risu 1.4.3

data/KNOWNISSUES.markdown

@@ -0,0 +1,50 @@
+# Known Issues
+
+## RMagick Breaks on ImageMagick Updates
+The easy way to fix this is to just reinstall RMagick, like below:
+
+	[hammackj@taco:~/Projects/public/nessusdb]$ nessusdb 
+	/Library/Ruby/Gems/1.8/gems/rmagick-2.13.1/lib/RMagick2.bundle: This installation of RMagick was configured with ImageMagick 6.6.5 but ImageMagick 6.6.7-0 is in use. (RuntimeError)
+		from /Library/Ruby/Site/1.8/rubygems/custom_require.rb:29:in `require'
+		from /Library/Ruby/Gems/1.8/gems/rmagick-2.13.1/lib/RMagick.rb:11
+		from /Library/Ruby/Site/1.8/rubygems/custom_require.rb:34:in `gem_original_require'
+		from /Library/Ruby/Site/1.8/rubygems/custom_require.rb:34:in `require'
+		from /Library/Ruby/Gems/1.8/gems/gruff-0.3.6/lib/gruff/base.rb:2
+		from /Library/Ruby/Site/1.8/rubygems/custom_require.rb:29:in `gem_original_require'
+		from /Library/Ruby/Site/1.8/rubygems/custom_require.rb:29:in `require'
+		from /Library/Ruby/Gems/1.8/gems/gruff-0.3.6/lib/gruff.rb:25
+		from /Library/Ruby/Gems/1.8/gems/gruff-0.3.6/lib/gruff.rb:5:in `each'
+		from /Library/Ruby/Gems/1.8/gems/gruff-0.3.6/lib/gruff.rb:5
+		from /Library/Ruby/Site/1.8/rubygems/custom_require.rb:34:in `gem_original_require'
+		from /Library/Ruby/Site/1.8/rubygems/custom_require.rb:34:in `require'
+		from ./bin/../lib/nessusdb.rb:10
+		from /Library/Ruby/Site/1.8/rubygems/custom_require.rb:29:in `gem_original_require'
+		from /Library/Ruby/Site/1.8/rubygems/custom_require.rb:29:in `require'
+		from ./bin/nessusdb:22
+
+	[hammackj@taco:~/Projects/public/nessusdb]$ sudo gem install rmagick
+	
+## Mac OSX Native Dependencies
+The gems for mysql and rmagick will fail to build if these are not installed.
+
+	sudo port install ImageMagick mysql5
+
+## Linux Native Dependencies
+
+### Ubuntu 10.10
+	sudo apt-get install ruby1.8-dev libzip1 libzip-dev libxml2-dev libxml2 libmysqlclient-dev imagemagick libmagickwand3 libmagick9-dev
+	
+### Backtrack
+	sudo apt-get install ruby1.8-dev libzip1 libzip-dev libxml2-dev libxml2 libmysqlclient-dev imagemagick libmagickwand3 libmagick9-dev
+
+## Sqlite
+
+Sqlite is a great database to use as a light weight solution. I use Sqlite for all of my assessments. Setting it up on various platforms can be tricky, so here are some examples for what is required to set it up.
+
+### Ubuntu 10.10
+	sudo apt-get install sqlite3 libsqlite3-dev
+	gem install sqlite3 
+
+### Mac OSX
+	sudo port install sqlite3
+	gem install sqlite3

data/LICENSE

@@ -0,0 +1,25 @@
+Copyright (c) 2010-2011 Jacob Hammack, Hammackj LLC
+All rights reserved.
+
+Redistribution and use in source and binary forms, with or without
+modification, are permitted provided that the following conditions are met:
+
+    * Redistributions of source code must retain the above copyright
+      notice, this list of conditions and the following disclaimer.
+    * Redistributions in binary form must reproduce the above copyright
+      notice, this list of conditions and the following disclaimer in the
+      documentation and/or other materials provided with the distribution.
+    * Neither the name of the Jacob Hammack or Hammackj LLC nor the
+      names of its contributors may be used to endorse or promote products
+      derived from this software without specific prior written permission.
+
+THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS "AS IS" AND
+ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED
+WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE
+DISCLAIMED. IN NO EVENT SHALL JACOB HAMMACK or HAMMACKJ LLC BE LIABLE FOR ANY
+DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES
+(INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES;
+LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND
+ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
+(INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS
+SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.

