risu 1.6.3 → 1.7.0

data/lib/risu/parsers/nessus/postprocess/root_cause.rb

@@ -0,0 +1,375 @@
+# Copyright (c) 2010-2014 Arxopia LLC.
+# All rights reserved.
+#
+# Redistribution and use in source and binary forms, with or without
+# modification, are permitted provided that the following conditions are met:
+#
+#     * Redistributions of source code must retain the above copyright
+#       notice, this list of conditions and the following disclaimer.
+#     * Redistributions in binary form must reproduce the above copyright
+#       notice, this list of conditions and the following disclaimer in the
+#       documentation and/or other materials provided with the distribution.
+#     * Neither the name of the Arxopia LLC nor the names of its contributors
+#     	may be used to endorse or promote products derived from this software
+#     	without specific prior written permission.
+#
+# THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS "AS IS" AND
+# ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED
+# WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE
+# DISCLAIMED. IN NO EVENT SHALL ARXOPIA LLC BE LIABLE FOR ANY DIRECT, INDIRECT,
+# INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT
+# LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA,
+# OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF
+# LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE
+# OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED
+# OF THE POSSIBILITY OF SUCH DAMAGE.
+
+module Risu
+	module Parsers
+		module Nessus
+			module PostProcess
+				class RootCauses < Risu::Base::PostProcessBase
+
+					#
+					def initialize
+						@info =
+						{
+							:description => "Root Cause Mapper",
+							:plugin_id => 0
+						}
+
+						@plugins_to_cause = {
+							22194 => "Vendor Patch",
+							34477 => "Vendor Patch",
+							35362 => "Vendor Patch",
+							40887 => "Vendor Patch",
+							53514 => "Vendor Patch",
+							58435 => "Vendor Patch",
+							22034 => "Vendor Patch",
+							63643 => "Vendor Patch",
+							25905 => "Vendor Patch",
+							28227 => "Vendor Patch",
+							33128 => "Vendor Patch",
+							29924 => "Vendor Patch",
+							32194 => "Vendor Patch",
+							51840 => "Vendor Patch",
+							70612 => "Vendor Patch",
+							45415 => "Vendor Patch",
+							45418 => "Vendor Patch",
+							45419 => "Vendor Patch",
+							73917 => "Vendor Patch",
+							73412 => "Vendor Patch",
+							74326 => "Vendor Patch",
+							34475 => "Vendor Patch",
+							24699 => "Vendor Patch",
+							36132 => "Vendor Patch",
+							45416 => "Vendor Patch",
+							45417 => "Vendor Patch",
+							60098 => "Vendor Patch",
+							74470 => "Vendor Patch",
+							71774 => "Vendor Patch",
+							76457 => "Vendor Patch",
+							34501 => "Vendor Patch",
+							36216 => "Vendor Patch",
+							38978 => "Vendor Patch",
+							42044 => "Vendor Patch",
+							44588 => "Vendor Patch",
+							45429 => "Vendor Patch",
+							46173 => "Vendor Patch",
+							49690 => "Vendor Patch",
+							59644 => "Vendor Patch",
+							70216 => "Vendor Patch",
+							-99999 => "Vendor Patch",
+							-99998 => "Vendor Patch",
+							-99995 => "Vendor Patch",
+							24712 => "Vendor Patch",
+							25371 => "Vendor Patch",
+							-99997 => "Vendor Patch",
+							-99994 => "Vendor Patch",
+							-99992 => "Vendor Patch",
+							-99991 => "Vendor Patch",
+							-99989 => "Vendor Patch",
+							55976 => "Vendor Patch",
+							58597 => "Vendor Patch",
+							58848 => "Vendor Patch",
+							73984 => "Vendor Patch",
+							10043 => "Vendor Patch",
+							58659 => "Vendor Patch",
+							76123 => "Vendor Patch",
+							27599 => "Vendor Patch",
+							51894 => "Vendor Patch",
+							51895 => "Vendor Patch",
+							46738 => "Vendor Patch",
+							32313 => "Vendor Patch",
+							44073 => "Vendor Patch",
+							49274 => "Vendor Patch",
+							51178 => "Vendor Patch",
+							62465 => "Vendor Patch",
+							69327 => "Vendor Patch",
+							61529 => "Vendor Patch",
+							51352 => "Vendor Patch",
+							53377 => "Vendor Patch",
+							53503 => "Vendor Patch",
