risu 1.4.8 → 1.4.9

data/LICENSE

@@ -1,4 +1,4 @@
-Copyright (c) 2010-2011 Jacob Hammack, Hammackj LLC
+Copyright (c) 2010-2012 Jacob Hammack, Hammackj LLC
 All rights reserved.
 
 Redistribution and use in source and binary forms, with or without

data/NEWS.markdown

@@ -1,5 +1,30 @@
 # News
 
+#1.4.9 (January 23, 2012)
+- Added a simple notable vulnerability template table report
+- Added a detailed notable vulnerability template like the technical_findings report just limited to the top vulnerabilities up to 10
+- API for the top 10 vulnerabilities can be found on the Item model
+	- top_10_sorted_raw(), returns the top 10 vulnerabilities in an Array sorted in the form of [plugin_id, count]
+	- top_10_sorted(), returns the top 10 vulnerabilities in an Array sorted in the form of [name, count]
+	- top_10_table(output), inserts a table into the output parameter object with the top 10 data using the top_10_sorted() method
+- All report template classification headers are forced upper case
+- Added 6 PCI related fields
+	- pcidss:directory_browsing
+	- pcidss:known_credentials
+	- pcidss:compromised_host:worm
+	- pcidss:unprotected_mssql_db
+	- pcidss:obsolete_software
+	- pcidss:www:sql_injection
+- Added New XML fields
+	- exploit_framework_exploithub
+	- exploithub_sku
+	- stig_severity
+- Item.risks_by_host now only returns High findings. New accessors for each level will be added for 1.5 with support for the next version of Nessus
+- Fixed a bug on the exec_summary_detailed detailed report
+- A quick reference for Microsoft findings can now be found in the Patch model,
+You are able to get host_id, name(patch name, ie MS01-001), value (plugin_id)
+- Please report any missing tags that risu outputs to jacob[dot]hammackj[@]hammackj[.]com, I expect a ton of Microsoft Patch tags missing
+
 #1.4.8 (August 21, 2011)
 - Fixed a gemspec dependency error reported by mlpotgieter
 - Fixed a parser error related to Microsoft Bulletins report by stevelodin

data/README.markdown

@@ -2,7 +2,7 @@
 
 Risu is [Nessus](http://www.nessus.org) parser, that converts the generated reports into a  [ActiveRecord](http://api.rubyonrails.org/classes/ActiveRecord/Base.html) database, this allows for easy report generation and vulnerability verification. 
 
-Version 1.4.5 is the current release.
+Version 1.4.9 is the current release.
 
 ## Requirements
 
@@ -10,7 +10,7 @@ Version 1.4.5 is the current release.
 Risu has been tested with ruby-1.8.7-p334, ruby-1.9.1-p431, ruby-1.9.2-p180. Please try to use one of these versions if possible. I recommend using RVM to setup your ruby environment you can get it [here](https://rvm.beginrescueend.com/).
 
 ### RubyGems
-Risu relies heavily on RubyGems to install other dependencies I highly recommend using it. RubyGems is included by default in the Ruby 1.9 branches.
+Risu relies heavily on [RubyGems](http://rubygems.org/) to install other dependencies I highly recommend using it. RubyGems is included by default in the 1.9.x versions of [Ruby](http://ruby-lang.org/).
 
 - libxml
 - rails
@@ -74,7 +74,7 @@ Using the risu Console is just like using Rails. You can access all of the Activ
 	|_|  |_|___/\__,_|
 
 
-	risu Console v1.4.5
+	risu Console v1.4.9
 	>> Host.first
 	=> #<Risu::Models::Host id: 1, report_id: 1, name: "10.69.69.74", os: "Linux Kernel 2.6 on Debian 4.0 (etch)", mac: "XX:XX:XX:XX:XX:XX", start: "2011-04-20 16:29:37", end: "2011-04-20 16:32:14", ip: "10.69.69.74", fqdn: "redada.hammackj.net", netbios: "REDADA", local_checks_proto: nil, smb_login_used: nil, ssh_auth_meth: nil, ssh_login_used: nil, pci_dss_compliance: nil, notes: nil>
 	
@@ -100,7 +100,10 @@ Several templates are included:
 		template - template
 	[hammackj@taco:~/Projects/public/risu]$ 
 
-The templates are written in ruby using [prawn](http://prawn.majesticseacreature.com/), they are fairly easy to make. I will add any templates as requested. See 'template' for creating your own template.
+The templates are written in ruby using [prawn](http://prawn.majesticseacreature.com/), they are fairly easy to make. I will add any templates as requested. See the 'template' example for creating your own template.
+
+# Contributing
+If you would like to contribute templates/bug fixes/etc to risu. The easiest way is to fork the project on [github](http://github.com/hammackj/risu) and make the changes in your fork and the submit a pull request to the project.
 