data/NEWS.markdown

@@ -0,0 +1,112 @@
+# News
+
+#1.4.3 (May 23, 2011)
+
+**This is the last release under the NessusDB name, I received a legal notice to change the name. They gave me a few weeks to change the name but I do not have a new name yet. If you have any suggestions please submit them to jacob.hammack[@]hammackj.com**
+
+- Fixed small bug in Windows/Other OS graphs
+- Increased the verboseness of Error messages Ticket #29
+- Added named scopes off the Plugin class Ticket #34
+- Added new PCI related HostProperties Tocket #35
+	- New HostProperties attribute: pci-dss-compliance:
+	- New HostProperties attribute: pcidss:compliance:failed
+	- New HostProperties attribute: pcidss:compliance:passed
+	- New HostProperties attribute: pcidss:deprecated_ssl
+	- New HostProperties attribute: pcidss:expired_ssl_certificate
+	- New HostProperties attribute: pcidss:high_risk_flaw
+	- New HostProperties attribute: pcidss:medium_risk_flaw
+	- New HostProperties attribute: pcidss:reachable_db
+	- New HostProperties attribute: pcidss:www:xss
+- Added more unit tests 91.7% code coverage for testing at the moment. Not including templates.	
+
+#1.4.2 (May 13, 2011)
+
+- Added a fix for all of the MSXX-XXX Host Properties tags that don't serve any purpose
+- Added sqlite3 as an install dependency to help with sqlite usage
+- Fixed a privately report bug with the *_risks_unique_sorted functions not working on MySQL
+
+#1.4.1 (May 10, 2011)
+
+- Fixed a issue with a nonexistent 'Critical' severity.
+- Added VMware ESX to the Other OS graph Ticket #33
+- windows_os_graph were using the wrong counters Ticket #32
+- Updated the Prawn gem version to 0.11.1
+
+#1.4.0 (April 20, 2011)
+
+- Added a --console option for creating a ActiveRecord console into the database
+- Updated the parser to handle the new plugin_type field on the plugins table
+- Fixed a issue with the parser where Nessus leaves the ip field blank for some reason but the name field is the ip. Validates the correctness of the ip and puts it in the ip field
+- Added 'cpe' field from the updated Nessus XML
+- Added 'plugin_type' field from the updated Nessus XML
+- New Templates
+	- Simple list of findings by host, in findings_host.rb [Ticket #27]
+
+# 1.3.0 (March 4, 2011)
+**Command line options have changed slightly, run nessusdb -? for a full list of commands**
+
+**The default config file name is now nessusdb.cfg**
+
+- New templates
+	- Microsoft Patches Summary
+	- Microsoft Update Enabled Summary
+	- Sample Exec Summary
+	- Host Summary
+	- Findings Summary
+	- Cover Sheet example
+- Updated more yardoc documentation
+- Reports
+	- Set a default font size of 12
+	- Set default margins of 50,75,50,75
+	- Cleaned up the graphs to be a little easier to read
+- Added significantly more error checking to the command line	application
+- Updated the config file format to handle all of the report generation options as well as the database configuration options
+- Added a command line option for passing it a config file to use instead of forcing the default ./nessusdb.cfg
+- Migrated to OptionParser Choice seems to be an abandoned gem with bugs
+- Updated all the Migration code to use the new AR3 format
+
+- Special thanks to **Ed Davison** for numerous bug reports and template testing.
+- Special thanks to **Andrew Benson** for helping track down a major ActiveRecord bug.
+
+# 1.2.0 (February 13, 2011)
+**This update breaks all existing templates, included templates are updated**
+	
+- Preformed tons code clean up
+- Fixed a ton of typos
+- Removed the Findings class, please use the named scopes on each ActiveRecord object now
+- All queries are now using ActiveRecord 3
+	- Use named scope off each Model to access data
+- Ported all the templates to use the new ActiveRecord3 style
+- Solved some missing dependency issues that are now accounted for!
+
+# 1.1.0 (October 22, 2010)
+- Fixed a typo on the classification argument
+- Added a assets report template
+- Added a simple PCI/DSS compliance report template (Requires Nessus Professional Feed for the plugin)
+- Updated the parser to take into account the new fields
+	- HostProperties attribute: pci-dss-compliance
+	- New XML element: exploitability_ease. 
+	- New XML element: cvss_temporal_vector.
+	- New XML element: exploit_framework_core.
+	- New XML element: cvss_temporal_score. 
+	- New XML element: exploit_available.
+	- New XML element: exploit_framework_metasploit.
+	- New XML element: metasploit_name
+	- New XML element: exploit_framework_canvas
+	- New XML element: canvas_package
+- Updated technical findings template to account for the new exploitability values
+- Fixed a bug with the way I was blacklisting the scan box
+	
+# 1.0.0 (October 8, 2010)
+- Cleaned up more code
+- Fixed a Mysql error for when the tables do not exist.
+	
+# 0.6.6 (October 4, 2010)
+- Moved to prawn for pdf output
+- added templates for the new prawn output
+- added checks to warn when there are new xml tags
+- moved everything into the nessusdb executable
+- cleaned up the code
+	
+# 0.6.5 (August 15, 2010)
+- Initial public release

