risu 1.6.3 → 1.7.0

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA1:
-  metadata.gz: e68cad1b3c4a774e7910aac3401b6b55ffa5ab48
-  data.tar.gz: 42d63e62cc61a230495a6b3c1e69c9f6165e52cd
+  metadata.gz: 23f609c5df6f31deb50608fdf1beff5b6a8b3783
+  data.tar.gz: 46319a15896857ccb3b72cb7401c9ea696392888
 SHA512:
-  metadata.gz: 7651b038bae3dbe3d27c82431a1125ff41b1309fe91ace6464d4c1e2794bbac0779b998a002e8487fd6a35ed40c792863b835aad5b565f8d6ebeb5df3e46651e
-  data.tar.gz: be5aa294863a70be65695e165db193185519ad263d8bc517a95df13cd047b198c56673845cf734516185ebfe42c69859e2da9c71d302cdb32f5b746bf89ccec4
+  metadata.gz: ad64d389f1cd8fbc67c0cb6de29a9bcb3b3f930e1a8fe0949e1cdec4323c3648907a4dd0a0ef7a2bf36c88f65ea84b06cd49bdc0face447396a81499b4c2ce0e
+  data.tar.gz: 54f0eed09834c480da59f3552e145f3e953f662a9e946d587e63df2672406145b0fd8289b62301e26d1139e0672836665e3817e51557070242a06edcb4058fc0

data/Gemfile

@@ -0,0 +1,12 @@
+source "https://rubygems.org"
+
+gem "rails", '4.0.0'
+gem "libxml-ruby", '2.6.0'
+gem "prawn", '0.12.0'
+gem "gruff", '0.3.7'
+gem "mysql2", '0.3.11'
+gem "rmagick", '2.13.2'
+gem "sqlite3", '1.3.7'
+gem "simplecov"
+gem "nokogiri", '1.6.0'
+gem "minitest", '4.3.2'

data/Gemfile.ci

@@ -1,12 +1,12 @@
-source :rubygems
 source "https://rubygems.org"
 
-gem "rails"
-gem "libxml-ruby"
-gem "prawn"
-gem "gruff"
-gem "mysql2"
-gem "rmagick"
-gem "sqlite3"
+gem "rails", '4.0.0'
+gem "libxml-ruby", '2.6.0'
+gem "prawn", '0.12.0'
+gem "gruff", '0.3.7'
+gem "mysql2", '0.3.11'
+gem "rmagick", '2.13.2'
+gem "sqlite3", '1.3.7'
 gem "simplecov"
-gem "nokogiri"
+gem "nokogiri", '1.6.0'
+gem "minitest", '4.3.2'

