml.EXAMPLE +13 -0
data/etc/userland/vmware/nessus/vagrant.yaml.EXAMPLE +13 -0
data/lib/pwn/plugins/nessus_cloud.rb +182 -21
data/lib/pwn/version.rb +1 -1
metadata +11 -11

checksums.yaml CHANGED Viewed

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: c31b2ac11c6feecd92b4cd5fb270270c7cf91794dec67257bd18b1ba5ce330f4
-  data.tar.gz: b774b6329c49e18d65720fad8e4ae0976cbce0507489e039b2b5745baf85055e
+  metadata.gz: 0a46e9457e6865983d6c0c7fe5c80bdef0daf3a89145cf5c4d8209eff0b36ad0
+  data.tar.gz: 27dc83bbbad652c62eca8b27dddda5696c995bc4f129fcbf7678e50b4aeae6b8
 SHA512:
-  metadata.gz: '08fc344ede5c67f38ef52aba9ed5d6fa9a9fcc7d1ec6b0f0f8486520a118ca94bf8de5219a93d00286813d1174270793805b3866ea99841571c0ddceedaff00f'
-  data.tar.gz: 9061c5bd187b2c0c99229cd35dbe31aec1d1935c6465a07b5bfaa55691888d280f68eade1217e5a518d2ecfda5b2509a81dfe35b26d60f6dca8cffb7b302c6b6
+  metadata.gz: 8d7e7119ff10f046fbd3963135e26536385edc6cefc8d83b2c92b0bb11f5c2845df0dc2891e73eb8b5ec55c2af9cb94cd3ad4ae4fc3b45bd6fb06d9f95ab93a6
+  data.tar.gz: 668308f6e0c04786f522a28feea4a9758f1e423aaea1610011665d9e1329d093547f40dbf508d8b70d3544a2f76f50711926ed23fc04086cefc816fc2feb298d

data/Gemfile CHANGED Viewed

@@ -18,8 +18,8 @@ gem 'aws-sdk', '3.1.0'
 gem 'bettercap', '1.6.2'
 gem 'brakeman', '5.2.3'
 gem 'bson', '4.15.0'
-gem 'bundler', '>=2.3.13'
-gem 'bundler-audit', '0.9.0.1'
+gem 'bundler', '>=2.3.14'
+gem 'bundler-audit', '0.9.1'
 gem 'bunny', '2.19.0'
 gem 'colorize', '0.8.1'
 gem 'credit_card_validations', '5.0.0'
@@ -61,7 +61,7 @@ gem 'rspec', '3.11.0'
 gem 'rtesseract', '3.1.2'
 gem 'rubocop', '1.29.1'
 gem 'rubocop-rake', '0.6.0'
-gem 'rubocop-rspec', '2.11.0'
+gem 'rubocop-rspec', '2.11.1'
 gem 'ruby-audio', '1.6.1'
 gem 'ruby-nmap', '0.10.0'
 gem 'ruby-saml', '1.14.0'
@@ -79,5 +79,5 @@ gem 'tty-prompt', '0.23.1'
 gem 'watir', '7.1.0'
 gem 'waveform', '0.1.2'
 gem 'webrick', '1.7.0'
-gem 'wicked_pdf', '2.6.2'
+gem 'wicked_pdf', '2.6.3'
 gem 'yard', '0.9.27'

data/README.md CHANGED Viewed

@@ -37,7 +37,7 @@ $ rvm use ruby-3.1.2@pwn
 $ rvm list gemsets
 $ gem install --verbose pwn
 $ pwn
-pwn[v0.4.430]:001 >>> PWN.help
+pwn[v0.4.433]:001 >>> PWN.help
 ```
 [![Installing the pwn Security Automation Framework](https://raw.githubusercontent.com/0dayInc/pwn/master/documentation/pwn_install.png)](https://youtu.be/G7iLUY4FzsI)
@@ -52,7 +52,7 @@ $ rvm use ruby-3.1.2@pwn
 $ gem uninstall --all --executables pwn
 $ gem install --verbose pwn
 $ pwn
-pwn[v0.4.430]:001 >>> PWN.help
+pwn[v0.4.433]:001 >>> PWN.help
 ```

