RubyGems - risu - Versions diffs - 1.4.6 → 1.4.7 - Mend

risu 1.4.6 → 1.4.7

Files changed (8) hide show

data/NEWS.markdown +6 -1
data/TODO.markdown +14 -6
data/lib/risu.rb +1 -1
data/lib/risu/base/template_manager.rb +1 -1
data/lib/risu/models/host.rb +43 -20
data/lib/risu/models/item.rb +1 -1
data/lib/risu/templates/technical_findings.rb +1 -1
metadata +112 -119

data/NEWS.markdown CHANGED Viewed

@@ -1,6 +1,11 @@
 # News
-#1.4.6 (July, 2011)
+#1.4.7 (August 13, 2011)
+- Fixed issue #39 Ruby 1.8.7 Syntax error reported by mlpotgieter
+- Ruby 1.8.7 will no longer be supported in v1.5, please upgrade your ruby installs.
+-
+#1.4.6 (July 12, 2011)
 - Added pcidss:dns_zone_transfer to the Nessus parser
 - Added pcidss:obsolete_operating_system to the Nessus parser
 - Removed warnings about several Microsoft patch tags, not sure what to do with them at the moment.

data/TODO.markdown CHANGED Viewed

@@ -2,10 +2,18 @@
 **Release dates are estimates, and features can be changed at any time.**
-## 1.4.6
+## 1.4.7
+- Make sure all classification headers are upcase
+- Ensure font sizes are standard in the templates
+- The font in tech findings could be 1 size smaller
+- Add a filtering system for lowering the rating of plugins based on config
+- Compact the data in tech findings to be more printer friendly
+- pcidss:directory_browsing
+- pcidss:known_credentials
+- pcidss:compromised_host:worm
-## 1.5 (7/4/2011)
+## 1.5 (8/4/2011)
 - Rework the blacklisting of plugins/hosts add to the config file
 - Complete comments for all existing code
 - Create rSpec tests for everything (95%+ code coverage goal)
@@ -35,7 +43,7 @@
 		- pci compliance
 		- tech findings
-##1.5.1 (8/4/2011) - Template work
+##1.5.1 (10/4/2011) - Template work
 - Provide more templates
 	- Virtual Machine Summary
 	- Fix list Report?
@@ -45,11 +53,11 @@
 - Add template validation and more error checking
 - Colorize the reports with better style
-##1.5.2 (9/4/2011) - Parser work
+##1.5.2 (11/4/2011) - Parser work
 - Add Schema checks to make sure the schema is compatible with the version of risu
 - Create a Nessus document generator, for testing the parser
-#1.5.3 (10/4/2011) - Template Work
+#1.5.3 (12/4/2011) - Template Work
 - Implement different renderers
 	- pdf
 	- cvs
@@ -58,7 +66,7 @@
 - Abstract the api for prawn to support different renders
 - DSL for report creation to abstract the reports to have different output types
-## 1.6 (11/4/2011)
+## 1.6 (01/4/2012)
 - Remove rmagick (GRRRR!)
 - Move to ruby 1.9.2 only support
 - Add Parser for Nessus NBE Format

data/lib/risu.rb CHANGED Viewed

@@ -1,6 +1,6 @@
 module Risu
 	APP_NAME = "risu"
-	VERSION = "1.4.6"
+	VERSION = "1.4.7"
 	GRAPH_WIDTH = 750
 	EMAIL = "jacob.hammack@hammackj.com"
 	CONFIG_FILE = "./risu.cfg"

data/lib/risu/base/template_manager.rb CHANGED Viewed

@@ -98,7 +98,7 @@ module Risu
 				puts "Available Templates"
 			  @registered_templates.each do |x|
 			      p = x.new
-			      puts "\t#{p.template_info[:name]} - #{p.template_info[:description]}\n",
+			      puts "\t#{p.template_info[:name]} - #{p.template_info[:description]}\n"
 			    end
 			end
 		end

