risu 1.4.9 → 1.5.0

data/lib/risu/renderers.rb

@@ -0,0 +1,6 @@
+module Risu
+	module Renderers
+	end
+end
+
+require 'risu/renderers/nilrenderer'

data/lib/risu/renderers/nilrenderer.rb

@@ -0,0 +1,25 @@
+module Risu
+	module Renderers
+		class NilRenderer
+			
+			#
+			#			
+			def text text, *args
+				true
+			end
+			
+			#
+			#
+			def font_size x
+				true
+			end
+
+			#
+			#
+			def start_new_page
+				true
+			end
+			
+		end
+	end
+end

data/lib/risu/templates/assets.rb

@@ -1,6 +1,6 @@
 module Risu
-	module Modules
-		class Assests < Risu::Base::TemplateBase
+	module Templates
+		class Assets < Risu::Base::TemplateBase
 			
 			#
 			#
@@ -14,9 +14,12 @@ module Risu
 				}
 			end
 			
+			#undef :render if method_defined? :render
 			#
 			#
 			def render(output)
+				output.font_size 10
+				
 				output.text Report.classification.upcase, :align => :center
 				output.text "\n"
 

data/lib/risu/templates/cover_sheet.rb

@@ -1,5 +1,5 @@
 module Risu
-	module Modules
+	module Templates
 		class CoverSheet < Risu::Base::TemplateBase
 			
 			#

data/lib/risu/templates/exec_summary.rb

@@ -1,5 +1,5 @@
 module Risu
-	module Modules
+	module Templates
 		class ExecSummary < Risu::Base::TemplateBase
 			
 			#
@@ -40,13 +40,27 @@ module Risu
 
 				output.text "A total of #{Host.count} hosts were found and scanned for vulnerabities.\n\n"
 
-				output.text "There were #{Item.risks.count} vulnerabilities found during this scan. Of these, #{Item.high_risks.count} were high vulnerabilities, #{Item.medium_risks.count} were medium vulnerabilities, #{Item.low_risks.count} were low vulnerabilities and #{Item.info_risks.count} were information findings.\n\n"
+				output.text "There were #{Item.risks.count} vulnerabilities found during this scan. Of these, #{Item.critical_risks.count} were critical vulnerabilities,#{Item.high_risks.count} were high vulnerabilities, #{Item.medium_risks.count} were medium vulnerabilities, #{Item.low_risks.count} were low vulnerabilities and #{Item.info_risks.count} were information findings.\n\n"
 
 				output.text "Scan Statistics", :style => :bold
 				output.text "\n"
 
-				output.table([["Number of hosts","Number of risks","High Risks", "Medium Risks", "Low Risks", "Info Risks"], 
-				[Host.count, Item.risks.count, Item.high_risks.count, Item.medium_risks.count, Item.low_risks.count, Item.info_risks.count]], 
+				output.table([[
+					"Number of hosts", 
+					"Number of risks",
+					"Critical Risks",
+					"High Risks",
+					"Medium Risks",
+					"Low Risks",
+					"Info Risks"], 
+				[
+					Host.count, 
+					Item.risks.count,
+					Item.critical_risks.count,
+					Item.high_risks.count, 
+					Item.medium_risks.count, 
+					Item.low_risks.count, 
+					Item.info_risks.count]], 
 				:cell_style => { :padding =>12 }, :width => output.bounds.width)
 				output.text "\n\n\n"
 
@@ -72,6 +86,7 @@ module Risu
 				cury = output.y
 				#move_down 550
 				output.image Host.windows_os_graph, :width => 250, :at => [output.bounds.left, cury]
+				output.image Item.stigs_severity_graph, :width => 250, :at => [output.bounds.right - 250, cury]
 			end
 		end
 	end

data/lib/risu/templates/executive_summary.rb

@@ -1,5 +1,5 @@
 module Risu
-	module Modules
+	module Templates
 		class ExecutiveSummaryDetailed < Risu::Base::TemplateBase
 