data/bin/pwn_nessus_cloud_create_scan CHANGED Viewed

@@ -11,7 +11,7 @@ OptionParser.new do |options|
     #{$PROGRAM_NAME} [opts]
   "
-  options.on('-cYPATH', '--yaml-config=YPATH', '<Required - YAML Config Containing Access & Secret Keys for Authentication>') do |c|
+  options.on('-cYPATH', '--yaml-config=YPATH', '<Required - YAML Config Containing Access & Secret Keys for Authentication, Including Credential Information for Scan Creation (https://developer.tenable.com/docs/determine-settings-for-credential-type)>') do |c|
     opts[:yaml_config] = c
   end
@@ -19,15 +19,23 @@ OptionParser.new do |options|
     opts[:scan_name] = n
   end
+  options.on('-TTARGETS', '--text-targets=TARGETS', '<Required - Comma-delimited list of targets to scan>') do |t|
+    opts[:text_targets] = t
+  end
+  options.on('-dDESC', '--scan-description=DESC', '<Optional - Scan Description (Defaults to nil)>') do |d|
+    opts[:scan_desc] = d
+  end
   options.on('-tVALUE', '--scan-template=VALUE', '<Optional - Canned Scan Template to Use for Scan Creation (Defaults to "Basic Network Scan">') do |t|
     opts[:scan_template] = t
   end
-  options.on('-pPOLICY', '--policy-name=POLICY', '<Optional - Policy to Use to Create the Scan (Defaults to "")>') do |p|
+  options.on('-pPOLICY', '--policy-name=POLICY', '<Optional - Policy to Use to Create the Scan>') do |p|
     opts[:policy_name] = p
   end
-  options.on('-fFOLDER', '--folder-name=FOLDER', '<Optional - Where to Store the Scan (Defaults to "main")>') do |f|
+  options.on('-fFOLDER', '--folder-name=FOLDER', '<Optional - Where to Store the Scan (Defaults to "My Scans")>') do |f|
     opts[:folder_name] = f
   end
@@ -35,17 +43,33 @@ OptionParser.new do |options|
     opts[:scanner_name] = s
   end
-  options.on('-nTARGET', '--target-network=TARGET', '<Optional if --scanner other than AUTO-ROUTED, Otherwise Required - Network to Scan (Defaults to "default-network")>') do |n|
-    opts[:target_network] = n
+  options.on('-D', '--disable-scan', '<Optional - If true, the schedule for the scan is disabled (Defaults to false)>') do |d|
+    opts[:disabled] = d
   end
-  options.on('-lWHEN', '--launch=WHEN', '<Optional When to Launch Scan - ON_DEMAND || DAILY || WEEKLY || MONTHLY || YEARLY (Defaults to "ON_DEMAND")>') do |l|
-    opts[:launch] = l
+  options.on('-NTARGET', '--target-network-name=TARGET', '<Optional - If --scanner other than AUTO-ROUTED, Otherwise Required - Network to Scan (Defaults to "Default")>') do |n|
+    opts[:target_network_name] = n
   end
-  options.on('-wTIME', '--scan-time-window=TIME', '<Optional Scan Time Window in Minutes - (Defaults to 0 if nessus scanner scan || 180 if nessus agent scan)>') do |l|
+  options.on('-lWHEN', '--launch=WHEN', '<Optional - When to Launch Scan - ON_DEMAND || DAILY || WEEKLY || MONTHLY || YEARLY (Defaults to "ON_DEMAND")>') do |l|
     opts[:launch] = l
   end
+  options.on('-wTIMEWINDOW', '--scan-time-window=TIMEWINDOW', '<Optional - Scan Time Window in Minutes - (Defaults to 0)>') do |t|
+    opts[:scan_time_window] = t
+  end
