pwn 0.4.451 → 0.4.454

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 02f8e66dcae91cac37030a71ca31451c0f7c95b54f80fbdac9ed00e61fd459eb
-  data.tar.gz: bcea061287c2abaf5a9703a8d6c66daad7cd96e01333e1e54e4cf3425e5918c5
+  metadata.gz: 7706d2f67e06a72947df5fba37be484be147119aee1d537a5172b650619ee753
+  data.tar.gz: 1254894deed2a1e8c72dc0c90e9924abd5d56d22a84a2d8f7305d8c22b94a8ed
 SHA512:
-  metadata.gz: 4b6c769c439cd1f89a7311759c54fa663ec47e6e67b578c5a376e6ec89c09f723fd5b655596da4bb2ff78dc7af965ff07b874cd2c269a5a312568a938b557e4e
-  data.tar.gz: f7d916073ff34c9fe2ef2f25a326aa386ea84735dea35cf2682a97e68cd9375766508fa6f0f967b3968f2655f51106b82fd9a16c48a7e095dfe50abe4d962256
+  metadata.gz: 0b05ab90c4110617d5bf15bfa590e32af4fe19bf70e7791d8571c2907c45dbe53470ae1364a0568e04366bfcf7c7eda13f18fdf0f5a639e6502d482fd88a364e
+  data.tar.gz: 07bddeec0fd64dd636c738f644ea32f843bcf4237755a596fd9c4a80c1945cd6e8fe43e185e9716ba40d19e5731baf1ce427f93364c1d760d6e002b834908969

data/README.md

@@ -37,7 +37,7 @@ $ rvm use ruby-3.1.2@pwn
 $ rvm list gemsets
 $ gem install --verbose pwn
 $ pwn
-pwn[v0.4.451]:001 >>> PWN.help
+pwn[v0.4.454]:001 >>> PWN.help
 ```
 
 [![Installing the pwn Security Automation Framework](https://raw.githubusercontent.com/0dayInc/pwn/master/documentation/pwn_install.png)](https://youtu.be/G7iLUY4FzsI)
@@ -52,7 +52,7 @@ $ rvm use ruby-3.1.2@pwn
 $ gem uninstall --all --executables pwn
 $ gem install --verbose pwn
 $ pwn
-pwn[v0.4.451]:001 >>> PWN.help
+pwn[v0.4.454]:001 >>> PWN.help
 ```
 
 

data/bin/{pwn_nessus_cloud_create_scan → pwn_nessus_cloud_scan_crud}

@@ -32,7 +32,7 @@ OptionParser.new do |options|
   end
 
   options.on('-tVALUE', '--scan-template=VALUE', '<Optional - Canned Scan Template to Use for Scan Creation (Defaults to "Basic Network Scan">') do |t|
-    opts[:scan_template] = t
+    opts[:scan_template_name] = t
   end
 
   options.on('-pPOLICY', '--policy-name=POLICY', '<Optional - Policy to Use to Create the Scan>') do |p|
@@ -116,8 +116,8 @@ begin
   # Optional Arguments
   scan_desc = opts[:scan_desc]
 
-  scan_template = opts[:scan_template]
-  scan_template ||= 'Basic Network Scan'
+  scan_template_name = opts[:scan_template_name]
+  scan_template_name ||= 'Basic Network Scan'
 
   policy_name = opts[:policy_name]
   policy_name ||= ''
@@ -204,17 +204,18 @@ begin
     secret_key: secret_key
   )
 
-  # Requirements to create a scan:
+  # Requirements to update / create a scan:
   # Part 1: Populate uuid
   # Part 2: Populate settings object from options passed to driver
   # Part 3: Populate credentials object from YAML config (optional)
   # Part 4: Populate plugins object from YAML config (optional)
+  # Part 5: Update Scan if it exists, or create it.
 
