risu 1.6.3 → 1.7.0

data/lib/risu/templates/host_findings_csv.rb

@@ -0,0 +1,67 @@
+# Copyright (c) 2010-2014 Arxopia LLC.
+# All rights reserved.
+#
+# Redistribution and use in source and binary forms, with or without
+# modification, are permitted provided that the following conditions are met:
+#
+#     * Redistributions of source code must retain the above copyright
+#       notice, this list of conditions and the following disclaimer.
+#     * Redistributions in binary form must reproduce the above copyright
+#       notice, this list of conditions and the following disclaimer in the
+#       documentation and/or other materials provided with the distribution.
+#     * Neither the name of the Arxopia LLC nor the names of its contributors
+#     	may be used to endorse or promote products derived from this software
+#     	without specific prior written permission.
+#
+# THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS "AS IS" AND
+# ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED
+# WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE
+# DISCLAIMED. IN NO EVENT SHALL ARXOPIA LLC BE LIABLE FOR ANY DIRECT, INDIRECT,
+# INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT
+# LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA,
+# OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF
+# LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE
+# OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED
+# OF THE POSSIBILITY OF SUCH DAMAGE.
+
+module Risu
+	module Templates
+		class HostFindingsCSV < Risu::Base::TemplateBase
+
+			# 
+			#
+			def initialize ()
+				@template_info =
+				{
+					:name => "host_findings_csv",
+					:author => "hammackj",
+					:version => "0.0.1",
+					:renderer => "CSV",
+					:description => "Generates a findings report by host and outputs to CSV"
+
+				}
+			end
+
+			# Writes out a CSV block for the risks passed.
+			# @param risks, A query from the Plugin model of the risks
+			#
+			def csv risks
+				risks.order(:cvss_base_score).each do |plugin|
+					items = Item.where(:plugin_id => plugin.id)
+
+					items.each do |item|
+						host = Host.where(:id => item.host_id).first
+
+						@output.text "#{host.ip}, #{item.plugin_name}, #{plugin.risk_factor}"
+					end
+				end				
+			end
+
+			#
+			#
+			def render(output)
+				csv Plugin.critical_risks
+			end
+		end
+	end
+end

data/lib/risu/templates/host_summary.rb

@@ -1,4 +1,4 @@
-# Copyright (c) 2010-2013 Arxopia LLC.
+# Copyright (c) 2010-2014 Arxopia LLC.
 # All rights reserved.
 #
 # Redistribution and use in source and binary forms, with or without
@@ -36,6 +36,7 @@ module Risu
 					:name => "host_summary",
 					:author => "hammackj",
 					:version => "0.0.3",
+					:renderer => "PDF",
 					:description => "Generates a Host Summary Report"
 				}
 			end

data/lib/risu/templates/malicious_process_detection.rb

@@ -1,4 +1,4 @@
-# Copyright (c) 2010-2013 Arxopia LLC.
+# Copyright (c) 2010-2014 Arxopia LLC.
 # All rights reserved.
 #
 # Redistribution and use in source and binary forms, with or without
@@ -35,6 +35,7 @@ module Risu
 					:name => "malicious_process_detection",
 					:author => "hammackj",
 					:version => "0.0.1",
+					:renderer => "PDF",
 					:description => "Generates a Malicious Process Detection Report"
 				}
 			end