+  options.on('-STIME', '--start-time=TIME', '<Optional - For One-Time Scans, the Starting Time and Date for the Scan - (Defaults to Time.now.strftime("%Y%m%dT%H%M%S")>') do |t|
+    opts[:starttime] = t
+  end
+  options.on('-rRRULES', '--rrules=RRULES', '<Optional - For One-Time Scans, the Starting Time and Date for the Scan - (Defaults to "FREQ=ONETIME;INTERVAL=0;BYDAY=null")>') do |r|
+    opts[:rrules] = r
+  end
+  options.on('-zTIMEZONE', '--timezone=TIMEZONE', '<Optional - Timezone of the scheduled start time for the scan - (Defaults to "UTC")>') do |t|
+    opts[:timezone] = t
+  end
 end.parse!
 if opts.empty?
@@ -54,6 +78,7 @@ if opts.empty?
 end
 begin
+  # Get Options Passed to pwn_nessus_cloud_create_scan
   yaml_config = opts[:yaml_config]
   raise "YAML Config Not Found: #{yaml_config}" unless File.exist?(yaml_config)
@@ -66,7 +91,10 @@ begin
   access_key = yaml[:access_key]
   secret_key = yaml[:secret_key]
+  credentials = yaml[:create_scan][:credentials]
   scan_name = opts[:scan_name]
+  scan_desc = opts[:scan_desc]
   scan_template = opts[:scan_template]
   scan_template ||= 'Basic Network Scan'
@@ -75,57 +103,175 @@ begin
   policy_name ||= ''
   folder_name = opts[:folder_name]
-  folder_name ||= 'main'
+  folder_name ||= 'My Scans'
   scanner_name = opts[:scanner_name]
   scanner_name ||= 'AUTO-ROUTED'
-  target_network = opts[:target_network]
-  target_network ||= '00000000-0000-0000-0000-000000000000'
-  target_network = '00000000-0000-0000-0000-000000000000' if target_network == 'default-network'
+  target_network_name = opts[:target_network_name]
+  target_network_name ||= 'Default'
+  disabled = true if opts[:disabled]
+  disabled ||= false
+  enabled = true
+  enabled = false if disabled
   launch = opts[:launch]
   launch ||= 'ON_DEMAND'
-  scan_time_window = opts[:scan_time_window]
+  scan_time_window = opts[:scan_time_window].to_i
+  scan_time_window ||= 0
+  starttime = opts[:starttime]
+  starttime ||= Time.now.strftime('%Y%m%dT%H%M%S')
+  rrules = opts[:rrules]
+  rrules ||= 'FREQ=ONETIME;INTERVAL=0;BYDAY=null'
+  timezone = opts[:timezone]
+  timezone ||= 'UTC'
+  text_targets = opts[:text_targets]
+  raise 'ERROR: --text-targets (i.e. List of targets to scan) is required.' unless text_targets
+  target_groups = opts[:target_groups]
+  file_targets = opts[:file_targets]
+  tag_targets = opts[:tag_targets]
+  tag_targets_arr = tag_targets.split(',')
+  agent_group_name = opts[:agent_group_name]
+  agent_group_id_arr = []
+  agent_scan_launch_type = opts[:agent_scan_launch_type]
+  agent_scan_launch_type ||= 'triggered'
+  triggers_arr = []
+  triggers = {}
+  triggers[:type] = agent_scan_launch_type
+  triggers[:type] ||= 'periodic'
+  triggers[:options] = {}
+  case agent_scan_launch_type
+  when 'periodic'
+    triggers[:options][:periodic_hourly_interval] = opts[:periodic_hourly_interval]
+    triggers[:options][:periodic_hourly_interval] ||= 0
+  when 'file-exists'
+    triggers[:options][:filename] = opts[:filename]
+  end
+  triggers_arr.push(triggers)
+  emails = opts[:emails]
+  acls = {}
+  acls[:permissions] = opts[:acl_permissions]
+  acls[:owner] = opts[:acl_owner]
+  acls[:display_name] = opts[:acl_display_name]