data/lib/risu/models/host.rb CHANGED Viewed

@@ -350,15 +350,15 @@ module Risu
 					w7 = Host.os_windows_7.all.count
 					other = (Host.os_windows.os_windows_other).all.count
-					g.data("NT", nt) unless nt == 0
-					g.data("2000", w2k) unless w2k == 0
-					g.data("XP", xp) unless xp == 0
-					g.data("Server 2003", w2k3) unless w2k3 == 0
-					g.data("Vista", vista) unless vista == 0
-					g.data("Server 2008", w2k8) unless w2k8 == 0
-					g.data("7", w7) unless w7 == 0
-					g.data("Other Windows", other) unless other == 0
+					g.data("NT", nt) if nt >= 1
+					g.data("2000", w2k) if w2k >= 1
+					g.data("XP", xp) if xp >= 1
+					g.data("Server 2003", w2k3) if w2k3 >= 1
+					g.data("Vista", vista) if vista >= 1
+					g.data("Server 2008", w2k8) if w2k8 >= 1
+					g.data("7", w7) if w7 >= 1
+					g.data("Other Windows", other) if other >= 1
 					StringIO.new(g.to_blob)
 				end
@@ -381,19 +381,20 @@ module Risu
 					xp_percent = (xp.to_f / windows_os_count.to_f) * 100
 					w2k3_percent = (w2k3.to_f / windows_os_count.to_f) * 100
 					vista_percent = (vista.to_f / windows_os_count.to_f) * 100
 					w2k8_percent = (w2k8.to_f / windows_os_count.to_f) * 100
 					w7_percent = (w7.to_f / windows_os_count.to_f) * 100
 					text = "This graph shows the percentage of the different Microsoft Windows based operating systems " +
 					"found on the #{Report.title} network.\n\n"
-					text << "#{nt_percent.round.to_i}% of the network is Windows NT. " if nt > 0
-					text << "#{w2k_percent.round.to_i}% of the network is Windows 2000. " if w2k > 0
-					text << "#{xp_percent.round.to_i}% of the network is Windows XP. " if xp > 0
-					text << "#{w2k3_percent.round.to_i}% of the network is Windows Server 2003. " if w2k3 > 0
-					text << "#{vista_percent.round.to_i}% of the network is Windows Vista. " if vista > 0
-					text << "#{w2k8_percent.round.to_i}% of the network is Windows Server 2008. " if w2k8 > 0
-					text << "#{w7_percent.round.to_i}% of the network is Windows 7. " if w7 > 0
+					text << "#{nt_percent.round.to_i}% of the network is Windows NT. " if nt_percent >= 1
+					text << "#{w2k_percent.round.to_i}% of the network is Windows 2000. " if w2k_percent >= 1
+					text << "#{xp_percent.round.to_i}% of the network is Windows XP. " if xp_percent >= 1
+					text << "#{w2k3_percent.round.to_i}% of the network is Windows Server 2003. " if w2k3_percent >= 1
+					text << "#{vista_percent.round.to_i}% of the network is Windows Vista. " if vista_percent >= 1
+					text << "#{w2k8_percent.round.to_i}% of the network is Windows Server 2008. " if w2k8_percent >= 1
+					text << "#{w7_percent.round.to_i}% of the network is Windows 7. " if w7_percent >= 1
 					text << "\n\n" << unsupported_os_windows if nt > 0 or w2k > 0
@@ -405,14 +406,16 @@ module Risu
 				def unsupported_os_text
 					aix_text = unsupported_os_aix
 					win_text = unsupported_os_windows
+					freebsd_text = unsupported_os_freebsd
-					unsupported_os_text = "Several unsupported operating systems were also discovered on the network. " +
+					unsupported_os_text = "Several unsupported operating systems were discovered on the network. " +
 					"These operating systems are no longer updated by the specific vendor. These operating systems should be " +
 					"updated and replaced as soon as possible.\n\n"
 					unsupported_os_text << "#{win_text}" if win_text != ""
 					unsupported_os_text << "#{aix_text}" if aix_text != ""
+					unsupported_os_text << "#{freebsd_text}" if freebsd_text != ""
 					return unsupported_os_text
 				end
@@ -446,7 +449,20 @@ module Risu
 					return text
 				end
+				#
+				#
+				def unsupported_os_freebsd
+					text = ""
+					freebsd = Host.os_freebsd.where("OS LIKE 'FreeBSD 5.%'")
+					text = "FreeBSD 5 support ended on 2008-05-31. Upgrade to FreeBSD 8.2 or 7.4. For more information, " +
+					"see : http://www.freebsd.org/security/\n\n" if freebsd.count >= 1
+					return text
+				end
+				#turn the os counts into blocks
 				def other_os_graph_text
 					text = "This graph shows the percentage of the different Non-Windows based operating systems " +
 					"found on the #{Report.title} network.\n\n"
@@ -465,13 +481,20 @@ module Risu
 					linux_percent = (linux.to_f / other_os_count.to_f) * 100
 					aix_percent = (aix.to_f / other_os_count.to_f) * 100
+					freebsd_percent = (freebsd.to_f / other_os_count.to_f) * 100
+					vmware_percent = (esx.to_f / other_os_count.to_f) * 100
 					#todo add other os's here
-					text << "#{linux_percent.to_i}% of the network is running Linux based operating systems. " if linux > 0
-					text << "#{aix_percent.to_i}% of the network is running AIX based operating systems. " if aix > 0
+					text << "#{linux_percent.to_i}% of the network is running an Linux based operating system. " if linux_percent >= 1
+					text << "#{aix_percent.to_i}% of the network is running an AIX based operating system. " if aix_percent >= 1
+					text << "#{freebsd_percent.to_i}% of the network is running an FreeBSD based operating system. " if freebsd_percent >= 1
+					text << "#{vmware_percent.to_i}% of the network is running an VMware based operating system. " if vmware_percent >= 1
 					text << "\n\n"<< unsupported_os_aix if aix > 0
+					text << "\n\n" << unsupported_os_freebsd if freebsd > 0
 					return text
 				end