 # Issues
 If you have any problems, bugs or feature requests please use the [github issue tracker](http://github.com/hammackj/risu/issues).

data/TODO.markdown

@@ -2,21 +2,21 @@
 
 **Release dates are estimates, and features can be changed at any time.**
 
-## 1.4.9
-- Make sure all classification headers are upcase
+## 1.4.10 (??)
 - Ensure font sizes are standard in the templates
 - The font in tech findings could be 1 size smaller
 - Add a filtering system for lowering the rating of plugins based on config
 - Compact the data in tech findings to be more printer friendly
-
-- pcidss:directory_browsing
-- pcidss:known_credentials
-- pcidss:compromised_host:worm
 - Add tests for Patch model
--
+- Plugin reference accessors with auto text
+- finding summary coversheet looks odd
+- unsupported OS template
+- add list of unsupported os ip's accessor
+- detailed findings should be combined to save paper on printing
+- add more detailed pci templates
 
-## 1.5 (8/4/2011)
-- Rework the blacklisting of plugins/hosts add to the config file
+## 1.5 (??)
+- Nessus 5.0 compatible
 - Complete comments for all existing code
 - Create rSpec tests for everything (95%+ code coverage goal)
 	- Parser tests
@@ -45,7 +45,16 @@
 		- pci compliance
 		- tech findings
 
-##1.5.1 (10/4/2011) - Template work
+- CentOS 6 tutorial
+- Ubuntu latest tutorial
+- Implement the ability to filter data out of the report
+	- Filter on
+		- Host Mac Address
+		- Host IP
+		- Plugin ID
+		- 
+
+##1.5.1 (??) - Template work
 - Provide more templates
 	- Virtual Machine Summary
 	- Fix list Report?
@@ -56,11 +65,11 @@
 - Colorize the reports with better style
 - Added TOC/Index to the technical findings report, issue 15
 	
-##1.5.2 (11/4/2011) - Parser work
+##1.5.2 (??) - Parser work
 - Add Schema checks to make sure the schema is compatible with the version of risu
 - Create a Nessus document generator, for testing the parser
 
-#1.5.3 (12/4/2011) - Template Work
+#1.5.3 (??) - Template Work
 - Implement different renderers
 	- pdf
 	- cvs
@@ -69,7 +78,7 @@
 - Abstract the api for prawn to support different renders
 - DSL for report creation to abstract the reports to have different output types
 
-## 1.6 (01/4/2012)
+## 1.6 (??)
 - Remove rmagick (GRRRR!)
 - Move to ruby 1.9.2 only support
 - Add Parser for Nessus NBE Format
@@ -79,8 +88,8 @@
 - Add Parser for SecurityCenter Output
 - Add Parser for Nexpose xml
 - Add Parser for Qualys xml
-- Look at moving to nokogiri for xml parsing, current benchmarks so it faster than libxml-ruby; http://nokogiri.org
+- Look at moving to nokogiri for xml parsing; http://nokogiri.org
 - Easier way to select the Scan to generate reports from
 
-## 2.0 (?)
+## 2.0 (??)
 - Rails FrontEnd to Risu

data/lib/risu/base/schema.rb

@@ -69,6 +69,12 @@ module Risu
 				t.string :pcidss_medium_risk_flaw
 				t.string :pcidss_reachable_db
 				t.string :pcidss_www_xss
+				t.string :pcidss_directory_browsing
+				t.string :pcidss_known_credentials
+				t.string :pcidss_compromised_host_worm
+				t.string :pcidss_unprotected_mssql_db
+				t.string :pcidss_obsolete_software
+				t.string :pcidss_www_sql_injection
 				t.string :system_type
 				t.text :notes
 			end
@@ -107,6 +113,9 @@ module Risu
 				t.text :solution
 				t.text :synopsis
 				t.string :plugin_type
+				t.string :exploit_framework_exploithub
+				t.string :exploithub_sku
+				t.string :stig_severity
 			end
 
 			create_table :individual_plugin_selections do |t|

data/lib/risu/base/template_base.rb

@@ -1,6 +1,7 @@
 module Risu
 	module Base
-  	#
+
+  	# Base template class, all report templates must be a subclass of this.
 		#
 		class TemplateBase			
 	    @possible_templates = []
@@ -9,12 +10,14 @@ module Risu
 	      attr_reader :possible_templates
 	    end
     	