data/Gemfile.lock

@@ -0,0 +1,118 @@
+GEM
+  remote: https://rubygems.org/
+  specs:
+    Ascii85 (1.0.2)
+    actionmailer (4.0.2)
+      actionpack (= 4.0.2)
+      mail (~> 2.5.4)
+    actionpack (4.0.2)
+      activesupport (= 4.0.2)
+      builder (~> 3.1.0)
+      erubis (~> 2.7.0)
+      rack (~> 1.5.2)
+      rack-test (~> 0.6.2)
+    activemodel (4.0.2)
+      activesupport (= 4.0.2)
+      builder (~> 3.1.0)
+    activerecord (4.0.2)
+      activemodel (= 4.0.2)
+      activerecord-deprecated_finders (~> 1.0.2)
+      activesupport (= 4.0.2)
+      arel (~> 4.0.0)
+    activerecord-deprecated_finders (1.0.3)
+    activesupport (4.0.2)
+      i18n (~> 0.6, >= 0.6.4)
+      minitest (~> 4.2)
+      multi_json (~> 1.3)
+      thread_safe (~> 0.1)
+      tzinfo (~> 0.3.37)
+    afm (0.2.0)
+    arel (4.0.1)
+    atomic (1.1.14)
+    builder (3.1.4)
+    docile (1.1.1)
+    erubis (2.7.0)
+    gruff (0.5.1)
+      rmagick
+    hashery (2.1.1)
+    hike (1.2.3)
+    i18n (0.6.9)
+    libxml-ruby (2.7.0)
+    mail (2.5.4)
+      mime-types (~> 1.16)
+      treetop (~> 1.4.8)
+    mime-types (1.25.1)
+    mini_portile (0.5.2)
+    minitest (4.7.5)
+    multi_json (1.8.2)
+    mysql2 (0.3.14)
+    nokogiri (1.6.1)
+      mini_portile (~> 0.5.0)
+    pdf-reader (1.3.3)
+      Ascii85 (~> 1.0.0)
+      afm (~> 0.2.0)
+      hashery (~> 2.0)
+      ruby-rc4
+      ttfunk
+    polyglot (0.3.3)
+    prawn (0.13.2)
+      pdf-reader (~> 1.2)
+      ruby-rc4
+      ttfunk (~> 1.0.3)
+    rack (1.5.2)
+    rack-test (0.6.2)
+      rack (>= 1.0)
+    rails (4.0.2)
+      actionmailer (= 4.0.2)
+      actionpack (= 4.0.2)
+      activerecord (= 4.0.2)
+      activesupport (= 4.0.2)
+      bundler (>= 1.3.0, < 2.0)
+      railties (= 4.0.2)
+      sprockets-rails (~> 2.0.0)
+    railties (4.0.2)
+      actionpack (= 4.0.2)
+      activesupport (= 4.0.2)
+      rake (>= 0.8.7)
+      thor (>= 0.18.1, < 2.0)
+    rake (10.1.1)
+    rmagick (2.13.2)
+    ruby-rc4 (0.1.5)
+    simplecov (0.8.2)
+      docile (~> 1.1.0)
+      multi_json
+      simplecov-html (~> 0.8.0)
+    simplecov-html (0.8.0)
+    sprockets (2.10.1)
+      hike (~> 1.2)
+      multi_json (~> 1.0)
+      rack (~> 1.0)
+      tilt (~> 1.1, != 1.3.0)
+    sprockets-rails (2.0.1)
+      actionpack (>= 3.0)
+      activesupport (>= 3.0)
+      sprockets (~> 2.8)
+    sqlite3 (1.3.8)
+    thor (0.18.1)
+    thread_safe (0.1.3)
+      atomic
+    tilt (1.4.1)
+    treetop (1.4.15)
+      polyglot
+      polyglot (>= 0.3.1)
+    ttfunk (1.0.3)
+    tzinfo (0.3.38)
+
+PLATFORMS
+  ruby
+
+DEPENDENCIES
+  gruff
+  libxml-ruby
+  mysql2
+  nokogiri
+  prawn
+  rails
+  rmagick
+  simplecov
+  sqlite3

data/LICENSE

@@ -1,4 +1,4 @@
-Copyright (c) 2010-2013 Arxopia LLC.
+Copyright (c) 2010-2014 Arxopia LLC.
 All rights reserved.
 