+							12209 => "Vendor Patch",
+							18502 => "Vendor Patch",
+							19407 => "Vendor Patch",
+							44422 => "Vendor Patch",
+							76281 => "Vendor Patch",
+							58119 => "Vendor Patch",
+							15555 => "Vendor Patch",
+							12106 => "Vendor Patch",
+							10951 => "Vendor Patch",
+							10380 => "Vendor Patch",
+							71994 => "Vendor Patch",
+							71993 => "Vendor Patch",
+							72542 => "Vendor Patch",
+							70335 => "Vendor Patch",
+							63419 => "Vendor Patch",
+							57796 => "Vendor Patch",
+							55819 => "Vendor Patch",
+							21655 => "Vendor Patch",
+							21193 => "Vendor Patch",
+							19408 => "Vendor Patch",
+							13852 => "Vendor Patch",
+							-99988 => "Vendor Patch",
+							-99993 => "Vendor Patch",
+							48405 => "Vendor Patch",
+							48291 => "Vendor Patch",
+							47556 => "Vendor Patch",
+							53382 => "Vendor Patch",
+							63420 => "Vendor Patch",
+							59906 => "Vendor Patch",
+							46843 => "Vendor Patch",
+							61535 => "Vendor Patch",
+							73805 => "Vendor Patch",
+							73415 => "Vendor Patch",
+							73416 => "Vendor Patch",
+							48297 => "Vendor Patch",
+							59043 => "Vendor Patch",
+							59909 => "Vendor Patch",
+							70846 => "Vendor Patch",
+							70847 => "Vendor Patch",
+							70848 => "Vendor Patch",
+							71312 => "Vendor Patch",
+							71313 => "Vendor Patch",
+							71314 => "Vendor Patch",
+							71316 => "Vendor Patch",
+							72433 => "Vendor Patch",
+							72434 => "Vendor Patch",
+							72930 => "Vendor Patch",
+							74428 => "Vendor Patch",
+							59042 => "Vendor Patch",
+							59044 => "Vendor Patch",
+							59455 => "Vendor Patch",
+							59459 => "Vendor Patch",
+							59460 => "Vendor Patch",
+							59908 => "Vendor Patch",
+							59910 => "Vendor Patch",
+							59911 => "Vendor Patch",
+							61527 => "Vendor Patch",
+							61530 => "Vendor Patch",
+							62045 => "Vendor Patch",
+							62223 => "Vendor Patch",
+							62463 => "Vendor Patch",
+							62907 => "Vendor Patch",
+							63224 => "Vendor Patch",
+							63225 => "Vendor Patch",
+							63228 => "Vendor Patch",
+							63229 => "Vendor Patch",
+							63522 => "Vendor Patch",
+							64570 => "Vendor Patch",
+							64571 => "Vendor Patch",
+							64577 => "Vendor Patch",
+							64578 => "Vendor Patch",
+							65210 => "Vendor Patch",
+							65875 => "Vendor Patch",
+							65878 => "Vendor Patch",
+							65883 => "Vendor Patch",
+							66412 => "Vendor Patch",
+							66422 => "Vendor Patch",
+							66423 => "Vendor Patch",
+							66863 => "Vendor Patch",
+							67209 => "Vendor Patch",
+							67210 => "Vendor Patch",
+							67211 => "Vendor Patch",
+							67212 => "Vendor Patch",
+							69324 => "Vendor Patch",
+							69328 => "Vendor Patch",
+							69829 => "Vendor Patch",
+							69835 => "Vendor Patch",
+							70332 => "Vendor Patch",
+							70333 => "Vendor Patch",
+							71942 => "Vendor Patch",
+							72931 => "Vendor Patch",
+							25167 => "Vendor Patch",
+							27525 => "Vendor Patch",
+							73417 => "Vendor Patch",
+							53532 => "Vendor Patch",
+							58811 => "Vendor Patch",
+							25492 => "Vendor Patch",
+							31419 => "Vendor Patch",
+							58327 => "Vendor Patch",
+							68931 => "Vendor Patch",
+							59851 => "Vendor Patch",
+							66541 => "Vendor Patch",
+							70118 => "Vendor Patch",
+							69020 => "Vendor Patch",
+							76345 => "Vendor Patch",
+							49272 => "Vendor Patch",
+							11030 => "Vendor Patch",
+							11137 => "Vendor Patch",
+							11793 => "Vendor Patch",
+							11915 => "Vendor Patch",
+							31654 => "Vendor Patch",
+							35635 => "Vendor Patch",
+							11227 => "Vendor Patch",
+							12255 => "Vendor Patch",
+							13651 => "Vendor Patch",
+							44967 => "Vendor Patch",
+							71174 => "Vendor Patch",
+							72959 => "Vendor Patch",
+							10882 => "Vendor Patch",
+							51892 => "Vendor Patch",
+							51893 => "Vendor Patch",
+							44136 => "Vendor Patch",
+							49067 => "Vendor Patch",
+							62565 => "Vendor Patch",
+							10815 => "Vendor Patch",