data/lib/risu/models/item.rb CHANGED Viewed

@@ -164,7 +164,7 @@ module Risu
 				def risks_by_service_graph_text
 					"This graph is a representation of the findings found by service. This graph can help " +
 					"understand what services are running on the network and if they are vulnerable, where " +
-					"the risks are and how they should be protected."
+					"the risks are and how they should be protected.\n\n"
 				end

data/lib/risu/templates/technical_findings.rb CHANGED Viewed

@@ -17,7 +17,7 @@ module Risu
 			#
 			#
 			def render(output)
-				output.text Report.classification, :align => :center
+				output.text Report.classification.upcase, :align => :center
 				output.text "\n"
 				output.font_size(22) { output.text Report.title, :align => :center }

metadata CHANGED Viewed

@@ -1,174 +1,171 @@
---- !ruby/object:Gem::Specification
+--- !ruby/object:Gem::Specification
 name: risu
-version: !ruby/object:Gem::Version
+version: !ruby/object:Gem::Version
+  version: 1.4.7
   prerelease:
-  version: 1.4.6
 platform: ruby
-authors:
+authors:
 - Jacob Hammack
 autorequire:
 bindir: bin
 cert_chain: []
-date: 2011-07-12 00:00:00 -05:00
-default_executable:
-dependencies:
-- !ruby/object:Gem::Dependency
+date: 2011-08-13 00:00:00.000000000Z
+dependencies:
+- !ruby/object:Gem::Dependency
   name: rspec
-  prerelease: false
-  requirement: &id001 !ruby/object:Gem::Requirement
+  requirement: &70222431373580 !ruby/object:Gem::Requirement
     none: false
-    requirements:
-    - - "="
-      - !ruby/object:Gem::Version
+    requirements:
+    - - =
+      - !ruby/object:Gem::Version
         version: 2.5.0
   type: :development
-  version_requirements: *id001
-- !ruby/object:Gem::Dependency
-  name: rcov
   prerelease: false
-  requirement: &id002 !ruby/object:Gem::Requirement
+  version_requirements: *70222431373580
+- !ruby/object:Gem::Dependency
+  name: rcov
+  requirement: &70222431373000 !ruby/object:Gem::Requirement
     none: false
-    requirements:
-    - - ">="
-      - !ruby/object:Gem::Version
+    requirements:
+    - - ! '>='
+      - !ruby/object:Gem::Version
         version: 0.9.9
   type: :development
-  version_requirements: *id002
-- !ruby/object:Gem::Dependency
-  name: yard
   prerelease: false
-  requirement: &id003 !ruby/object:Gem::Requirement
+  version_requirements: *70222431373000
+- !ruby/object:Gem::Dependency
+  name: yard
+  requirement: &70222431372420 !ruby/object:Gem::Requirement
     none: false
-    requirements:
-    - - ">="
-      - !ruby/object:Gem::Version
+    requirements:
+    - - ! '>='
+      - !ruby/object:Gem::Version
         version: 0.6.4
   type: :development
-  version_requirements: *id003
-- !ruby/object:Gem::Dependency
-  name: machinist
   prerelease: false
-  requirement: &id004 !ruby/object:Gem::Requirement
+  version_requirements: *70222431372420
+- !ruby/object:Gem::Dependency
+  name: machinist
+  requirement: &70222431371900 !ruby/object:Gem::Requirement
     none: false
-    requirements:
-    - - ">="