data/lib/risu/templates/missing_root_causes.rb

@@ -0,0 +1,162 @@
+# Copyright (c) 2010-2014 Arxopia LLC.
+# All rights reserved.
+#
+# Redistribution and use in source and binary forms, with or without
+# modification, are permitted provided that the following conditions are met:
+#
+#     * Redistributions of source code must retain the above copyright
+#       notice, this list of conditions and the following disclaimer.
+#     * Redistributions in binary form must reproduce the above copyright
+#       notice, this list of conditions and the following disclaimer in the
+#       documentation and/or other materials provided with the distribution.
+#     * Neither the name of the Arxopia LLC nor the names of its contributors
+#     	may be used to endorse or promote products derived from this software
+#     	without specific prior written permission.
+#
+# THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS "AS IS" AND
+# ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED
+# WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE
+# DISCLAIMED. IN NO EVENT SHALL ARXOPIA LLC BE LIABLE FOR ANY DIRECT, INDIRECT,
+# INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT
+# LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA,
+# OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF
+# LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE
+# OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED
+# OF THE POSSIBILITY OF SUCH DAMAGE.
+
+module Risu
+	module Templates
+		class MissingRootCauses < Risu::Base::TemplateBase
+
+			#
+			#
+			def initialize ()
+				@template_info =
+				{
+					:name => "missing_root_causes",
+					:author => "hammackj",
+					:version => "0.0.1",
+					:renderer => "PDF",
+					:description => "Generates a Report of all the findings without a root cause"
+				}
+			end
+
+			#
+			#
+			def render(output)
+				output.text Report.classification.upcase, :align => :center
+				output.text "\n"
+
+				output.font_size(22) do
+					output.text Report.title, :align => :center
+				end
+
+				output.font_size(18) do
+					output.text "Missing Root Causes Report", :align => :center
+					output.text "\n"
+					output.text "This report was prepared by\n#{Report.author}", :align => :center
+				end
+
+				output.text "\n\n\n"
+
+				output.font_size(20) {
+					output.fill_color "9B30FF"
+					output.text "Critical Findings", :style => :bold
+					output.fill_color "000000"
+				}
+
+				Item.critical_risks_unique_sorted.each do |item|
+					plugin = Plugin.find_by_id(item.plugin_id)
+					name = Plugin.find_by_id(item.plugin_id).plugin_name
+					count = Item.where(:plugin_id => item.plugin_id).count
+
+					if plugin.root_cause != nil
+						next
+					end
+
+					output.text "#{count} - #{name} - #{item.plugin_id}" 
+				end
+
+				output.start_new_page
+
+				output.font_size(20) do
+					output.fill_color "FF0000"
+					output.text "High Findings", :style => :bold
+					output.fill_color "000000"
+				end
+
+				Item.high_risks_unique_sorted.each do |item|
+					plugin = Plugin.find_by_id(item.plugin_id)
+					name = Plugin.find_by_id(item.plugin_id).plugin_name
+					count = Item.where(:plugin_id => item.plugin_id).count
+
+					if plugin.root_cause != nil
+						next
+					end					
+
+					output.text "#{count} - #{name} - #{item.plugin_id}"
+				end
+
+				output.start_new_page
+
+				output.font_size(20) {
+					output.fill_color "FF8040"
+					output.text "Medium Findings", :style => :bold
+					output.fill_color "000000"
+				}
+
+				Item.medium_risks_unique_sorted.each do |item|
+					plugin = Plugin.find_by_id(item.plugin_id)
+					name = Plugin.find_by_id(item.plugin_id).plugin_name
+					count = Item.where(:plugin_id => item.plugin_id).count
+
+					if plugin.root_cause != nil
+						next
+					end
+
+					output.text "#{count} - #{name} - #{item.plugin_id}"
+				end
+
+				output.start_new_page
+
+				output.font_size(20) {
+					output.fill_color "0000FF"
+					output.text "Low Findings", :style => :bold
+					output.fill_color "000000"
+				}
+
+				Item.low_risks_unique_sorted.each do |item|
+					plugin = Plugin.find_by_id(item.plugin_id)
+					name = Plugin.find_by_id(item.plugin_id).plugin_name
+					count = Item.where(:plugin_id => item.plugin_id).count
+
+					if plugin.root_cause != nil
+						next
+					end
+
+					output.text "#{count} - #{name} - #{item.plugin_id}"
+				end
+
+				output.start_new_page
+
+				output.font_size(20) {
+					output.fill_color "008000"
+					output.text "Info Findings", :style => :bold
+					output.fill_color "000000"
+				}
+				
+				Item.info_risks_unique_sorted.each do |item|
+					plugin = Plugin.find_by_id(item.plugin_id)
+					name = Plugin.find_by_id(item.plugin_id).plugin_name
+					count = Item.where(:plugin_id => item.plugin_id).count
+
+					if plugin.root_cause != nil
+						next
+					end
+				
+					output.text "#{count} - #{name} - #{item.plugin_id}"
+				end
+			end
+		end
+	end
+end

data/lib/risu/templates/ms_patch_summary.rb

@@ -1,4 +1,4 @@
-# Copyright (c) 2010-2013 Arxopia LLC.
+# Copyright (c) 2010-2014 Arxopia LLC.
 # All rights reserved.
 #
 # Redistribution and use in source and binary forms, with or without
@@ -34,7 +34,8 @@ module Risu
 				{
 					:name => "ms_patch_summary",
 					:author => "hammackj",
-					:version => "0.0.1",
+					:version => "0.0.2",
+					:renderer => "PDF",
 					:description => "Generates a Microsoft Patch Summary Report"
 				}
 			end

data/lib/risu/templates/ms_update_summary.rb

@@ -1,4 +1,4 @@
-# Copyright (c) 2010-2013 Arxopia LLC.
+# Copyright (c) 2010-2014 Arxopia LLC.
 # All rights reserved.
 #
 # Redistribution and use in source and binary forms, with or without
@@ -21,8 +21,8 @@
 # LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA,
 # OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF
 # LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE
-#OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED
-#OF THE POSSIBILITY OF SUCH DAMAGE.
+# OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED
+# OF THE POSSIBILITY OF SUCH DAMAGE.
 
 module Risu
 	module Templates
@@ -35,7 +35,8 @@ module Risu
 				{
 					:name => "ms_update_summary",
 					:author => "hammackj",
-					:version => "0.0.1",
+					:version => "0.0.2",
+					:renderer => "PDF",
 					:description => "Generates a Microsoft Update Summary Report"
 				}
 			end

data/lib/risu/templates/ms_wsus_findings.rb

@@ -1,4 +1,4 @@
-# Copyright (c) 2010-2013 Arxopia LLC.
+# Copyright (c) 2010-2014 Arxopia LLC.
 # All rights reserved.
 #
 # Redistribution and use in source and binary forms, with or without
@@ -21,8 +21,8 @@
 # LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA,
 # OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF
 # LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE
-#OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED
-#OF THE POSSIBILITY OF SUCH DAMAGE.
+# OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED
+# OF THE POSSIBILITY OF SUCH DAMAGE.
 