 			#
@@ -9,7 +9,7 @@ module Risu
 				{
 					:name => "exec_summary_detailed",
 					:author => "Ed Davison <EDavison@getmns.com>",
-					:version => "0.0.2",
+					:version => "0.0.3",
 					:description => "Generates a detailed executive summary report"
 				}
 			end
@@ -61,8 +61,22 @@ module Risu
 				output.text "Scan Statistics", :style => :bold
 				output.text "\n"
 
-				headers = ["Number of hosts","Number of risks","High Risks", "Medium Risks", "Low Risks", "Info Risks"]
-				data = [[Host.count, Item.risks.count, Item.high_risks.count, Item.medium_risks.count, Item.low_risks.count, Item.info_risks.count]]
+				headers = [
+					"Number of hosts",
+					"Number of risks",
+					"Critical Risks",
+					"High Risks", 
+					"Medium Risks", 
+					"Low Risks", 
+					"Info Risks"]
+				data = [[
+					Host.count, 
+					Item.risks.count,
+					Item.critical_risks.count, 
+					Item.high_risks.count, 
+					Item.medium_risks.count, 
+					Item.low_risks.count, 
+					Item.info_risks.count]]
 
 				output.table([headers] + data, :header => true, :row_colors => ['ffffff', 'f0f0f0']) do
 					row(0).style(:font_style => :bold, :background_color => 'cccccc')
@@ -77,12 +91,13 @@ module Risu
 				output.text "There were #{Item.risks.count} risks found during this scan. Of these, #{Item.high_risks.count} were High risk vulnerabilities.	High risk vulnerabilities require immediate attention to handle as they are relatively easy for attackers to exploit frequently resulting in full access to affected systems.	 There were #{Item.medium_risks.count} findings which were Medium risk.	 High risk vulnerabilities are harder to exploit and may not result in full control of the affected system and should be addressed rapidly and with priority.	 There were #{Item.low_risks.count} findings which were Low risk vulnerabilities.	 These risks usually let attackers gain information about your network making it easier for launching more advanced attacks and should be handled in a timely manner.	 And #{Item.info_risks.count} findings which were information findings.\n"
 				output.text "\n"
 
+				crit_host_count = Item.where(:severity => 4).group(:host_id).all.count
 				high_host_count = Item.where(:severity => 3).group(:host_id).all.count
 				medium_host_count = Item.where(:severity => 2).group(:host_id).all.count
 				low_host_count = Item.where(:severity => 1).group(:host_id).all.count
 				info_host_count = Item.where(:severity => 0).group(:host_id).all.count
 
-				output.text "There were #{high_host_count} hosts with High risk vulnerabilities, #{medium_host_count} hosts with Medium risk vulnerabilities, #{low_host_count} hosts with Low risk vulnerabilities and #{info_host_count} hosts with information findings."
+				output.text "There were #{crit_host_count} hosts with Critical risk vulnerabilities, #{high_host_count} hosts with High risk vulnerabilities, #{medium_host_count} hosts with Medium risk vulnerabilities, #{low_host_count} hosts with Low risk vulnerabilities and #{info_host_count} hosts with information findings."
 				output.text "\n"
 
 				output.text "The following output.table shows the top 5 vulnerabilities that were found.	These are the most important vulnerabilities to address as they represent a sizeable footprint for an attacker to exploit in an attempt to compromise.\n"

data/lib/risu/templates/finding_statistics.rb

@@ -1,5 +1,5 @@
 module Risu
-	module Modules
+	module Templates
 		class FindingStatistics < Risu::Base::TemplateBase
 			
 			#

data/lib/risu/templates/findings_host.rb

@@ -1,5 +1,5 @@
 module Risu
-	module Modules
+	module Templates
 		class FindingsHost < Risu::Base::TemplateBase
 			
 			#
@@ -9,7 +9,7 @@ module Risu
 				{ 
 					:name => "findings_host", 
 					:author => "hammackj", 
-					:version => "0.0.1", 
+					:version => "0.0.2", 
 					:description => "Generates a findings report by host"
 				}
 			end
@@ -17,12 +17,14 @@ module Risu
 			#
 			#
 			def render(output)
+				output.font_size 10
+				
 				output.text Report.classification.upcase, :align => :center
 				output.text "\n"
 
 				output.font_size(22) { output.text Report.title, :align => :center }
 				output.font_size(18) { 
-					output.text "Findings Summary Report", :align => :center
+					output.text "Findings Summary by Host Report", :align => :center
 					output.text "\n"
 					output.text "This report was prepared by\n#{Report.author}", :align => :center
 				}
@@ -31,13 +33,30 @@ module Risu
 