+  acls[:name] = opts[:acl_name]
+  acls[:id] = opts[:acl_id]
+  acls[:type] = opts[:acl_type]
+  credential_category = opts[:credential_category]
+  credential_type = opts[:credential_type]
+  # Begin Here
   nessus_obj = PWN::Plugins::NessusCloud.login(
     access_key: access_key,
     secret_key: secret_key
   )
+  # Requirements to create a scan:
+  # Part 1: Populate uuid
+  # Part 2: Populate settings object from options passed to driver
+  # Part 3: Populate credentials object from YAML config (optional)
+  # Part 4: Populate plugins object from YAML config (optional)
+  # Part 1: Populate uuid
+  # TODO: add --list-canned-scan-templates option
   scan_template = PWN::Plugins::NessusCloud.get_canned_scan_templates(
     nessus_obj: nessus_obj,
-    title: scan_template
+    name: scan_template
   )
-  scan_template_id = scan_template[:uuid]
-  puts scan_template_id
+  scan_template_uuid = scan_template[:uuid]
+  puts scan_template_uuid
+  # Part 2: Populate settings object from options passed to driver
+  settings = {}
+  settings[:name] = scan_name
+  settings[:description] = scan_desc
   policy = PWN::Plugins::NessusCloud.get_policies(
     nessus_obj: nessus_obj,
     name: policy_name
   )
-  policy_id = policy[:id]
-  puts policy_id
+  settings[:policy_id] = policy[:id]
   folder = PWN::Plugins::NessusCloud.get_folders(
     nessus_obj: nessus_obj,
     name: folder_name
   )
-  folder_id = folder[:id]
-  puts folder_id
+  settings[:folder_id] = folder[:id]
   scanner = PWN::Plugins::NessusCloud.get_scanners(
     nessus_obj: nessus_obj,
     name: scanner_name
   )
-  scanner_id = scanner[:id]
-  puts scanner_id
+  settings[:scanner_id] = scanner[:id]
+  target_network = PWN::Plugins::NessusCloud.get_target_networks(
+    nessus_obj: nessus_obj,
+    name: target_network_name
+  )
+  settings[:target_network_uuid] = target_network[:uuid]
+  settings[:enabled] = enabled
+  settings[:launch] = launch
+  settings[:scan_time_window] = scan_time_window
+  settings[:starttime] = starttime
+  settings[:rrules] = rrules
-  target_network_list = PWN::Plugins::NessusCloud.get_target_networks(
-    nessus_obj: nessus_obj
+  settings[:timezone] = timezone
+  settings[:text_targets] = text_targets
+  settings[:target_groups] = target_groups
+  settings[:file_targets] = file_targets
+  settings[:tag_targets] = tag_targets_arr
+  settings[:agent_group_id] = agent_group_id_arr
+  settings[:agent_scan_launch_type] = agent_scan_launch_type
+  settings[:triggers] = triggers_arr
+  settings[:emails] = emails
+  settings[:acls] = acls
+  # Part 3: Populate credentials object from YAML config (optional)
+  credentials = yaml[:credentials]
+  # Part 4: Populate plugins object from YAML config (optional)
+  plugins = yaml[:plugins]
+  create_scan_resp = PWN::Plugins::NessusCloud.create_scan(
+    nessus_obj: nessus_obj,
+    scan_template_uuid: scan_template_uuid,
+    settings: settings,
+    credentials: credentials,
+    plugins: plugins
   )
-  puts target_network_list.inspect
+  puts create_scan_resp.inspect
 rescue Interrupt
   puts 'CTRL+C detected...goodbye.'
 rescue StandardError => e