 module Risu
 	module Templates
@@ -35,7 +35,8 @@ module Risu
 				{
 					:name => "ms_wsus_findings",
 					:author => "hammackj",
-					:version => "0.0.1",
+					:version => "0.0.2",
+					:renderer => "PDF",
 					:description => "Generates a report based on the findings of the Patch Management: WSUS Report plugin"
 				}
 			end

data/lib/risu/templates/notable.rb

@@ -1,4 +1,4 @@
-# Copyright (c) 2010-2013 Arxopia LLC.
+# Copyright (c) 2010-2014 Arxopia LLC.
 # All rights reserved.
 #
 # Redistribution and use in source and binary forms, with or without
@@ -21,8 +21,8 @@
 # LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA,
 # OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF
 # LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE
-#OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED
-#OF THE POSSIBILITY OF SUCH DAMAGE.
+# OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED
+# OF THE POSSIBILITY OF SUCH DAMAGE.
 
 module Risu
 	module Templates
@@ -35,22 +35,19 @@ module Risu
 				{
 					:name => "notable",
 					:author => "hammackj",
-					:version => "0.0.3",
+					:version => "0.0.4",
+					:renderer => "PDF",
 					:description => "Notable Vulnerabilities"
 				}
 			end
 
 			# Renders a Notable Findings Report
 			def render(output)
-				output.text Report.classification.upcase, :align => :center
-				output.text "\n"
+				report_classification
 
 				report_title Report.title
 				report_subtitle "Notable Vulnerabilities"
-
-				output.font_size(14) do
-					output.text "This report was prepared by\n#{Report.author}", :align => :center
-				end
+				report_author "This report was prepared by\n#{Report.author}"
 
 				output.text "\n\n\n"
 
@@ -59,7 +56,6 @@ module Risu
 				output.text "\n"
 
 				Item.top_10_table(output)
-
 			end
 		end
 	end

data/lib/risu/templates/notable_detailed.rb

@@ -1,4 +1,4 @@
-# Copyright (c) 2010-2013 Arxopia LLC.
+# Copyright (c) 2010-2014 Arxopia LLC.
 # All rights reserved.
 #
 # Redistribution and use in source and binary forms, with or without
@@ -21,8 +21,8 @@
 # LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA,
 # OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF
 # LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE
-#OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED
-#OF THE POSSIBILITY OF SUCH DAMAGE.
+# OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED
+# OF THE POSSIBILITY OF SUCH DAMAGE.
 
 module Risu
 	module Templates
@@ -35,7 +35,8 @@ module Risu
 				{
 					:name => "notable_detailed",
 					:author => "hammackj",
-					:version => "0.0.5",
+					:version => "0.0.6",
+					:renderer => "PDF",
 					:description => "Notable Vulnerabilities Detailed"
 				}
 			end
@@ -134,6 +135,8 @@ module Risu
 								@output.text "<b>nessus_plugin</b>: http://www.tenablesecurity.com/plugins/index.php?view=single&id=#{plugin_id}", :inline_format => true
 							end
 
+
+
 							@output.text "\n"
 							counter += 1
 						end

data/lib/risu/templates/pci_compliance.rb

@@ -1,4 +1,4 @@
-# Copyright (c) 2010-2013 Arxopia LLC.
+# Copyright (c) 2010-2014 Arxopia LLC.
 # All rights reserved.
 #
 # Redistribution and use in source and binary forms, with or without
@@ -21,8 +21,8 @@
 # LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA,
 # OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF
 # LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE
-#OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED
-#OF THE POSSIBILITY OF SUCH DAMAGE.
+# OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED
+# OF THE POSSIBILITY OF SUCH DAMAGE.
 
 module Risu
 	module Templates
@@ -34,7 +34,8 @@ module Risu
 				{
 					:name => "pci_compliance",
 					:author => "hammackj",
-					:version => "0.0.5",
+					:version => "0.0.6",
+					:renderer => "PDF",
 					:description => "Generates a PCI Compliance Overview Report"
 				}
 			end

data/lib/risu/templates/stig_findings_summary.rb

@@ -1,4 +1,4 @@
-# Copyright (c) 2010-2013 Arxopia LLC.
+# Copyright (c) 2010-2014 Arxopia LLC.
 # All rights reserved.
 #
 # Redistribution and use in source and binary forms, with or without
@@ -21,8 +21,8 @@
 # LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA,
 # OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF
 # LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE
-#OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED
-#OF THE POSSIBILITY OF SUCH DAMAGE.
+# OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED
+# OF THE POSSIBILITY OF SUCH DAMAGE.
 
 module Risu
 	module Templates
@@ -34,7 +34,8 @@ module Risu
 				{
 					:name => "stig_findings_summary",
 					:author => "hammackj",
-					:version => "0.0.4",
+					:version => "0.0.5",
+					:renderer => "PDF",
 					:description => "DISA Stig findings summary report"
 				}