 				Host.sorted.each do |host|
 					if host.items.high_risks_unique_sorted.all.size > 0 or host.items.medium_risks_unique_sorted.all.size > 0
-						output.font_size(20) { 
-							output.text "#{host.ip} - #{host.fqdn}", :style => :bold 
-							}
+						output.font_size(16) do
+							
+							host_string = "#{host.ip}"
+							host_string << " (#{host.fqdn})" if host.fqdn != nil
+							
+							output.text "#{host_string}", :style => :bold 
+						end
+					end
+
+					if host.items.critical_risks_unique_sorted.all.size > 0
+						output.font_size(12) do 
+							output.fill_color "551A8B"
+							output.text "Critical Findings", :style => :bold 
+							output.fill_color "000000"
+						end
+
+						host.items.high_risks_unique_sorted.each do |item|
+							name = Plugin.find_by_id(item.plugin_id).plugin_name
+							output.text "#{name}"
+						end
 					end
 
 					if host.items.high_risks_unique_sorted.all.size > 0
-						output.font_size(18) { 
+						output.font_size(12) { 
 							output.fill_color "FF0000"
 							output.text "High Findings", :style => :bold 
 							output.fill_color "000000"
@@ -50,7 +69,7 @@ module Risu
 					end
 
 					if host.items.medium_risks_unique_sorted.all.size > 0
-						output.font_size(18) { 
+						output.font_size(12) { 
 							output.fill_color "FF8040"
 							output.text "Medium Findings", :style => :bold 
 							output.fill_color "000000"

data/lib/risu/templates/findings_summary.rb

@@ -1,5 +1,5 @@
 module Risu
-	module Modules
+	module Templates
 		class FindingsSummary < Risu::Base::TemplateBase
 			
 			#
@@ -32,6 +32,19 @@ module Risu
 
 				output.text "\n\n\n"
 
+				output.font_size(20) do
+					output.fill_color "551A8B"
+					output.text "Critical Findings", :style => :bold 
+					output.fill_color "000000"
+				end
+
+				Item.critical_risks_unique_sorted.each do |item|
+					name = Plugin.find_by_id(item.plugin_id).plugin_name
+					count = Item.where(:plugin_id => item.plugin_id).count
+
+					output.text "#{count} - #{name}"
+				end
+
 				output.font_size(20) do
 					output.fill_color "FF0000"
 					output.text "High Findings", :style => :bold 

data/lib/risu/templates/findings_summary_with_pluginid.rb

@@ -1,5 +1,5 @@
 module Risu
-	module Modules
+	module Templates
 		class FindingsSummaryWithPluginID < Risu::Base::TemplateBase
 			
 			#

data/lib/risu/templates/graphs.rb

@@ -1,5 +1,5 @@
 module Risu
-	module Modules
+	module Templates
 		class Graphs < Risu::Base::TemplateBase
 
 			#
@@ -54,6 +54,10 @@ module Risu
 				output.start_new_page
 
 				output.image Host.windows_os_graph, :width => 500, :height => 375, :position => :center
+
+				output.start_new_page
+
+				output.image Item.stigs_severity_graph, :width => 500, :height => 375, :position => :center
 			end
 		end
 	end

data/lib/risu/templates/host_summary.rb

@@ -1,5 +1,5 @@
 module Risu
-	module Modules
+	module Templates
 		class HostSummary < Risu::Base::TemplateBase
 			
