pwn 0.4.492 → 0.4.495

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: c322dc457a88e28d2bd2b87830653da3e167a7c25c7cea9b5df5d8e8ae7a1ae3
-  data.tar.gz: 770907db6691c4f639a40d497e6084952c554e1289cad3ba02b2bd37d4136134
+  metadata.gz: 3cdb19972dd43562eb0cc0a406e0ec22566412638865a4ec79336735ec787e4f
+  data.tar.gz: a12737175fa39a18f21804d8e65cc268b2662e8dea51bd15ef19adbd23e11e82
 SHA512:
-  metadata.gz: abfc7d67a3cf2b18c25e771d648fb9c6f7c1ab6483a96958ff45b962b55612c7961f0ab094abbd7b272a2dcd1aa6b3a43dc00ff9ae6b1d33cff9ac3af53a6303
-  data.tar.gz: b73297289b1cfb8feb41381b66e93c9b22e3027b39cbb502ffc79f20d850fbebff4eb134fea232639e9b93f94cf571143a2fd7454d567ad77689aaeb017620a3
+  metadata.gz: 1d7e699569688e3a8150231ef6659cfe730329b7f304cb19d0428492218c271754958e08b28f8e7e3782c2caf7beea500284c2b325114f9f8597460692071899
+  data.tar.gz: 758b84b03098b93e97e5a2d8a105330e74892ed269b980e9fa40da37d5cee13e2131087dc9292ccc0f8758217bf7d60bc2db2553e5ac2663e0445f37a30f6658

data/README.md

@@ -37,7 +37,7 @@ $ rvm use ruby-3.1.2@pwn
 $ rvm list gemsets
 $ gem install --verbose pwn
 $ pwn
-pwn[v0.4.492]:001 >>> PWN.help
+pwn[v0.4.495]:001 >>> PWN.help
 ```
 
 [![Installing the pwn Security Automation Framework](https://raw.githubusercontent.com/0dayInc/pwn/master/documentation/pwn_install.png)](https://youtu.be/G7iLUY4FzsI)
@@ -52,7 +52,7 @@ $ rvm use ruby-3.1.2@pwn
 $ gem uninstall --all --executables pwn
 $ gem install --verbose pwn
 $ pwn
-pwn[v0.4.492]:001 >>> PWN.help
+pwn[v0.4.495]:001 >>> PWN.help
 ```
 
 

data/bin/pwn_nessus_cloud_scan_crud

@@ -47,8 +47,8 @@ OptionParser.new do |options|
     opts[:scanner_name] = s
   end
 
-  options.on('-D', '--disable-scan', '<Optional - If true, the schedule for the scan is disabled (Defaults to false)>') do |d|
-    opts[:disabled] = d
+  options.on('-E', '--enable-schedule', '<Optional - If true, the schedule for the scan is enabled (Defaults to false)>') do |e|
+    opts[:enable_schedule] = e
   end
 
   options.on('-NTARGET', '--target-network-name=TARGET', '<Optional - If --scanner other than AUTO-ROUTED, Otherwise Required - Network to Scan (Defaults to "Default")>') do |n|
@@ -63,11 +63,11 @@ OptionParser.new do |options|
     opts[:scan_time_window] = t
   end
 
-  options.on('-STIME', '--start-time=TIME', '<Optional - For One-Time Scans, the Starting Time and Date for the Scan (Defaults to Time.now.strftime("%Y%m%dT%H%M%S")>') do |t|
+  options.on('-STIME', '--start-time=TIME', '<Optional - For One-Time Scans, the Starting Time and Date for the Scan (e.g. "2777-07-07T00:00:00")>') do |t|
     opts[:starttime] = t
   end
 
-  options.on('-rRRULES', '--rrules=RRULES', '<Optional - For One-Time Scans, the Starting Time and Date for the Scan (Defaults to "FREQ=null;INTERVAL=0;BYDAY=null")>') do |r|
+  options.on('-rRRULES', '--rrules=RRULES', '<Optional - For One-Time Scans, the Starting Time and Date for the Scan (e.g. "FREQ=WEEKLY;INTERVAL=3;BYDAY=MO,WE,FR")>') do |r|
     opts[:rrules] = r
   end
 
@@ -79,12 +79,12 @@ OptionParser.new do |options|
     opts[:tag_category_name] = y
   end
 
-  options.on('-zTIMEZONE', '--timezone=TIMEZONE', '<Optional - Timezone of the scheduled start time for the scan (Defaults to "UTC")>') do |t|
+  options.on('-zTIMEZONE', '--timezone=TIMEZONE', '<Optional - Timezone of the scheduled start time for the scan (e.g. "US/Eastern")>') do |t|
     opts[:timezone] = t
   end
 
-  options.on('-gGROUPS', '--target-groups=GROUPS', '<Optional - Comma-delimited list of target group IDs to scan>') do |t|
-    opts[:timezone] = t
+  options.on('-gGROUPS', '--target-groups=GROUPS', '<Optional - Comma-delimited list of target group IDs to scan>') do |g|
+    opts[:target_groups] = g
   end
 end.parse!
 