   # Part 1: Populate uuid
   # TODO: add --list-canned-scan-templates option
   scan_template = PWN::Plugins::NessusCloud.get_canned_scan_templates(
     nessus_obj: nessus_obj,
-    name: scan_template
+    name: scan_template_name
   )
   scan_template_uuid = scan_template[:uuid]
   puts scan_template_uuid
@@ -307,15 +308,34 @@ begin
   # Part 4: Populate plugins object from YAML config (optional)
   plugins = yaml[:plugins] if yaml[:plugins]
 
-  create_scan_resp = PWN::Plugins::NessusCloud.create_scan(
+  # Part 5: Update Scan if it exists, or create it.
+  scan = PWN::Plugins::NessusCloud.get_scans(
     nessus_obj: nessus_obj,
-    scan_template_uuid: scan_template_uuid,
-    settings: settings,
-    credentials: credentials,
-    plugins: plugins
+    name: scan_name
   )
-
-  puts create_scan_resp.inspect
+  if scan.any?
+    scan_id = scan[:id]
+    update_scan_resp = PWN::Plugins::NessusCloud.update_scan(
+      nessus_obj: nessus_obj,
+      scan_id: scan_id,
+      scan_template_uuid: scan_template_uuid,
+      settings: settings,
+      credentials: credentials,
+      plugins: plugins
+    )
+
+    puts update_scan_resp.inspect
+  else
+    create_scan_resp = PWN::Plugins::NessusCloud.create_scan(
+      nessus_obj: nessus_obj,
+      scan_template_uuid: scan_template_uuid,
+      settings: settings,
+      credentials: credentials,
+      plugins: plugins
+    )
+
+    puts create_scan_resp.inspect
+  end
 rescue Interrupt
   puts 'CTRL+C detected...goodbye.'
 rescue StandardError => e

data/lib/pwn/plugins/nessus_cloud.rb

@@ -46,6 +46,19 @@ module PWN
             verify_ssl: false
           )
 
+        when :put
+          response = rest_client.execute(
+            method: :put,
+            url: "#{base_nessus_cloud_api_uri}/#{rest_call}",
+            headers: {
+              x_apikeys: "accessKey=#{access_key}; secretKey=#{secret_key}",
+              accept: 'application/json',
+              content_type: 'application/json; charset=UTF-8'
+            },
+            payload: http_body,
+            verify_ssl: false
+          )
+
         when :post
           response = rest_client.execute(
             method: :post,
@@ -442,10 +455,47 @@ module PWN
         raise e
       end
 
+      # Supported Method Parameters::
+      # PWN::Plugins::NessusCloud.update_scan(
+      #   nessus_obj: 'required - nessus_obj returned from #login method',
+      #   scan_id: 'required - the scan id to update.  Run #get_scans for a list',
+      #   scan_template_uuid: 'required - the UUID for the Tenable-provided scan template to use.  Run #get_canned_scan_templates for a list of UUIDs',
+      #   settings: 'required - settings object as defined by https://developer.tenable.com/reference/scans-create',
+      #   credentials: 'required - credentials object as defined by https://developer.tenable.com/reference/scans-create',
+      #   plugins: 'optional - plugins object as defined by https://developer.tenable.com/reference/scans-create (Defaults to {})'
+      # )
+
+      public_class_method def self.update_scan(opts = {})
+        nessus_obj = opts[:nessus_obj]
+        scan_id = opts[:scan_id]
+        scan_template_uuid = opts[:scan_template_uuid]
+        settings = opts[:settings]
+        credentials = opts[:credentials]
+        plugins = opts[:plugins]
+
+        http_body = {
+          uuid: scan_template_uuid,
+          settings: settings,
+          credentials: credentials,
+          plugins: plugins
+        }.to_json
+
+        update_scan_resp = nessus_cloud_rest_call(
+          http_method: :put,
+          nessus_obj: nessus_obj,
+          rest_call: "scans/#{scan_id}",
+          http_body: http_body
+        ).body
+
+        JSON.parse(update_scan_resp, symbolize_names: true)
+      rescue StandardError, SystemExit, Interrupt => e
+        raise e
+      end
+
       # Supported Method Parameters::
       # PWN::Plugins::NessusCloud.launch_scan(
       #   nessus_obj: 'required - nessus_obj returned from #login method',
-      #   scan_id: 'required - scan id to launch'
+      #   scan_id: 'required - scan uuid to launch'
       # )
 
       public_class_method def self.launch_scan(opts = {})
@@ -466,7 +516,7 @@ module PWN
       # Supported Method Parameters::
       # PWN::Plugins::NessusCloud.get_scan_status(
       #   nessus_obj: 'required - nessus_obj returned from #login method',
-      #   scan_id: 'required - scan id to retrieve status'
+      #   scan_id: 'required - scan uuid to retrieve status'
       # )
 
       public_class_method def self.get_scan_status(opts = {})
@@ -518,7 +568,7 @@ module PWN
       # Supported Method Parameters::
       # PWN::Plugins::NessusCloud.get_scan_history(
       #   nessus_obj: 'required - nessus_obj returned from #login method'
-      #   scan_id: 'required - scan id to launch'
+      #   scan_id: 'required - scan uuid to launch'
       # )
 