 			#
@@ -9,7 +9,7 @@ module Risu
 				{ 
 					:name => "host_summary", 
 					:author => "hammackj", 
-					:version => "0.0.1", 
+					:version => "0.0.2", 
 					:description => "Generates a Host Summary Report"
 				}
 			end
@@ -31,13 +31,14 @@ module Risu
 
 				results = Array.new
 
-				headers = ["Hostname", "Total", "High", "Medium", "Low", "Info"]
-				header_widths = {0 => 137, 1 => 75, 2 => 75, 3 => 75, 4 => 75, 5 => 75}
+				headers = ["Hostname", "Total", "Critical", "High", "Medium", "Low", "Info"]
+				header_widths = {0 => 140, 1 => 62, 2 => 62, 3 => 62, 4 => 62, 5 => 62, 6 => 62}
 
 				Host.sorted.each do |host|
 					row = Array.new
 
 					total  = Item.risks.where(:host_id => host.id).count
+					crit = Item.critical_risks.where(:host_id => host.id).count
 					high = Item.high_risks.where(:host_id => host.id).count
 					medium = Item.medium_risks.where(:host_id => host.id).count
 					low = Item.low_risks.where(:host_id => host.id).count
@@ -45,6 +46,7 @@ module Risu
 
 					row.push(host.name)
 					row.push(total)
+					row.push(crit)
 					row.push(high)
 					row.push(medium)
 					row.push(low)
@@ -57,6 +59,8 @@ module Risu
 					row(0).style(:font_style => :bold, :background_color => 'D0D0D0')
 					cells.borders = [:top, :bottom, :left, :right]
 				end
+				
+				output.number_pages "<page> of <total>", :at => [output.bounds.right - 75, 0], :width => 150, :page_filter => :all
 			end
 		end
 	end

data/lib/risu/templates/ms_patch_summary.rb

@@ -1,5 +1,5 @@
 module Risu
-	module Modules
+	module Templates
 		class MSPatchSummary < Risu::Base::TemplateBase
 			
 			#

data/lib/risu/templates/ms_update_summary.rb

@@ -1,5 +1,5 @@
 module Risu
-	module Modules
+	module Templates
 		class MSUpdateSummary < Risu::Base::TemplateBase
 			
 			#

data/lib/risu/templates/notable.rb

@@ -1,5 +1,5 @@
 module Risu
-	module Modules
+	module Templates
 		class Top10 < Risu::Base::TemplateBase
 			
 			#
@@ -42,4 +42,3 @@ module Risu
 		end
 	end
 end
-

data/lib/risu/templates/notable_detailed.rb

@@ -1,6 +1,6 @@
 module Risu
-	module Modules
-		class Top10Detailed < Risu::Base::TemplateBase
+	module Templates
+		class NotableDetailed < Risu::Base::TemplateBase
 			
 			#
 			#
@@ -9,7 +9,7 @@ module Risu
 				{ 
 					:name => "notable_detailed", 
 					:author => "hammackj", 
-					:version => "0.0.3", 
+					:version => "0.0.4", 
 					:description => "Notable Vulnerabilities Detailed"
 				}
 			end
@@ -20,15 +20,15 @@ module Risu
 				output.text Report.classification.upcase, :align => :center
 				output.text "\n"
 
-				output.font_size(22) { 
+				output.font_size(22) do
 					output.text Report.title, :align => :center 
-				}
+				end
 				
-				output.font_size(18) {
+				output.font_size(18) do
 					output.text "Notable Vulnerabilities", :align => :center
 					output.text "\n"
 					output.text "This report was prepared by\n#{Report.author}", :align => :center
-				}
+				end
 
 				output.text "\n\n\n"
 				
@@ -41,7 +41,7 @@ module Risu
 				data = Item.top_10_sorted_raw
 				
 				unique_risks = Array.new
-				unique_risks << Hash[:title => "High Findings", :color => "FF0000", :values => Item.top_10_sorted_raw[0..9]]
+				unique_risks << Hash[:title => "Notable Findings", :color => "9B30FF", :values => Item.top_10_sorted_raw[0..9]]
 				counter = 1
 				
 				unique_risks.each do |h|

data/lib/risu/templates/pci_compliance.rb

@@ -1,5 +1,5 @@
 module Risu
-	module Modules
+	module Templates
 		class PCICompliance < Risu::Base::TemplateBase
 			