data/etc/userland/aws/nessus/vagrant.yaml.EXAMPLE CHANGED Viewed

@@ -1,2 +1,15 @@
 access_key: 'ACCESS_KEY'
 secret_key: 'SECRET_KEY'
+credentials:
+  add:
+    Host:
+      Windows:
+      - domain: 'dc.local'
+        username: 'USERNAME'
+        auth_method: 'Password'
+        password: 'PASSWORD'
+plugins:
+  Web Servers:
+    individual:
+      '11213': enabled
+      '18261': enabled

data/etc/userland/docker/nessus/vagrant.yaml.EXAMPLE CHANGED Viewed

@@ -1,2 +1,15 @@
 access_key: 'ACCESS_KEY'
 secret_key: 'SECRET_KEY'
+credentials:
+  add:
+    Host:
+      Windows:
+      - domain: 'dc.local'
+        username: 'USERNAME'
+        auth_method: 'Password'
+        password: 'PASSWORD'
+plugins:
+  Web Servers:
+    individual:
+      '11213': enabled
+      '18261': enabled

data/etc/userland/qemu/nessus/vagrant.yaml.EXAMPLE CHANGED Viewed

@@ -1,2 +1,15 @@
 access_key: 'ACCESS_KEY'
 secret_key: 'SECRET_KEY'
+credentials:
+  add:
+    Host:
+      Windows:
+      - domain: 'dc.local'
+        username: 'USERNAME'
+        auth_method: 'Password'
+        password: 'PASSWORD'
+plugins:
+  Web Servers:
+    individual:
+      '11213': enabled
+      '18261': enabled

data/etc/userland/ruby-gem/nessus/vagrant.yaml.EXAMPLE CHANGED Viewed

@@ -1,2 +1,15 @@
 access_key: 'ACCESS_KEY'
 secret_key: 'SECRET_KEY'
+credentials:
+  add:
+    Host:
+      Windows:
+      - domain: 'dc.local'
+        username: 'USERNAME'
+        auth_method: 'Password'
+        password: 'PASSWORD'
+plugins:
+  Web Servers:
+    individual:
+      '11213': enabled
+      '18261': enabled

data/etc/userland/virtualbox/nessus/vagrant.yaml.EXAMPLE CHANGED Viewed

@@ -1,2 +1,15 @@
 access_key: 'ACCESS_KEY'
 secret_key: 'SECRET_KEY'
+credentials:
+  add:
+    Host:
+      Windows:
+      - domain: 'dc.local'
+        username: 'USERNAME'
+        auth_method: 'Password'
+        password: 'PASSWORD'
+plugins:
+  Web Servers:
+    individual:
+      '11213': enabled
+      '18261': enabled

data/etc/userland/vmware/nessus/vagrant.yaml.EXAMPLE CHANGED Viewed

@@ -1,2 +1,15 @@
 access_key: 'ACCESS_KEY'
 secret_key: 'SECRET_KEY'
+credentials:
+  add:
+    Host:
+      Windows:
+      - domain: 'dc.local'
+        username: 'USERNAME'
+        auth_method: 'Password'
+        password: 'PASSWORD'
+plugins:
+  Web Servers:
+    individual:
+      '11213': enabled
+      '18261': enabled