data/README.markdown

@@ -0,0 +1,126 @@
+# NessusDB
+
+NessusDB is [Nessus](http://www.nessus.org) parser, that converts the generated reports into a  [ActiveRecord](http://api.rubyonrails.org/classes/ActiveRecord/Base.html) database, this allows for easy report generation and vulnerability verification. 
+
+Version 1.4.3 is the current release.
+
+## Requirements
+
+### Ruby
+NessusDB has been tested with ruby-1.8.7-p334, ruby-1.9.1-p431, ruby-1.9.2-p180. Please try to use one of these versions if possible. I recommend using RVM to setup your ruby environment you can get it [here](https://rvm.beginrescueend.com/).
+
+### RubyGems
+NessusDB relies heavily on RubyGems to install other dependencies I highly recommend using it. RubyGems is included by default in the Ruby 1.9 branches.
+
+- libxml
+- rails
+- yaml 
+- logger
+- rmagick
+- gruff
+- prawn
+- mysql
+
+## Developmental Requirements
+
+These are all available through [RubyGems](http://rubygems.org/). The should be installed automatically when you install nessusdb, If not this command will install them all:
+
+	% gem install rmagick gruff prawn sham faker rspec rcov machinist yard mysql libxml-ruby rails sqlite3 logger yaml
+	
+**You my need sudo/root access depending on your system setup**
+
+Any database that ActiveRecord supports should work. NessusDB has been tested with [MySQL](http://www.mysql.com/) and [SQLite3](http://sqlite.org/). 
+
+## Installation
+Installation is really easy just gem install!
+
+	% gem install nessusdb
+
+## Database Setup
+
+	% nessusdb --create-config
+	% $EDITOR nessusdb.cfg
+	% nessusdb --create-tables
+
+1. Generate the nessusdb.cfg file.
+2. Edit the nessusdb.cfg file, filling in the variables as needed.
+3. Migrate the database schema.
+
+## Parsing Nessus Output
+
+	% nessusdb report1.nessus [report2.nessus ...]
+
+1. Parse the files by passing their names on the command line.
+
+
+# Viewing Data
+The data can be viewed with a query browser available for your database. A Rails front end will be available in the **future**.
+
+## Generating Reports
+To generate a report please execute the following after the the data is parsed into the database.
+
+	% nessusdb -t "TEMPLATE_PATH" -o "REPORT_NAME.pdf"
+	
+## NessusDB Console
+
+Using the NessusDB Console is just like using Rails. You can access all of the ActiveRecord models directly and pull specific data from each model. Like SQL only easier!
+
+	[hammackj@taco:~/Projects/public/nessusdb]$ ../bin/nessusdb --console
+
+	                                   _ _       
+	 _ __   ___  ___ ___ _   _ ___  __| | |__  
+	| '_ \ / _ \/ __/ __| | | / __|/ _` | '_ \ 
+	| | | |  __/\__ \__ \ |_| \__ \ (_| | |_) |
+	|_| |_|\___||___/___/\__,_|___/\__,_|_.__/ 
+
+	NessusDB Console v1.4.2
+	>> Host.first
+	=> #<NessusDB::Models::Host id: 1, report_id: 1, name: "10.69.69.74", os: "Linux Kernel 2.6 on Debian 4.0 (etch)", mac: "XX:XX:XX:XX:XX:XX", start: "2011-04-20 16:29:37", end: "2011-04-20 16:32:14", ip: "10.69.69.74", fqdn: "redada.hammackj.net", netbios: "REDADA", local_checks_proto: nil, smb_login_used: nil, ssh_auth_meth: nil, ssh_login_used: nil, pci_dss_compliance: nil, notes: nil>
+	
+## Templates
+Several templates are included:
+
+1. graphs.rb - several graphs written to disk as png's and as a complete pdf
+2. technical_findings.rb - a detailed pdf of the high and medium findings from the assessment
+3. finding_statistics.rb - this is a pdf summary of the assessment