+			# Accessor for template metadata
 			#
-			#
+			# @return [Hash] Containing template metadata
 			attr_accessor :template_info
 			
-			#
-			#
+			#  Adds any class that inherits from [TemplateBase] into an [Array] of
+			# possible templates for further validation.
+			#			
 	    def self.inherited(child)
 	      possible_templates << child
 	    end

data/lib/risu/base.rb

@@ -3,11 +3,6 @@ module Risu
 	end
 end
 
-#Remove this by 1.5 as it doesn't seem to be needed
-#if ActiveRecord::Base.connected? == true
-#	require 'risu/base/schema'
-#end
-
 require 'risu/base/template_base'
 require 'risu/base/template_manager'
 require 'risu/base/prawn_templater'

data/lib/risu/cli/application.rb

@@ -132,15 +132,11 @@ module Risu
 
 				rescue ActiveRecord::AdapterNotSpecified => ans
 					puts "[!] Database adapter not found, please check your config file"
-
 					puts "#{ans.message}\n #{ans.backtrace}" if @options[:debug]
-
 					exit
 				rescue ActiveRecord::AdapterNotFound => anf
 					puts "[!] Database adapter not found, please check your config file"
-
 					puts "#{anf.message}\n #{anf.backtrace}" if @options[:debug]
-
 					exit
 				rescue => e
 					puts "[!] Exception! #{e.message}\n #{e.backtrace}"

data/lib/risu/models/host.rb

@@ -273,8 +273,9 @@ module Risu
 				# @return [StringIO] Binary image object of the results
 				def top_vuln_graph(limit=10)
 					g = Gruff::Bar.new(GRAPH_WIDTH)
-					g.title = sprintf "Top %d High/Medium Finding Count Per Host ", Item.risks_by_host(limit).all.count
+					g.title = sprintf "Top 10 Hosts with Notable Findings Count"
 					g.sort = false
+					g.y_axis_increment = 1
 					g.theme = {
 						:colors => %w(red orange yellow blue green purple black grey brown pink),
 						:background_colors => %w(white white)
@@ -282,9 +283,11 @@ module Risu
 
 					Item.risks_by_host(limit).all.each do |item|
 						ip = Host.find_by_id(item.host_id).name
-						count = Item.where(:host_id => item.host_id).where("severity IN (?)", [2,3]).count
-
-						g.data(ip, count)
+#						count = Item.where(:host_id => item.host_id).where("severity IN (?)", [2,3]).count
+						count = Item.where(:host_id => item.host_id).where(:severity => 3).count 
+						if count > 0
+							g.data(ip, count)
+						end
 					end
 
 					StringIO.new(g.to_blob)
@@ -359,10 +362,10 @@ module Risu
 					g.data("Server 2008", w2k8) if w2k8 >= 1
 					g.data("7", w7) if w7 >= 1
 					g.data("Other Windows", other) if other >= 1
-					
+
 					StringIO.new(g.to_blob)
 				end
-				
+
 				#
 				#
 				def windows_os_graph_text
@@ -374,21 +377,21 @@ module Risu
 					w2k8 = Host.os_windows_2k8.all.count
 					w7 = Host.os_windows_7.all.count
 					other = (Host.os_windows.os_windows_other).all.count
-					
-					windows_os_count = nt + w2k + xp + w2k3 + vista + w7 + w2k8
-					
+
+					windows_os_count = nt + w2k + xp + w2k3 + vista + w7 + w2k8 + other
+
 					nt_percent = (nt.to_f / windows_os_count.to_f) * 100
 					w2k_percent = (w2k.to_f / windows_os_count.to_f) * 100
 					xp_percent = (xp.to_f / windows_os_count.to_f) * 100
 					w2k3_percent = (w2k3.to_f / windows_os_count.to_f) * 100
 					vista_percent = (vista.to_f / windows_os_count.to_f) * 100
-					
+
 					w2k8_percent = (w2k8.to_f / windows_os_count.to_f) * 100
 					w7_percent = (w7.to_f / windows_os_count.to_f) * 100
-					
+
 					text = "This graph shows the percentage of the different Microsoft Windows based operating systems " +
 					"found on the #{Report.title} network.\n\n"
-					
+
 					text << "#{nt_percent.round.to_i}% of the network is Windows NT. " if nt_percent >= 1
 					text << "#{w2k_percent.round.to_i}% of the network is Windows 2000. " if w2k_percent >= 1
 					text << "#{xp_percent.round.to_i}% of the network is Windows XP. " if xp_percent >= 1
@@ -396,10 +399,10 @@ module Risu
 					text << "#{vista_percent.round.to_i}% of the network is Windows Vista. " if vista_percent >= 1
 					text << "#{w2k8_percent.round.to_i}% of the network is Windows Server 2008. " if w2k8_percent >= 1
 					text << "#{w7_percent.round.to_i}% of the network is Windows 7. " if w7_percent >= 1
-					
+
 					text << "\n\n" << unsupported_os_windows if nt > 0 or w2k > 0
-					
-					return text					
+
+					return text
 				end
 