data/lib/pwn/plugins/nessus_cloud.rb CHANGED Viewed

@@ -94,12 +94,13 @@ module PWN
       # Supported Method Parameters::
       # PWN::Plugins::NessusCloud.get_canned_scan_templates(
-      #   nessus_obj: 'required - nessus_obj returned from #login method'
+      #   nessus_obj: 'required - nessus_obj returned from #login method',
+      #   name: 'optional - name of scan template'
       # )
       public_class_method def self.get_canned_scan_templates(opts = {})
         nessus_obj = opts[:nessus_obj]
-        title = opts[:title]
+        name = opts[:name]
         scan_templates_resp = nessus_cloud_rest_call(
           nessus_obj: nessus_obj,
@@ -108,9 +109,9 @@ module PWN
         scan_templates = JSON.parse(scan_templates_resp, symbolize_names: true)
-        if title
+        if name
           selected_scan_template = scan_templates[:templates].select do |sc|
-            sc[:title] == title
+            sc[:title] == name
           end
           scan_templates = selected_scan_template.first if selected_scan_template.any?
           scan_templates ||= {}
@@ -123,19 +124,20 @@ module PWN
       # Supported Method Parameters::
       # PWN::Plugins::NessusCloud.get_policies(
-      #   nessus_obj: 'required - nessus_obj returned from #login method'
+      #   nessus_obj: 'required - nessus_obj returned from #login method',
+      #   name: 'optional - name of policy (i.e. user-defined template)'
       # )
       public_class_method def self.get_policies(opts = {})
         nessus_obj = opts[:nessus_obj]
         name = opts[:name]
-        scan_templates_resp = nessus_cloud_rest_call(
+        policies_resp = nessus_cloud_rest_call(
           nessus_obj: nessus_obj,
           rest_call: 'policies'
         ).body
-        policies = JSON.parse(scan_templates_resp, symbolize_names: true)
+        policies = JSON.parse(policies_resp, symbolize_names: true)
         if name
           selected_policy = policies[:policies].select do |p|
@@ -152,19 +154,20 @@ module PWN
       # Supported Method Parameters::
       # PWN::Plugins::NessusCloud.get_folders(
-      #   nessus_obj: 'required - nessus_obj returned from #login method'
+      #   nessus_obj: 'required - nessus_obj returned from #login method',
+      #   name: 'optional - name of folder'
       # )
       public_class_method def self.get_folders(opts = {})
         nessus_obj = opts[:nessus_obj]
         name = opts[:name]
-        scan_templates_resp = nessus_cloud_rest_call(
+        folders_resp = nessus_cloud_rest_call(
           nessus_obj: nessus_obj,
           rest_call: 'folders'
         ).body
-        folders = JSON.parse(scan_templates_resp, symbolize_names: true)
+        folders = JSON.parse(folders_resp, symbolize_names: true)
         if name
           selected_folder = folders[:folders].select do |f|
@@ -181,19 +184,20 @@ module PWN
       # Supported Method Parameters::
       # PWN::Plugins::NessusCloud.get_scanners(
-      #   nessus_obj: 'required - nessus_obj returned from #login method'
+      #   nessus_obj: 'required - nessus_obj returned from #login method',
+      #   name: 'optional - name of scanner'
       # )
       public_class_method def self.get_scanners(opts = {})
         nessus_obj = opts[:nessus_obj]
         name = opts[:name]
-        scan_templates_resp = nessus_cloud_rest_call(
+        scanners_resp = nessus_cloud_rest_call(
           nessus_obj: nessus_obj,
           rest_call: 'scanners'
         ).body
-        scanners = JSON.parse(scan_templates_resp, symbolize_names: true)
+        scanners = JSON.parse(scanners_resp, symbolize_names: true)
         if name
           selected_scanner = scanners[:scanners].select do |s|
@@ -210,18 +214,165 @@ module PWN
       # Supported Method Parameters::
       # PWN::Plugins::NessusCloud.get_target_networks(
-      #   nessus_obj: 'required - nessus_obj returned from #login method'
+      #   nessus_obj: 'required - nessus_obj returned from #login method',
+      #   name: 'optional - name of target network'
       # )
       public_class_method def self.get_target_networks(opts = {})
         nessus_obj = opts[:nessus_obj]
+        name = opts[:name]
-        scan_templates_resp = nessus_cloud_rest_call(
+        target_networks_resp = nessus_cloud_rest_call(
           nessus_obj: nessus_obj,
           rest_call: 'networks'
         ).body
-        JSON.parse(scan_templates_resp, symbolize_names: true)
+        target_networks = JSON.parse(target_networks_resp, symbolize_names: true)
+        if name
+          selected_network = target_networks[:networks].select do |tn|
+            tn[:name] == name
+          end
+          target_networks = selected_network.first if selected_network.any?
+          target_networks ||= {}
+        end
+        target_networks
+      rescue StandardError, SystemExit, Interrupt => e
+        raise e
+      end
+      # Supported Method Parameters::
+      # PWN::Plugins::NessusCloud.get_timezones(
+      #   nessus_obj: 'required - nessus_obj returned from #login method',
+      #   name: 'optional - name of timezone'
+      # )
+      public_class_method def self.get_timezones(opts = {})
+        nessus_obj = opts[:nessus_obj]
+        name = opts[:name]
+        timezones_resp = nessus_cloud_rest_call(
+          nessus_obj: nessus_obj,
+          rest_call: 'scans/timezones'
+        ).body
+        timezones = JSON.parse(timezones_resp, symbolize_names: true)
+        if name
+          selected_timezone = timezones[:networks].select do |tz|
+            tz[:name] == name
+          end
+          timezones = selected_timezone.first if selected_timezone.any?
