pwn 0.4.434 → 0.4.437

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 7c57efc5654de9b5ffcab0dcd7221626c765fd018c92a602762e5a60f2e66b7c
-  data.tar.gz: ec004b5c260189b9040d1ac52361e544f70ab59fc337f0cb26b6c07ba703fbb1
+  metadata.gz: f220a459e04c5fcc8ac36203f16e53b09ee7d1449e26fa7875b9f7556b1a7ced
+  data.tar.gz: 1f1cc564d106d5938daaa78e3bd24b539a1d1d72c2cb7b34a285876db1239ccd
 SHA512:
-  metadata.gz: 8aceb5eb4c2a8cd6b63a2ef47767736aa662fec32967a667438dc88c8e56dae7c3c2e5ff3dd129c16dc889d67ad75d85067da05735e03d362c9048c0fdccc223
-  data.tar.gz: d2b86e170fd102fa82c5d0c10c8fbc94e0e8d79ac037ba7c1ecaac2ad6a9af1f813285c4cb970588c79378c7544889ff1d6876595bd0c4da1641bf249e832ef9
+  metadata.gz: 44fe1d205b902cda0678807efaf7af11bf79aef43a2c464fdcd2779ae091a2304aa4f77f32cf351f274fffce1243156e31539fea268903c97ca2c02774703f5a
+  data.tar.gz: 97889b333295b20f3d5210c81c624197567422ad787ba35a6536d2ca5136f564ba30516c28ed77d3e5caac33a22d5c596abdcc6670e2f8216347c8069f03f7b0

data/README.md

@@ -37,7 +37,7 @@ $ rvm use ruby-3.1.2@pwn
 $ rvm list gemsets
 $ gem install --verbose pwn
 $ pwn
-pwn[v0.4.434]:001 >>> PWN.help
+pwn[v0.4.437]:001 >>> PWN.help
 ```
 
 [![Installing the pwn Security Automation Framework](https://raw.githubusercontent.com/0dayInc/pwn/master/documentation/pwn_install.png)](https://youtu.be/G7iLUY4FzsI)
@@ -52,7 +52,7 @@ $ rvm use ruby-3.1.2@pwn
 $ gem uninstall --all --executables pwn
 $ gem install --verbose pwn
 $ pwn
-pwn[v0.4.434]:001 >>> PWN.help
+pwn[v0.4.437]:001 >>> PWN.help
 ```
 
 

data/bin/pwn_nessus_cloud_create_scan

@@ -70,6 +70,10 @@ OptionParser.new do |options|
   options.on('-zTIMEZONE', '--timezone=TIMEZONE', '<Optional - Timezone of the scheduled start time for the scan - (Defaults to "UTC")>') do |t|
     opts[:timezone] = t
   end
+
+  options.on('-gGROUPS', '--target-groups=GROUPS', '<Optional - Comma-delimited list of target group IDs to scan>') do |t|
+    opts[:timezone] = t
+  end
 end.parse!
 
 if opts.empty?
@@ -79,6 +83,7 @@ end
 
 begin
   # Get Options Passed to pwn_nessus_cloud_create_scan
+  # Required Arguments
   yaml_config = opts[:yaml_config]
 
   raise "YAML Config Not Found: #{yaml_config}" unless File.exist?(yaml_config)
@@ -92,6 +97,11 @@ begin
   secret_key = yaml[:secret_key]
 
   scan_name = opts[:scan_name]
+
+  text_targets = opts[:text_targets]
+  raise 'ERROR: --text-targets (i.e. List of targets to scan) is required.' unless text_targets
+
+  # Optional Arguments
   scan_desc = opts[:scan_desc]
 
   scan_template = opts[:scan_template]
@@ -130,15 +140,13 @@ begin
   timezone = opts[:timezone]
   timezone ||= 'UTC'
 
-  text_targets = opts[:text_targets]
-  raise 'ERROR: --text-targets (i.e. List of targets to scan) is required.' unless text_targets
-
   target_groups = opts[:target_groups]
 
   file_targets = opts[:file_targets]
 
   tag_targets = opts[:tag_targets]
-  tag_targets_arr = tag_targets.split(',')
+  tag_targets_arr = []
+  tag_targets_arr = tag_targets.split(',') if tag_targets
 
   agent_group_name = opts[:agent_group_name]
   agent_group_id_arr = []
@@ -199,7 +207,7 @@ begin
   # Part 2: Populate settings object from options passed to driver
   settings = {}
   settings[:name] = scan_name
-  settings[:description] = scan_desc
+  settings[:description] = scan_desc if scan_desc
 
   policy = PWN::Plugins::NessusCloud.get_policies(
     nessus_obj: nessus_obj,
@@ -239,27 +247,28 @@ begin
 
   settings[:text_targets] = text_targets
 
-  settings[:target_groups] = target_groups
+  # Example array on https://developer.tenable.com/reference/scans-create is really just a string.
+  settings[:target_groups] = "[#{target_groups}]" if target_groups
 
-  settings[:file_targets] = file_targets
+  settings[:file_targets] = file_targets if file_targets
 
-  settings[:tag_targets] = tag_targets_arr
+  settings[:tag_targets] = tag_targets_arr if tag_targets_arr
 
-  settings[:agent_group_id] = agent_group_id_arr
+  settings[:agent_group_id] = agent_group_id_arr if agent_group_id_arr.any?
 
-  settings[:agent_scan_launch_type] = agent_scan_launch_type
+  settings[:agent_scan_launch_type] = agent_scan_launch_type if agent_scan_launch_type
 
-  settings[:triggers] = triggers_arr
+  settings[:triggers] = triggers_arr if triggers_arr.any?
 
-  settings[:emails] = emails
+  settings[:emails] = emails if emails
 
-  settings[:acls] = acls
+  settings[:acls] = acls if acls
 
   # Part 3: Populate credentials object from YAML config (optional)
-  credentials = yaml[:credentials]
+  credentials = yaml[:credentials] if yaml[:credentials]
 
   # Part 4: Populate plugins object from YAML config (optional)
-  plugins = yaml[:plugins]
+  plugins = yaml[:plugins] if yaml[:plugins]
 
   create_scan_resp = PWN::Plugins::NessusCloud.create_scan(
     nessus_obj: nessus_obj,

data/lib/pwn/plugins/nessus_cloud.rb

@@ -358,12 +358,17 @@ module PWN
 
       public_class_method def self.create_scan(opts = {})
         nessus_obj = opts[:nessus_obj]
+        uuid = opts[:scan_template_uuid]
+        settings = opts[:settings]
+        credentials = opts[:credentials]
+        plugins = opts[:plugins]
 
-        http_body = {}
-        http_body[:uuid] = opts[:scan_template_uuid]
-        http_body[:settings] = opts[:settings]
-        http_body[:credentials] = opts[:credentials]
-        http_body[:plugins] = opts[:plugins]
+        http_body = {
+          uuid: uuid,
+          settings: settings,
+          credentials: credentials,
+          plugins: plugins
+        }.to_json
 
         create_scan_resp = nessus_cloud_rest_call(
           http_method: :post,

data/lib/pwn/version.rb

@@ -1,5 +1,5 @@
 # frozen_string_literal: true
 
 module PWN
-  VERSION = '0.4.434'
+  VERSION = '0.4.437'
 end

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: pwn
 version: !ruby/object:Gem::Version
-  version: 0.4.434
+  version: 0.4.437
 platform: ruby
 authors:
 - 0day Inc.
 autorequire: 
 bindir: bin
 cert_chain: []
-date: 2022-05-20 00:00:00.000000000 Z
+date: 2022-05-23 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: activesupport