-      - !ruby/object:Gem::Version
+    requirements:
+    - - ! '>='
+      - !ruby/object:Gem::Version
         version: 1.0.6
   type: :development
-  version_requirements: *id004
-- !ruby/object:Gem::Dependency
-  name: sham
   prerelease: false
-  requirement: &id005 !ruby/object:Gem::Requirement
+  version_requirements: *70222431371900
+- !ruby/object:Gem::Dependency
+  name: sham
+  requirement: &70222431371240 !ruby/object:Gem::Requirement
     none: false
-    requirements:
-    - - ">="
-      - !ruby/object:Gem::Version
+    requirements:
+    - - ! '>='
+      - !ruby/object:Gem::Version
         version: 0.4.0
   type: :development
-  version_requirements: *id005
-- !ruby/object:Gem::Dependency
-  name: faker
   prerelease: false
-  requirement: &id006 !ruby/object:Gem::Requirement
+  version_requirements: *70222431371240
+- !ruby/object:Gem::Dependency
+  name: faker
+  requirement: &70222431370740 !ruby/object:Gem::Requirement
     none: false
-    requirements:
-    - - ">="
-      - !ruby/object:Gem::Version
+    requirements:
+    - - ! '>='
+      - !ruby/object:Gem::Version
         version: 0.9.5
   type: :development
-  version_requirements: *id006
-- !ruby/object:Gem::Dependency
-  name: rails
   prerelease: false
-  requirement: &id007 !ruby/object:Gem::Requirement
+  version_requirements: *70222431370740
+- !ruby/object:Gem::Dependency
+  name: rails
+  requirement: &70222431370160 !ruby/object:Gem::Requirement
     none: false
-    requirements:
-    - - ">="
-      - !ruby/object:Gem::Version
+    requirements:
+    - - ! '>='
+      - !ruby/object:Gem::Version
         version: 3.0.7
   type: :runtime
-  version_requirements: *id007
-- !ruby/object:Gem::Dependency
-  name: libxml-ruby
   prerelease: false
-  requirement: &id008 !ruby/object:Gem::Requirement
+  version_requirements: *70222431370160
+- !ruby/object:Gem::Dependency
+  name: libxml-ruby
+  requirement: &70222431369480 !ruby/object:Gem::Requirement
     none: false
-    requirements:
-    - - ">="
-      - !ruby/object:Gem::Version
+    requirements:
+    - - ! '>='
+      - !ruby/object:Gem::Version
         version: 1.1.4
   type: :runtime
-  version_requirements: *id008
-- !ruby/object:Gem::Dependency
-  name: prawn
   prerelease: false
-  requirement: &id009 !ruby/object:Gem::Requirement
+  version_requirements: *70222431369480
+- !ruby/object:Gem::Dependency
+  name: prawn
+  requirement: &70222431369020 !ruby/object:Gem::Requirement
     none: false
-    requirements:
-    - - ">="
-      - !ruby/object:Gem::Version
+    requirements:
+    - - ! '>='
+      - !ruby/object:Gem::Version
         version: 0.11.1
   type: :runtime
-  version_requirements: *id009
-- !ruby/object:Gem::Dependency
-  name: gruff
   prerelease: false
-  requirement: &id010 !ruby/object:Gem::Requirement
+  version_requirements: *70222431369020
+- !ruby/object:Gem::Dependency
+  name: gruff
+  requirement: &70222431368460 !ruby/object:Gem::Requirement
     none: false
-    requirements:
-    - - ">="
-      - !ruby/object:Gem::Version