 				# @todo add plural check
@@ -411,12 +414,12 @@ module Risu
 
 					unsupported_os_text = "Several unsupported operating systems were discovered on the network. " +
 					"These operating systems are no longer updated by the specific vendor. These operating systems should be " +
-					"updated and replaced as soon as possible.\n\n"
+					"updated and replaced as soon as possible. If possible, disconnected from the network until updated.\n\n"
 
 					unsupported_os_text << "#{win_text}" if win_text != ""
 					unsupported_os_text << "#{aix_text}" if aix_text != ""
 					unsupported_os_text << "#{freebsd_text}" if freebsd_text != ""
-					
+
 					return unsupported_os_text
 				end
 
@@ -428,10 +431,10 @@ module Risu
 
 					#Host.os_windows.not_os_windows_7.not_os_windows_2008.not_os_windows_vista.not_os_windows_2003.not_os_windows_xp
 
-					win_nt_text = "Windows NT is an unsupported sperating system since Microsoft has stopped support as of June 2004. " +
+					win_nt_text = "Windows NT is an unsupported sperating system; Microsoft has stopped support as of June 2004. " +
 					"Please see http://windows.microsoft.com/en-us/windows/products/lifecycle for more information.\n\n" if win_nt.count >= 1
 
-					win_2000_text = "Windows 2000 is an unsupported operating system since Microsoft has stopped support as of June 2004. " +
+					win_2000_text = "Windows 2000 is an unsupported operating system; Microsoft has stopped support as of June 2004. " +
 					"Please see http://windows.microsoft.com/en-us/windows/products/lifecycle for more information.\n\n" if win_2000.count >= 1
 
 					return "#{win_nt_text}#{win_2000_text}"
@@ -450,16 +453,16 @@ module Risu
 
 					return text
 				end
-				
+
 				#
 				#
 				def unsupported_os_freebsd
 					text = ""
 					freebsd = Host.os_freebsd.where("OS LIKE 'FreeBSD 5.%'")
-					
-					text = "FreeBSD 5 support ended on 2008-05-31. Upgrade to FreeBSD 8.2 or 7.4. For more information, " + 
+
+					text = "FreeBSD 5 support ended on 2008-05-31. Upgrade to FreeBSD 8.2 or 7.4. For more information, " +
 					"see : http://www.freebsd.org/security/\n\n" if freebsd.count >= 1
-					
+
 					return text
 				end
 
@@ -483,19 +486,18 @@ module Risu
 					linux_percent = (linux.to_f / other_os_count.to_f) * 100
 					aix_percent = (aix.to_f / other_os_count.to_f) * 100
 					freebsd_percent = (freebsd.to_f / other_os_count.to_f) * 100
-					vmware_percent = (esx.to_f / other_os_count.to_f) * 100 
-					
+					vmware_percent = (esx.to_f / other_os_count.to_f) * 100
+
 					#todo add other os's here
-					
+
 
 					text << "#{linux_percent.to_i}% of the network is running an Linux based operating system. " if linux_percent >= 1
 					text << "#{aix_percent.to_i}% of the network is running an AIX based operating system. " if aix_percent >= 1
 					text << "#{freebsd_percent.to_i}% of the network is running an FreeBSD based operating system. " if freebsd_percent >= 1
 					text << "#{vmware_percent.to_i}% of the network is running an VMware based operating system. " if vmware_percent >= 1
-					
+
 					text << "\n\n"<< unsupported_os_aix if aix > 0
 					text << "\n\n" << unsupported_os_freebsd if freebsd > 0
-					
 
 					return text
 				end

data/lib/risu/models/item.rb

@@ -117,13 +117,15 @@ module Risu
 					select("items.*").select("count(*) as count_all").joins(:plugin).where("plugin_id != 1").where(:severity => 3).group(:plugin_id).order("count_all DESC").limit(limit)
 				end
 