+          timezones ||= {}
+        end
+        timezones
+      rescue StandardError, SystemExit, Interrupt => e
+        raise e
+      end
+      # Supported Method Parameters::
+      # PWN::Plugins::NessusCloud.get_target_groups(
+      #   nessus_obj: 'required - nessus_obj returned from #login method',
+      #   name: 'optional - name of timezone'
+      # )
+      # )
+      public_class_method def self.get_target_groups(opts = {})
+        nessus_obj = opts[:nessus_obj]
+        name = opts[:name]
+        target_groups_resp = nessus_cloud_rest_call(
+          nessus_obj: nessus_obj,
+          rest_call: 'target-groups'
+        ).body
+        timezones = JSON.parse(target_groups_resp, symbolize_names: true)
+        if name
+          selected_timezone = timezones[:networks].select do |tz|
+            tz[:name] == name
+          end
+          timezones = selected_timezone.first if selected_timezone.any?
+          timezones ||= {}
+        end
+        timezones
+      rescue StandardError, SystemExit, Interrupt => e
+        raise e
+      end
+      # Supported Method Parameters::
+      # PWN::Plugins::NessusCloud.get_credential_types(
+      #   nessus_obj: 'required - nessus_obj returned from #login method',
+      #   category: 'optional - category of credential type (Defaults to "Host")',
+      #   name: 'optional - name of credential type (Defaults to "SSH")'
+      # )
+      # )
+      public_class_method def self.get_credential_types(opts = {})
+        nessus_obj = opts[:nessus_obj]
+        category = opts[:category].to_s.downcase
+        name = opts[:name].to_s.downcase
+        raise 'ERROR: name parameter requires category parameter.' if category.empty? && !name.empty?
+        credential_types_resp = nessus_cloud_rest_call(
+          nessus_obj: nessus_obj,
+          rest_call: 'credentials/types'
+        ).body
+        credential_types = JSON.parse(credential_types_resp, symbolize_names: true)
+        if category
+          selected_credential_category = credential_types[:credentials].select do |cc|
+            cc[:category].downcase == category
+          end
+          credential_types = selected_credential_category.first if selected_credential_category.any?
+          credential_types ||= {}
+          if name
+            selected_credential_type = credential_types[:types].select do |ct|
+              ct[:name].downcase == name
+            end
+            credential_types = selected_credential_type.first if selected_credential_type.any?
+            credential_types ||= {}
+          end
+        end
+        credential_types
+      rescue StandardError, SystemExit, Interrupt => e
+        raise e
+      end
+      # Supported Method Parameters::
+      # PWN::Plugins::NessusCloud.create_scan(
+      #   nessus_obj: 'required - nessus_obj returned from #login method',
+      #   scan_template_uuid: 'required - the UUID for the Tenable-provided scan template to use.  Run #get_canned_scan_templates for a list of UUIDs',
+      #   settings: 'required - settings object as defined by https://developer.tenable.com/reference/scans-create',
+      #   credentials: 'required - credentials object as defined by https://developer.tenable.com/reference/scans-create',
+      #   plugins: 'optional - plugins object as defined by https://developer.tenable.com/reference/scans-create (Defaults to {})'
+      # )
+      public_class_method def self.create_scan(opts = {})
+        nessus_obj = opts[:nessus_obj]
+        http_body = {}
+        http_body[:uuid] = opts[:scan_template_uuid]
+        http_body[:settings] = opts[:settings]
+        http_body[:credentials] = opts[:credentials]
+        http_body[:plugins] = opts[:plugins]
+        create_scan_resp = nessus_cloud_rest_call(
+          http_method: :post,
+          nessus_obj: nessus_obj,
+          rest_call: 'scans',
+          http_body: http_body
+        ).body
+        JSON.parse(create_scan_resp, symbolize_names: true)
       rescue StandardError, SystemExit, Interrupt => e
         raise e
       end
@@ -429,23 +580,33 @@ module PWN
           )
           #{self}.get_canned_scan_templates(
-            nessus_obj: 'required - nessus_obj returned from #login method'
+            nessus_obj: 'required - nessus_obj returned from #login method',
+            name: 'optional - name of scan template'
           )
           #{self}.get_policies(
-            nessus_obj: 'required - nessus_obj returned from #login method'
+            nessus_obj: 'required - nessus_obj returned from #login method',
+            name: 'optional - name of policy (i.e. user-defined template)'
           )
           #{self}.get_folders(
-            nessus_obj: 'required - nessus_obj returned from #login method'
+            nessus_obj: 'required - nessus_obj returned from #login method',
+            name: 'optional - name of folder'
           )
           #{self}.get_scanners(
-            nessus_obj: 'required - nessus_obj returned from #login method'
+            nessus_obj: 'required - nessus_obj returned from #login method',
+            name: 'optional - name of scanner'
           )
           #{self}.get_target_networks(
-            nessus_obj: 'required - nessus_obj returned from #login method'
+            nessus_obj: 'required - nessus_obj returned from #login method',
+            name: 'optional - name of target network'
+          )
+          #{self}.get_timezones(
+            nessus_obj: 'required - nessus_obj returned from #login method',
+            name: 'optional - name of timezone'
           )
           #{self}.get_scans(