+    requirements:
+    - - ! '>='
+      - !ruby/object:Gem::Version
         version: 0.3.6
   type: :runtime
-  version_requirements: *id010
-- !ruby/object:Gem::Dependency
-  name: mysql
   prerelease: false
-  requirement: &id011 !ruby/object:Gem::Requirement
+  version_requirements: *70222431368460
+- !ruby/object:Gem::Dependency
+  name: mysql
+  requirement: &70222431367900 !ruby/object:Gem::Requirement
     none: false
-    requirements:
-    - - ">="
-      - !ruby/object:Gem::Version
+    requirements:
+    - - ! '>='
+      - !ruby/object:Gem::Version
         version: 2.8.1
   type: :runtime
-  version_requirements: *id011
-- !ruby/object:Gem::Dependency
-  name: rmagick
   prerelease: false
-  requirement: &id012 !ruby/object:Gem::Requirement
+  version_requirements: *70222431367900
+- !ruby/object:Gem::Dependency
+  name: rmagick
+  requirement: &70222431367320 !ruby/object:Gem::Requirement
     none: false
-    requirements:
-    - - ">="
-      - !ruby/object:Gem::Version
+    requirements:
+    - - ! '>='
+      - !ruby/object:Gem::Version
         version: 2.13.1
   type: :runtime
-  version_requirements: *id012
-- !ruby/object:Gem::Dependency
-  name: sqlite3
   prerelease: false
-  requirement: &id013 !ruby/object:Gem::Requirement
+  version_requirements: *70222431367320
+- !ruby/object:Gem::Dependency
+  name: sqlite3
+  requirement: &70222431366740 !ruby/object:Gem::Requirement
     none: false
-    requirements:
-    - - ">="
-      - !ruby/object:Gem::Version
+    requirements:
+    - - ! '>='
+      - !ruby/object:Gem::Version
         version: 1.3.3
   type: :runtime
-  version_requirements: *id013
+  prerelease: false
+  version_requirements: *70222431366740
 description: risu is a Nessus .nessus xml parser and report generation tool
 email: jacob.hammack@hammackj.com
-executables:
+executables:
 - risu
 extensions: []
-extra_rdoc_files:
+extra_rdoc_files:
 - README.markdown
 - LICENSE
 - NEWS.markdown
 - TODO.markdown
 - KNOWNISSUES.markdown
-files:
+files:
 - KNOWNISSUES.markdown
 - LICENSE
 - NEWS.markdown
@@ -221,33 +218,29 @@ files:
 - lib/risu.rb
 - risu.gemspec
 - bin/risu
-has_rdoc: true
 homepage: http://www.hammackj.com/projects/risu
-licenses:
+licenses:
 - BSD
 post_install_message:
 rdoc_options: []
-require_paths:
+require_paths:
 - lib
-required_ruby_version: !ruby/object:Gem::Requirement
+required_ruby_version: !ruby/object:Gem::Requirement
   none: false
-  requirements:
-  - - ">="
-    - !ruby/object:Gem::Version
-      version: "0"
-required_rubygems_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - ! '>='
+    - !ruby/object:Gem::Version
+      version: '0'
+required_rubygems_version: !ruby/object:Gem::Requirement
   none: false
-  requirements:
-  - - ">="
-    - !ruby/object:Gem::Version
+  requirements:
+  - - ! '>='
+    - !ruby/object:Gem::Version
       version: 1.6.0
 requirements: []
 rubyforge_project: risu
-rubygems_version: 1.6.2
+rubygems_version: 1.8.6
 signing_key:
 specification_version: 3
 summary: risu
 test_files: []