-				# Queries for all the risks by host
+				# Queries for all the high risks by host
 				#
 				# @param limit Limits the result to a specific number, default 10
 				#
+				# @todo add high/med/low_risks_by_host functions
+				#
 				# @return [ActiveRecord::Relation] with the query results
 				def risks_by_host(limit=10)
-					select("items.*").select("count(*) as count_all").joins(:host).where("plugin_id != 1").where(:severity => [3, 2]).group(:host_id).order("count_all DESC").limit(limit)
+					select("items.*").select("count(*) as count_all").joins(:host).where("plugin_id != 1").where(:severity => 3).group(:host_id).order("count_all DESC").limit(limit)
 				end
 
 				# Queries for all the hosts with the Microsoft patch summary plugin (38153)
@@ -161,14 +163,13 @@ module Risu
 					StringIO.new(g.to_blob)
 				end
 				
+				#@todo comment
 				def risks_by_service_graph_text
 					"This graph is a representation of the findings found by service. This graph can help " +
 					"understand what services are running on the network and if they are vulnerable, where " +
-					"the risks are and how they should be protected.\n\n"
-					
+					"the risks are and how they should be protected.\n\n"				
 				end
 				
-
 				# Generates a Graph of all the risks by severity
 				#
 				# @return [StringIO] Object containing the generated PNG image
@@ -200,7 +201,7 @@ module Risu
 				end
 
 				# @todo change Report.title to a real variable
-				#
+				# @todo rewite this
 				def risks_by_severity_graph_text
 					high = Item.high_risks.count
 					medium = Item.medium_risks.count
@@ -208,23 +209,8 @@ module Risu
 					if high == nil then high = 0 end
 					if medium == nil then medium = 0 end
 						
-					percentage = high
-					
-					adjective = case percentage
-						when 0..5
-							"excellent"
-						when 6..10
-							"great"
-						when 11..20
-							"very good"
-						when 21..30
-							"good"
-						when 31..40
-							"fair"
-						else
-							"poor"
-					end
-					
+					#percentage = high
+										
 					hosts_with_high = Hash.new
 					
 					Item.high_risks.all.each do |item|
@@ -238,25 +224,55 @@ module Risu
 					
 					host_percent = (hosts_with_high.count.to_f / Host.all.count.to_f) * 100
 					
+					adjective = case host_percent
+						when 0..5
+							"excellent"
+						#when 6..10
+						#	"great"
+						when 6..10
+							"very good"
+						when 15..25
+							"good"
+						when 25..35
+							"fair"
+						else
+							"poor"
+					end
+										
 					percent_text = case host_percent
 						when 0..5			
 							"This implies that only a handful of computers are missing patches, and the current patch management is working well."
-						when 6..20
+						when 6..9
 							"This implies that there is a minor patch management issue. If there is a patch management system, it should be checked for problems. " +
+							"Each host should also be inspected to be certain it can receive patches."							
+						when 10..15
+							"This implies that there is a substantial patch management issue. If there is a patch management system, it should be checked for problems. " +
+							"Each host should also be inspected to be certain it can receive patches."
+						when 16..20
+							"This implies that there is a significant patch management issue. If there is a patch management system, it should be checked for problems. " +
 							"Each host should also be inspected to be certain it can receive patches."
 						else
-							"This implies that there is a significant patch management problem on the network. Any patch management solutions should " +
-							"be inspected for issues and they should be correct as soon as possible. Each host should also be inspected to be certain it can receive patches."
+							"This implies that there is a major patch management problem on the network. Any patch management solutions should " +
+							"be inspected for issues and they should be corrected as soon as possible. Each host should also be inspected to be certain it can receive patches."
 					end
 							
+					#graph_text = "This bar graph is a representation of the findings by severity; the " +
+					#"graph shows that, overall, #{Report.title} has a #{adjective} handle on the patch " +
+					#"management of the network. "
+					
 					graph_text = "This bar graph is a representation of the findings by severity; the " +
-					"graph shows that, overall, #{Report.title} has a #{adjective} handle on the patch " +
-					"management of the network.\n\n"
+					"graph shows that, Overall #{Report.title} needs to implement patch management and configuration management as a priority."
+					
+					#if adjective == "good" or adjective == "fair"
+					#	graph_text << "But improvements in patch management could be made to ensure an excellent rating."
+					#end
+					
+					graph_text << "\n\n"
 					