data/lib/pwn/version.rb CHANGED Viewed

@@ -1,5 +1,5 @@
 # frozen_string_literal: true
 module PWN
-  VERSION = '0.4.430'
+  VERSION = '0.4.433'
 end

metadata CHANGED Viewed

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: pwn
 version: !ruby/object:Gem::Version
-  version: 0.4.430
+  version: 0.4.433
 platform: ruby
 authors:
 - 0day Inc.
 autorequire:
 bindir: bin
 cert_chain: []
-date: 2022-05-18 00:00:00.000000000 Z
+date: 2022-05-20 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: activesupport
@@ -114,28 +114,28 @@ dependencies:
     requirements:
     - - ">="
       - !ruby/object:Gem::Version
-        version: 2.3.13
+        version: 2.3.14
   type: :development
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - ">="
       - !ruby/object:Gem::Version
-        version: 2.3.13
+        version: 2.3.14
 - !ruby/object:Gem::Dependency
   name: bundler-audit
   requirement: !ruby/object:Gem::Requirement
     requirements:
     - - '='
       - !ruby/object:Gem::Version
-        version: 0.9.0.1
+        version: 0.9.1
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - '='
       - !ruby/object:Gem::Version
-        version: 0.9.0.1
+        version: 0.9.1
 - !ruby/object:Gem::Dependency
   name: bunny
   requirement: !ruby/object:Gem::Requirement
@@ -702,14 +702,14 @@ dependencies:
     requirements:
     - - '='
       - !ruby/object:Gem::Version
-        version: 2.11.0
+        version: 2.11.1
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - '='
       - !ruby/object:Gem::Version
-        version: 2.11.0
+        version: 2.11.1
 - !ruby/object:Gem::Dependency
   name: ruby-audio
   requirement: !ruby/object:Gem::Requirement
@@ -954,14 +954,14 @@ dependencies:
     requirements:
     - - '='
       - !ruby/object:Gem::Version
-        version: 2.6.2
+        version: 2.6.3
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - '='
       - !ruby/object:Gem::Version
-        version: 2.6.2
+        version: 2.6.3
 - !ruby/object:Gem::Dependency
   name: yard
   requirement: !ruby/object:Gem::Requirement
@@ -1968,7 +1968,7 @@ required_rubygems_version: !ruby/object:Gem::Requirement
     - !ruby/object:Gem::Version
       version: '0'
 requirements: []
-rubygems_version: 3.3.13
+rubygems_version: 3.3.14
 signing_key:
 specification_version: 4
 summary: Automated Security Testing for CI/CD Pipelines & Beyond