+4. assets.rb - this is a summary of all the hosts found during the scan
+5. pci_compliance.rb - this generates of list of hosts that pass or failed pci/dss auditing
+6. exec_summary.rb - A sample executive summary report
+7. executive_summary.rb - A more detailed sample executive summary report
+8. findings_summary.rb - A summary of all the findings report
+9. ms_update_summary.rb - a summary of all the windows update enable hosts
+10. ms_patch_summary.rb - a summary of all the missing windows patches
+11. cover_sheet.rb - a example coversheet report
+12. findings_host.rb - list of findings per host
+	
+The templates are located in the nessusdb/templates folder, where ever the gem was installed. On a typical Mac OSX install the path is:
+
+	[hammackj@taco:~]$ ruby -v
+	ruby 1.8.7 (2009-06-12 patchlevel 174) [universal-darwin10.0]
+	[hammackj@taco:~]$ l /Library/Ruby/Gems/1.8/gems/nessusdb-1.4.0/lib/nessusdb/templates/
+	total 40
+	drwxr-xr-x  7 hammackj  admin   238B Oct 21 19:24 ./
+	drwxr-xr-x  8 hammackj  admin   272B Oct 21 19:24 ../
+	-rw-r--r--   1 hammackj  staff   695B Mar  9 15:59 assets.rb
+	-rw-r--r--   1 hammackj  staff   691B Mar  9 15:59 cover_sheet.rb
+	drwxr-xr-x   3 hammackj  staff   102B Mar  9 15:59 data/
+	-rw-r--r--   1 hammackj  staff   2.0K Mar  9 15:59 exec_summary.rb
+	-rw-r--r--   1 hammackj  staff   6.7K Mar  9 15:59 executive_summary.rb
+	-rw-r--r--   1 hammackj  staff   724B Mar  9 15:59 finding_statistics.rb
+	-rw-r--r--@  1 hammackj  staff   1.2K Mar 17 14:55 findings_host.rb
+	-rw-r--r--   1 hammackj  staff   1.5K Mar  9 15:59 findings_summary.rb
+	-rw-r--r--   1 hammackj  staff   831B Mar  9 15:59 graphs.rb
+	-rw-r--r--   1 hammackj  staff   1.2K Mar  9 15:59 host_summary.rb
+	-rw-r--r--   1 hammackj  staff   663B Mar  9 15:59 ms_patch_summary.rb
+	-rw-r--r--   1 hammackj  staff   924B Mar  9 15:59 ms_update_summary.rb
+	-rw-r--r--   1 hammackj  staff   1.6K Mar  9 15:59 pci_compliance.rb
+	-rw-r--r--   1 hammackj  staff   2.8K Mar  9 15:59 technical_findings.rb
+	[hammackj@taco:~]$ 
+
+The templates are written in ruby using [prawn](http://prawn.majesticseacreature.com/), they are fairly easy to make. I will add any templates as requested.
+
+# Issues
+If you have any problems, bugs or feature requests please use the [github issue tracker](http://github.com/hammackj/nessusdb/issues).
+
+# Contact
+You can reach me at jacob[dot]hammack[at]hammackj[dot]com.

data/Rakefile

@@ -0,0 +1,37 @@
+$LOAD_PATH.unshift File.expand_path("../lib", __FILE__)
+
+require 'rubygems' # not sure why...
+require "nessusdb"
+require 'rake'
+require 'rspec/core/rake_task'
+
+task :build do
+  system "gem build nessusdb.gemspec"
+end
+
+task :release => :build do
+  system "gem push nessusdb-#{NessusDB::VERSION}.gem"
+
+	puts "Just released NessusDB v#{NessusDB::VERSION}. NessusDB is always available in RubyGems!"
+end
+
+task :clean do
+	system "rm *.gem"
+	system "rm *.db"
+	system "rm *.cfg"
+	system "rm *.pdf"
+	system "rm -rf coverage"
+end
+
+task :report do
+  require 'cover_me'
+  CoverMe.complete!
+end
+
+RSpec::Core::RakeTask.new(:spec) do |t|
+	#t.spec_files = ["application_spec.rb", "item_spec.rb", "plugin_spec.rb", "banner_spec.rb", "host_spec.rb", "nessusdocument_spec.rb", "report_spec.rb"]
+Rake::Task['report'].invoke
+
+#  t.rcov = true
+#  t.rcov_opts = ['--exclude osx\/objc,gems\/,spec\/,features\/', 'specs']
+end