+							12280 => "Vendor Patch",
+							17696 => "Vendor Patch",
+							22254 => "Vendor Patch",
+							76203 => "Vendor Patch",
+							11267 => "Vendor Patch",
+							12110 => "Vendor Patch",
+							39466 => "Vendor Patch",
+							65952 => "Vendor Patch",
+							70545 => "Vendor Patch",
+							-99985 => "Vendor Patch",
+							-99986 => "Vendor Patch",
+							71174 => "Vendor Patch",
+							72959 => "Vendor Patch",
+							25926 => "Vendor Patch",
+							11138 => "Vendor Patch",
+							47715 => "Vendor Patch",
+							63476 => "Vendor Patch",
+							39468 => "Vendor Patch",
+							-99983 => "Vendor Patch",
+							-99984 => "Vendor Patch",
+							
+
+							
+							33850 => "Vendor Support",
+							34460 => "Vendor Support",
+							73182 => "Vendor Support",
+							47709 => "Vendor Support",
+							56710 => "Vendor Support",
+							48762 => "Vendor Support",
+							62758 => "Vendor Support",
+							72704 => "Vendor Support",
+							48761 => "Vendor Support",
+							26928 => "Vendor Support",
+							12217 => "Vendor Support",
+							35291 => "Vendor Support",
+							42873 => "Vendor Support",
+							42880 => "Vendor Support",
+							62974 => "Vendor Support",
+							20007 => "Vendor Support",
+							22313 => "Vendor Support",
+							56210 => "Vendor Support",
+							56211 => "Vendor Support",
+							58134 => "Vendor Support",
+							64784 => "Vendor Support",
+							55786 => "Vendor Support",
+							65642 => "Vendor Support",
+							19699 => "Vendor Support",
+							57859 => "Vendor Support",
+							56998 => "Vendor Support",
+
+
+							49071 => "Configuration",
+							41028 => "Configuration",
+							57582 => "Configuration",
+							45411 => "Configuration",
+							45417 => "Configuration",
+							57608 => "Configuration",
+							18405 => "Configuration",
+							57690 => "Configuration",
+							58453 => "Configuration",
+							15901 => "Configuration",
+							26920 => "Configuration",
+							26919 => "Configuration",
+							51368 => "Configuration",
+							63155 => "Configuration",
+							65057 => "Configuration",
+							51192 => "Configuration",
+							63478 => "Configuration",
+							10079 => "Configuration",
+							42411 => "Configuration",
+							26925 => "Configuration",
+							66174 => "Configuration",
+							10862 => "Configuration",
+							10264 => "Configuration",
+							10297 => "Configuration",
+							57640 => "Configuration",
+							71783 => "Configuration",
+							11213 => "Configuration",
+							57792 => "Configuration",
+							74442 => "Configuration",
+							11457 => "Configuration",
+							65821 => "Configuration",
+							30218 => "Configuration",
+							26194 => "Configuration",
+							70658 => "Configuration",
+							71049 => "Configuration",
+							10547 => "Configuration",
+							31705 => "Configuration",
+							34324 => "Configuration",
+							54582 => "Configuration",
+							69551 => "Configuration",
+							50504 => "Configuration",
+							10205 => "Configuration",
+							32315 => "Configuration",
+							43160 => "Configuration",
+							65950 => "Configuration",
+							42263 => "Configuration",
+							34850 => "Configuration",
+							50686 => "Configuration",
+							66848 => "Configuration",
+							47831 => "Configuration",
+							12085 => "Configuration",
+							25289 => "Configuration",
+							10056 => "Configuration",
+							10188 => "Configuration",
+							10660 => "Configuration",
+							11411 => "Configuration",
+							10722 => "Configuration",
+							10056 => "Configuration",
+							10660 => "Configuration",
+							10595 => "Configuration",
+							11714 => "Configuration",
+							10203 => "Configuration",
+							29224 => "Configuration",
+
+
+
+						}
+					end
+
+					#
+					def run
+						@plugins_to_cause.each do |k, v|
+							plugin = Plugin.where(:id => k).first
+
+							if plugin == nil
+								next
+							end
+
+							plugin.root_cause = v
+							plugin.save
+						end
+					end
+				end
+			end
+		end
+	end
+end

data/lib/risu/parsers/nessus/postprocess/servu.rb

@@ -0,0 +1,57 @@
+# Copyright (c) 2010-2014 Arxopia LLC.