@@ -131,11 +131,8 @@ begin
   target_network_name = opts[:target_network_name]
   target_network_name ||= 'Default'
 
-  disabled = true if opts[:disabled]
-  disabled ||= false
-
-  enabled = true
-  enabled = false if disabled
+  enable_schedule = true if opts[:enable_schedule]
+  enable_schedule ||= false
 
   launch = opts[:launch]
   launch ||= 'ON_DEMAND'
@@ -144,13 +141,13 @@ begin
   scan_time_window ||= 0
 
   starttime = opts[:starttime]
-  starttime ||= Time.now.strftime('%Y%m%dT%H%M%S')
+  # starttime ||= Time.now.strftime('%Y%m%dT%H%M%S')
 
   rrules = opts[:rrules]
-  rrules ||= 'FREQ=null;INTERVAL=0;BYDAY=null'
+  # rrules ||= 'FREQ=null;INTERVAL=0;BYDAY=null'
 
   timezone = opts[:timezone]
-  timezone ||= 'UTC'
+  # timezone ||= 'UTC'
 
   target_groups = opts[:target_groups]
 
@@ -248,7 +245,7 @@ begin
   )
   settings[:target_network_uuid] = target_network[:uuid]
 
-  settings[:enabled] = enabled
+  settings[:enabled] = enable_schedule
 
   settings[:launch] = launch
 
@@ -286,6 +283,12 @@ begin
       )
       tag_uuid = new_tag[:uuid]
       tag_uuids_arr.push(tag_uuid)
+
+      tag_assets = PWN::Plugins::NessusCloud.add_tag_to_assets(
+        nessus_obj: nessus_obj,
+        targets: text_targets,
+        tag_uuids: tag_uuids_arr
+      )
     end
 
     settings[:tag_targets] = tag_uuids_arr

data/lib/pwn/plugins/nessus_cloud.rb

@@ -347,6 +347,81 @@ module PWN
         raise e
       end
 
+      # Supported Method Parameters::
+      # PWN::Plugins::NessusCloud.get_assets(
+      #   nessus_obj: 'required - nessus_obj returned from #login method',
+      #   name: 'optional - name of asset'
+      # )
+      # )
+
+      public_class_method def self.get_assets(opts = {})
+        nessus_obj = opts[:nessus_obj]
+        name = opts[:name]
+
+        assets_resp = nessus_cloud_rest_call(
+          nessus_obj: nessus_obj,
+          rest_call: 'assets'
+        ).body
+
+        assets = JSON.parse(assets_resp, symbolize_names: true)
+
+        if name
+          selected_asset = assets[:assets].select do |asset|
+            asset[:fqdn] == name
+          end
+          assets = selected_asset.first
+          assets ||= {}
+        end
+
+        assets
+      rescue StandardError, SystemExit, Interrupt => e
+        raise e
+      end
+
+      # Supported Method Parameters::
+      # PWN::Plugins::NessusCloud.add_tag_to_assets(
+      #   nessus_obj: 'required - nessus_obj returned from #login method',
+      #   targets: 'required - comma-delimited list of targets to tag',
+      #   tag_uuids: 'required - array of tag UUIDS to tag against targets'
+      # )
+      # )
+
+      public_class_method def self.add_tag_to_assets(opts = {})
+        nessus_obj = opts[:nessus_obj]
+        targets = opts[:targets].to_s.split(',')
+        tag_uuids = opts[:tag_uuids]
+
+        all_assets = get_assets(nessus_obj: nessus_obj)
+
+        asset_uuids_arr = []
+        targets.each do |target|
+          selected_asset = all_assets[:assets].select do |asset|
+            asset[:fqdn] == target
+          end
+          this_asset = selected_asset.first
+          target_uuid = this_asset[:uuid]
+
+          asset_uuids_arr.push(target_uuid)
+        end
+
+        http_body = {
+          action: 'add',
+          assets: asset_uuids_arr,
+          tags: tag_uuids
+        }.to_json
+
+        tag_assets_resp = nessus_cloud_rest_call(
+          http_method: :post,
+          nessus_obj: nessus_obj,
+          rest_call: 'tags/assets/assignments',
+          http_body: http_body
+        ).body
+
+        JSON.parse(tag_assets_resp, symbolize_names: true)
+      rescue StandardError, SystemExit, Interrupt => e
+        raise e
+      end
+
       # Supported Method Parameters::
       # PWN::Plugins::NessusCloud.get_credential_types(
       #   nessus_obj: 'required - nessus_obj returned from #login method',

data/lib/pwn/version.rb

@@ -1,5 +1,5 @@
 # frozen_string_literal: true
 
 module PWN
-  VERSION = '0.4.492'
+  VERSION = '0.4.495'
 end

metadata

@@ -1,7 +1,7 @@
 --- !ruby/object:Gem::Specification
 name: pwn
 version: !ruby/object:Gem::Version
-  version: 0.4.492
+  version: 0.4.495
 platform: ruby
 authors:
 - 0day Inc.
@@ -1976,7 +1976,7 @@ required_rubygems_version: !ruby/object:Gem::Requirement
     - !ruby/object:Gem::Version
       version: '0'
 requirements: []
-rubygems_version: 3.3.15
+rubygems_version: 3.3.16
 signing_key: 
 specification_version: 4
 summary: Automated Security Testing for CI/CD Pipelines & Beyond