       public_class_method def self.get_scan_history(opts = {})
@@ -538,7 +588,7 @@ module PWN
       # Supported Method Parameters::
       # PWN::Plugins::NessusCloud.export_scan_results(
       #   nessus_obj: 'required - nessus_obj returned from #login method',
-      #   scan_id: 'required - scan id to export',
+      #   scan_id: 'required - scan uuid to export',
       #   path_to_export: 'required - filename to export results',
       #   history_id: 'optional - defaults to last scan',
       #   format: 'optional - :csv|:db|:html|:nessus|:pdf (defaults to :csv')
@@ -660,14 +710,31 @@ module PWN
             nessus_obj: 'required - nessus_obj returned from #login method'
           )
 
+          #{self}.create_scan(
+            nessus_obj: 'required - nessus_obj returned from #login method',
+            scan_template_uuid: 'required - the UUID for the Tenable-provided scan template to use.  Run #get_canned_scan_templates for a list of UUIDs',
+            settings: 'required - settings object as defined by https://developer.tenable.com/reference/scans-create',
+            credentials: 'required - credentials object as defined by https://developer.tenable.com/reference/scans-create',
+            plugins: 'optional - plugins object as defined by https://developer.tenable.com/reference/scans-create (Defaults to {})'
+          )
+
+          #{self}.update_scan(
+            nessus_obj: 'required - nessus_obj returned from #login method',
+            scan_id: 'required - the scan id to update.  Run #get_scans for a list',
+            scan_template_uuid: 'required - the UUID for the Tenable-provided scan template to use.  Run #get_canned_scan_templates for a list of UUIDs',
+            settings: 'required - settings object as defined by https://developer.tenable.com/reference/scans-create',
+            credentials: 'required - credentials object as defined by https://developer.tenable.com/reference/scans-create',
+            plugins: 'optional - plugins object as defined by https://developer.tenable.com/reference/scans-create (Defaults to {})'
+          )
+
           #{self}.launch_scan(
             nessus_obj: 'required - nessus_obj returned from #login method',
-            scan_id: 'required - scan id to launch'
+            scan_id: 'required - scan uuid to launch'
           )
 
           #{self}.get_scan_status(
             nessus_obj: 'required - nessus_obj returned from #login method',
-            scan_id: 'required - scan id to retrieve status'
+            scan_id: 'required - scan uuid to retrieve status'
           )
 
           #{self}.create_tag(
@@ -679,12 +746,12 @@ module PWN
 
           #{self}.get_scan_history(
             nessus_obj: 'required - nessus_obj returned from #login method'
-            scan_id: 'required - scan id to launch'
+            scan_id: 'required - scan uuid to launch'
           )
 
           #{self}.export_scan_results(
             nessus_obj: 'required - nessus_obj returned from #login method',
-            scan_id: 'required - scan id to export',
+            scan_id: 'required - scan uuid to export',
             path_to_export: 'required - filename to export results',
             history_id: 'optional - defaults to last scan',
             format: 'optional - :csv|:db|:html|:nessus|:pdf (defaults to :csv')

data/lib/pwn/version.rb

@@ -1,5 +1,5 @@
 # frozen_string_literal: true
 
 module PWN
-  VERSION = '0.4.451'
+  VERSION = '0.4.454'
 end

metadata

@@ -1,7 +1,7 @@
 --- !ruby/object:Gem::Specification
 name: pwn
 version: !ruby/object:Gem::Version
-  version: 0.4.451
+  version: 0.4.454
 platform: ruby
 authors:
 - 0day Inc.
@@ -1007,7 +1007,7 @@ executables:
 - pwn_jenkins_useradd
 - pwn_mail_agent
 - pwn_msf_postgres_login
-- pwn_nessus_cloud_create_scan
+- pwn_nessus_cloud_scan_crud
 - pwn_nessus_cloud_vulnscan
 - pwn_nexpose
 - pwn_openvas_vulnscan
@@ -1066,7 +1066,7 @@ files:
 - bin/pwn_jenkins_useradd
 - bin/pwn_mail_agent
 - bin/pwn_msf_postgres_login
-- bin/pwn_nessus_cloud_create_scan
+- bin/pwn_nessus_cloud_scan_crud
 - bin/pwn_nessus_cloud_vulnscan
 - bin/pwn_nexpose
 - bin/pwn_openvas_vulnscan