 					graph_text << "The majority of the high findings were found on #{host_percent.round}% of the total assessed computers. #{percent_text}\n\n"
 					
 					graph_text << "The systems with high vulnerabilities represent the largest threat to the network, " +
-					"so patching this group is paramount to the overall network security. It only takes one high vulnerability " +
+					"so patching this group is paramount to the overall network security. It only takes one vulnerability " +
 					"to create a security incident.\n\n"
 					
 					graph_text << "It should be noted that low findings and open ports represent the discovery "
@@ -267,6 +283,65 @@ module Risu
 					
 					return graph_text
 				end
+				
+				#sqlite only @todo @fix
+				def top_10_sorted_raw
+					raw = Item.joins(:plugin).where(:severity => 3).order("cast(plugins.cvss_base_score as real)").count(:all, :group => :plugin_id)
+					data = Array.new
+
+					raw.each do |vuln|
+						row = Array.new
+						plugin_id = vuln[0]
+						count = vuln[1]
+						
+						row.push(plugin_id)					
+						row.push(count)
+						data.push(row)
+					end	
+
+					data = data.sort do |a, b|
+						b[1] <=> a[1]
+					end
+					
+					return data
+				end
+				
+				def top_10_sorted
+					#raw = Item.where(:severity => 3).count(:all, :group => :plugin_id)
+					raw = Item.joins(:plugin).where(:severity => 3).order(:cvss_base_score).count(:all, :group => :plugin_id)
+					data = Array.new
+
+					raw.each do |vuln|
+						row = Array.new
+						plugin_id = vuln[0]
+						count = vuln[1]
+
+						name = Plugin.find_by_id(plugin_id).plugin_name
+
+						row.push(name)					
+						row.push(count)
+						data.push(row)
+					end	
+
+					data = data.sort do |a, b|
+						b[1] <=> a[1]
+					end
+					
+					return data	
+				end
+				
+				def top_10_table(output)
+					headers = ["Description", "Count"]
+					header_widths = {0 => (output.bounds.width - 50), 1 => 50}
+
+					data = top_10_sorted
+
+					output.table([headers] + data[0..9], :header => true, :column_widths => header_widths, :width => output.bounds.width) do
+						row(0).style(:font_style => :bold, :background_color => 'cccccc')
+						cells.borders = [:top, :bottom, :left, :right]
+					end					
+				end
+				
 			end
 		end
 	end

data/lib/risu/models/report.rb

@@ -23,7 +23,7 @@ module Risu
 				# @todo comment this
 				#
 				def scanner_nessus_ratings_text
-					text = "The vulnerability scanner used by #{Report.company} rates the findings as follows: High, Medium, Low and Open Ports. High findings represents a security hole, initially this is the highest rating a risk can get.  These generally represent vulnerabilities that can lead to full system compromise due to missing security patches. High findings should be the first to be remediated as they generally leave the network wide open. Medium findings are considered a security warning; these are not as severe as high but should be evaluated on a risk-by-risk basis. These are typically configuration errors that can lead to information disclosures such as usernames, passwords, and configuration settings. Low findings are identified as security notes; these provide information the scanner discovered during the scanning process. The information includes items such as hostname, domain name, and MAC address. Open Port findings represent the open ports on each system that the scanner found during the scan process. These should be evaluated against firewall settings to test the firewall configurations.\n\n"  
+					text = "The vulnerability scanner used by #{Report.company} rates the findings as follows: High, Medium, Low and Open Ports. High findings represents a security hole, initially this is the highest rating a risk can get.  These generally represent vulnerabilities that can lead to full system compromise due to missing security patches. High findings should be remediated first as they generally leave the network wide open. Medium findings are considered a security warning; these are not as severe as high but should be evaluated on a risk-by-risk basis. These are typically configuration errors that can lead to information disclosures such as usernames, passwords, and configuration settings. Low findings are identified as security notes; these provide information the scanner discovered during the scanning process. The information includes items such as hostname, domain name, and MAC address. Open Port findings represent the open ports on each system that the scanner found during the scan process. These should be evaluated against firewall settings to test the firewall configurations.\n\n"  
 					text << "After the scanner is complete, the scanner evaluates each finding and bases it on the Common Vulnerability Scoring System (CVSS) score assigned to each finding. Any findings with a CVSS base score of 10 are upgraded to a Critical finding. These represent vulnerabilities that are trivial to gain administrator access to the system, with little to no effort. For more information on the CVSS scoring system please visit: http://nvd.nist.gov/cvss.cfm.\n\n"
 					
 					return text