+# All rights reserved.
+#
+# Redistribution and use in source and binary forms, with or without
+# modification, are permitted provided that the following conditions are met:
+#
+#     * Redistributions of source code must retain the above copyright
+#       notice, this list of conditions and the following disclaimer.
+#     * Redistributions in binary form must reproduce the above copyright
+#       notice, this list of conditions and the following disclaimer in the
+#       documentation and/or other materials provided with the distribution.
+#     * Neither the name of the Arxopia LLC nor the names of its contributors
+#     	may be used to endorse or promote products derived from this software
+#     	without specific prior written permission.
+#
+# THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS "AS IS" AND
+# ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED
+# WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE
+# DISCLAIMED. IN NO EVENT SHALL ARXOPIA LLC BE LIABLE FOR ANY DIRECT, INDIRECT,
+# INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT
+# LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA,
+# OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF
+# LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE
+# OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED
+# OF THE POSSIBILITY OF SUCH DAMAGE.
+
+module Risu
+	module Parsers
+		module Nessus
+			module PostProcess
+				class ServU < Risu::Base::PostProcessBase
+
+					#
+					def initialize
+						@info = 
+						{
+							:description => "Serv-U Patch Rollup",
+							:plugin_id => -99996,
+							:plugin_name => "Update to the latest Serv-U",
+							:item_name => "Update to the latest Serv-U",
+							:plugin_ids => [
+								36035,
+								41980,
+								48435,
+								69060,
+								71863,
+								72658,
+								76369,
+								
+							]
+						}
+					end
+				end
+			end
+		end
+	end
+end

data/lib/risu/parsers/nessus/postprocess/shockwave.rb

@@ -0,0 +1,73 @@
+# Copyright (c) 2010-2014 Arxopia LLC.
+# All rights reserved.
+#
+# Redistribution and use in source and binary forms, with or without
+# modification, are permitted provided that the following conditions are met:
+#
+#     * Redistributions of source code must retain the above copyright
+#       notice, this list of conditions and the following disclaimer.
+#     * Redistributions in binary form must reproduce the above copyright
+#       notice, this list of conditions and the following disclaimer in the
+#       documentation and/or other materials provided with the distribution.
+#     * Neither the name of the Arxopia LLC nor the names of its contributors
+#     	may be used to endorse or promote products derived from this software
+#     	without specific prior written permission.
+#
+# THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS "AS IS" AND
+# ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED
+# WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE
+# DISCLAIMED. IN NO EVENT SHALL ARXOPIA LLC BE LIABLE FOR ANY DIRECT, INDIRECT,
+# INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT
+# LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA,
+# OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF
+# LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE
+# OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED
+# OF THE POSSIBILITY OF SUCH DAMAGE.
+
+module Risu
+	module Parsers
+		module Nessus
+			module PostProcess
+				class Shockwave < Risu::Base::PostProcessBase
+
+					#
+					def initialize
+						@info =
+						{
+							:description => "Shockwave Player Patch Rollup",
+							:plugin_id => -99991,
+							:plugin_name => "Update to the latest Shockwave Player",
+							:item_name => "Update to the latest Shockwave Player",
+							:plugin_ids => [
+								72435,
+								72983,
+								42369,
+								51936,
+								71342,
+								44094,
+								39564,
+								40421,
+								44094,
+								46329,
+								48436,
+								50387,
+								55142,
+								55833,
+								56734,
+								57941,
+								59047,
+								61536,
+								62702,
+								64621,
+								65913,
+								67233,
+								69844,
+								
+							]
+						}
+					end
+				end
+			end
+		end
+	end
+end