data/TODO.markdown

@@ -0,0 +1,69 @@
+# TODO
+
+**Release dates are estimates, and features can be changed at any time.**
+
+## 1.4.5 (May)
+- Rename Project
+	- Possible Names
+		- ndb (Want to get away from the DB stuff)
+		- fender 
+		- Euenos
+		- camara
+		- Hayabusa (Falcon)
+		- Taka (Hawk)
+		- Fukurou (owl) **
+		- risu (squirrel) ***
+		- Bunseki (analysis)
+- Add a CVSS risk factor graph
+- Update Assets templates to use this if possible http://www.nessus.org/plugins/index.php?view=single&id=54615
+
+## 1.5 (7/4/2011)
+- Clean up / Bug fixes before 2.0
+- Create rSpec tests for everything (100% code coverage goal)
+	- Parser tests
+	- application specs
+		- Add a failed load_config() test
+	- models tests
+		- policy
+		- family selection
+		- individualpluginselection
+		- reference
+		- version
+		- report
+		- plugin
+		- plugin preference
+		- server preference
+- Create test fixtures
+- Comment all named scope from 1.2
+- Create a Nessus document generator, for testing the parser
+- 100% code coverage for testing
+- Rework the blacklisting stuff
+	- Add blacklisting to config
+- Add Schema checks to make sure the schema is compatible with the version of nessusdb
+	- Check to see that the xml is version 2
+		- Version 1 = NessusClientData
+		- Version 2 = NessusClientData_V2
+
+
+- DSL for report creation to abstract the reports to have different output types
+- Provide more templates
+	- Virtual Machine Summary
+	- Fix list Report?
+- Add template validation and more error checking
+- Colorize the reports with better style
+- Sort Technical Findings Report by count/score	
+
+## 1.6 (9/4/2011)
+- Remove rmagick 
+- Move to ruby 1.9.2 only support
+- Add Parser for NBE Format
+- Add Parser for NSR Format
+- Add Parser for V1 of the XML Format
+- Add Parser for OpenVas Output
+- Add Parser for SecurityCenter Output
+- Add Parser for Nexpose
+- Add Parser for Qualys
+- Look at moving to nokogiri for xml parsing, current benchmarks so it faster than libxml-ruby; http://nokogiri.org
+
+## 2.0 (12/4/2011)
+- Rails FrontEnd to NessusDB

data/bin/risu

@@ -0,0 +1,12 @@
+#!/usr/bin/env ruby
+
+$LOAD_PATH.unshift(File.join(File.dirname(__FILE__), '/../lib'))
+
+$stdout.sync = true
+$stderr.sync = true
+
+require 'rubygems'
+require 'nessusdb'
+
+app = NessusDB::CLI::Application.new
+app.run

data/lib/nessusdb.rb

@@ -0,0 +1,38 @@
+# encoding: utf-8
+
+module NessusDB
+	APP_NAME = "risu"
+	VERSION = "1.4.3"
+	GRAPH_WIDTH = 750
+	EMAIL = "jacob.hammack@hammackj.com"
+	CONFIG_FILE = "./risu.cfg"
+end
+
+require 'active_record'
+require "active_support"
+require 'libxml'
+require 'logger'
+require 'ipaddr'
+require 'yaml'
+require 'gruff'
+require 'prawn'
+require 'prawn/layout'
+require 'stringio'
+require 'mysql'
+require 'irb'
+
+require 'optparse'
+
+if ActiveRecord::Base.connected? == true
+	require 'nessusdb/schema'
+end
+
+require 'nessusdb/listener'
+require 'nessusdb/prawn_templater'
+require 'nessusdb/nessusdocument'
+
+require 'nessusdb/cli'
+require 'nessusdb/exceptions'
+require 'nessusdb/models'
+
+include NessusDB::Models