 			#

data/lib/risu/templates/stig_findings_summary.rb

@@ -0,0 +1,135 @@
+module Risu
+	module Templates
+		class StigFindingsSummary < Risu::Base::TemplateBase
+			
+			# Initializes the template loading metadata
+			#
+			def initialize ()
+				@template_info = 
+				{ 
+					:name => "stig_findings_summary", 
+					:author => "hammackj", 
+					:version => "0.0.1", 
+					:description => "DISA Stig findings summary report"
+				}
+				
+				@output = nil
+			end
+
+			#
+			#
+			def header
+				@output.text Report.classification.upcase, :align => :center
+				@output.text "\n"
+
+				@output.font_size(22) do 
+					@output.text Report.title, :align => :center
+				end
+				
+				@output.font_size(18) do
+					@output.text "Stig Findings Summary", :align => :center
+					@output.text "\n"
+					@output.text "This report was prepared by\n#{Report.author}", :align => :center
+				end
+
+				@output.text "\n\n\n"
+			end
+			
+			# Creates a list of hosts from an list of Items 
+			#
+			# @param items
+			def host_list_from_plugin_id(plugin_id)
+ 				Host.where('id IN (:hosts)', :hosts => Item.where(:plugin_id => plugin_id).select(:host_id).select('host_id AS id'))
+			end
+			
+			def host_list_text(hosts)
+				host_string = ""
+				hosts.all.each do |host|
+					host_string << "#{host.ip}"
+					host_string << " (#{host.netbios})" if host.netbios
+					host_string << ", "
+				end
+
+				return host_string.chomp!(", ")
+			end
+			
+			# Generates stig finding text for 
+			#
+			# @param categeory I/II/III for each stig severity
+			def stig_findings_text(categeory="I")
+				if categeory != "I" || categeory != "II" || categeory != "III"
+					return
+				end
+				
+				stigs = Item.stig_findings(categeory).group(:plugin_id)
+				
+				stigs.each do |stig|	
+					@output.text "#{stig.plugin_name}", :size => 16
+					hosts = host_list_from_plugin_id(stig.plugin_id)
+					hosts_string = host_list_text(hosts)
+					
+					if hosts.count > 1
+						@output.text "<b>Hosts</b>: #{hosts_string}", :inline_format => true
+					else
+						@output.text "<b>Host</b>: #{hosts_string}", :inline_format => true
+					end
+					
+					@output.text "<b>Risk</b>: #{stig.plugin.risk_factor}", :inline_format => true
+					@output.text "<b>CVE Reference</b>: #{ref_string(stig.plugin.references.cve)}", :inline_format => true
+					@output.text "<b>IAVA Reference</b>: #{ref_string(stig.plugin.references.iava)}", :inline_format => true
+					
+					if stig.plugin.description != nil
+						@output.text "\nDescription:", :style => :bold
+						@output.text stig.plugin.description
+					end
+					
+					@output.text "\n"
+				end
+			end
+			
+			#
+			#
+			def ref_string ref
+				return "" if ref == nil
+								
+				ref_string = ""
+				ref.each do |r|
+					ref_string << r.value + ", "
+				end
+				
+				ref_string.chomp!(", ")
+			end
+			
+			# Called during the rendering process
+			#
+			def render(output)
+				@output = output
+
+				@output.font_size 10
+
+				header
+				
+				if Item.stig_findings("I").count > 0
+					@output.text "<color rgb='551A8B'>Category I Findings</color>", :size => 18, :style => :bold, :inline_format => true
+					stig_findings_text("I")
+				end 
+				
+				if Item.stig_findings("II").count > 0
+					@output.start_new_page
+					@output.text "<color rgb='FF0000'>Category II Findings</color>", :size => 18, :style => :bold, :inline_format => true
+					stig_findings_text("II")
+				end 
+				
+				if Item.stig_findings("III").count > 0
+					@output.start_new_page
+					@output.text "<color rgb='FF8040'>Category III Findings</color>", :size => 18, :style => :bold, :inline_format => true
+					stig_findings_text("III")
+				end
+				
+				@output.number_pages "<page> of <total>", :at => [@output.bounds.right - 75, 0], :width => 150, :page_filter => :all
+				
+			end
+		end
+	end
+end
+