 Redistribution and use in source and binary forms, with or without

data/NEWS.markdown

@@ -1,5 +1,103 @@
 # News
 
+#1.7.0 (September 12, 2014)
+- Update Copyrights to 2014
+- Wiki
+	- New page for installing on [OSX]((https://github.com/arxopia/risu/wiki/OSX-Installation-Guide)
+- Models
+	- Host Model
+		- Changed the field type of 'mac' from string to text to increase the size
+		- windows_os_graph_has_data()
+	- HostProperty Model
+		- Added pcidss:insecure_http_methods tag
+		- Added cpe-XXX, where XXX is a digit of the number of CPE found for that host.
+		- Added LastUnauthenticatedResults tag
+		- Added LastAuthenticatedResults tag
+		- Added Credentialed_Scan tag
+		- Added policy-used tag
+		- Added KBXXXXXX tag, used for Microsoft patches
+	- Plugin
+		- Added exploited_by_malware
+		- Added compliance
+		- Added root_cause; This is a custom field which will be manually filled over time with the root_cause of
+			the vulnerability, this data will be inserted with a post-processing plug-in
+		- Added root_cause_graph()
+		- Added root_cause_graph_text()
+	- Item
+		- Added exploitablity_matrix method, returns and formatted array of findings based on parameters.
+		- Added calculate_vulnerable_host_percent_with_patches_applied method, which calculates the vulnerable host percent
+			after removing all of the notable findings. This gives a sense of how the network would be after patching
+		- Added risk_percent_patched_rounded_text
+	- Reference
+		- Added hp.
+		- Added glsa.
+		- Added freebsd.
+- _Experimental Post Processing_, Sums up the findings and removes the duplicates. This allows for cleaner 
+	authenticated reports. Very experimental at the moment, the are auto loaded from the same directories as 
+		templates for the time being
+	- Use of the --post-process command line option will turn this on and off
+	- Java Plugins
+	- Adobe Reader plugins
+	- Flash Player plugins
+	- Serv-U plugins
+	- Adobe Air plugins
+	- OpenSSH plugins
+	- Wireshark plugins
+	- Oracle Database plugins
+	- Shockwave Player plugins
+	- Google Chrome plugins
+	- CoreFtp plugins
+	- FLEXNet plugins
+	- PHP plugins
+	- Apache plugins
+	- HP System Management Homepage
+	- OpenSSL Plugins
+	- Windows OS plugins
+	- RootCause processing, this adds a subjective root cause to every plugin that I have seen / had to time do.
+- Renderers
+	- Added support for CSV output check out the host_findings_csv.rb template for an example of how to do it
+- Templates
+	- Updated the default color scheme for graphs to look a little better
+	- Templates will now be searched for in the current directory.
+		- Templates will be searched for in the following places:
+			- The risu template directory in $GEM_HOME/gems/risu-1.7.0/lib/risu/templates/
+			- The current directory
+			- The user directory of ~/.risu/templates/
+	- Added host_findings_csv.rb template
+	- Added "Failed compliance audits" template [abenson]
+	- Added "Exploitablity Summary Report" template
+	- Added "Talking Points Report" template
+	- Added "Missing Root Cause Report" template
+	- Templates must now specify their renderer :renderer => "PDF" or :renderer => "CSV" in the template_info section. This
+		will break all templates until it is added.
+	- Template Helper
+		- Added a table method to generate a table in 1 line of code
+		- Added a new_page method to create a page break in the report
+		- Added other_os_graph_page, This generates a page for the PDF renderer with the 
+			other_os_graph and other_os_graph_text followed by a new_page
+		- item_count_by_plugin_name
+		- item_count_by_plugin_id
+		- default_credentials_section
+		- default_credentials_appendix_section
+		- has_default_credentials?
+		- default_credential_plugins
+		- Added MalwareTemplateHelper, this is included by TemplateHelper. It provides:
+			- malware_section()
+			- malware_appendix_section()
+			- conficker_section()
+			- conficker_appendix_section()
+			- conficker_count()
+		- Added HostTemplateHelper, this is included by TemplateHelper. It provides:
+			- unsupported_os_appendix_section()
+			- unsupported_os()
+		- Added GraphTemplateHelper, this is included by TemplateHelper. It provides:
+			- other_os_graph_page()
+			- windows_os_graph_page()
+			- risks_by_severity_graph_page()
+			- risks_by_service_graph_page()
+			- root_cause_graph_page()
+- Probably other things I forgot to track...
+
 #1.6.3 (October 01, 2013)
 - Rails 4.0 compatibility, backwards rails compatibility doesn't exist. You will need to update any plugins using old Rails APIs
 - Support for Ruby less than 1.9.3 also doesn't exist

data/README.markdown

@@ -1,13 +1,17 @@
 # risu
 
+[![Gem Version](https://badge.fury.io/rb/risu.png)](http://badge.fury.io/rb/risu)
+
+[![Build Status](https://travis-ci.org/arxopia/risu.png?branch=1.7.0)](https://travis-ci.org/arxopia/risu)
+
 Risu is [Nessus](http://www.nessus.org) parser, that converts the generated reports into a [ActiveRecord](http://api.rubyonrails.org/classes/ActiveRecord/Base.html) database, this allows for easy report generation and vulnerability verification.
 
-Version **1.6.3** is the current release.
+Version **1.7.0** is the current release.
 
 ## Requirements
 
 ### Ruby
-Risu has been tested with ruby-1.9.3-p392 and ruby-2.0.0-p0. Please try to use one of these versions if possible. I recommend using RVM to setup your ruby environment you can get it [here](https://rvm.beginrescueend.com/).
+Risu has been tested with ruby-1.9.3-p392, ruby-2.0.0 and ruby-2.1.0. Please try to use one of these versions if possible. I recommend using RVM to setup your ruby environment you can get it [here](https://rvm.beginrescueend.com/).
 
 ### RubyGems
 Risu relies heavily on [RubyGems](http://rubygems.org/) to install other dependencies I highly recommend using it. RubyGems is included by default in the 1.9.x versions of [Ruby](http://ruby-lang.org/).
@@ -75,7 +79,7 @@ Using the risu Console is just like using Rails. You can access all of the Activ
 	|_|  |_|___/\__,_|
 
 
-	risu Console v1.6.2
+	risu Console v1.7.0
 	>> Host.first
 	=> #<Risu::Models::Host id: 1, report_id: 1, name: "10.69.69.74", os: "Linux Kernel 2.6 on Debian 4.0 (etch)", mac: "XX:XX:XX:XX:XX:XX", start: "2011-04-20 16:29:37", end: "2011-04-20 16:32:14", ip: "10.69.69.74", fqdn: "redada.arxopia.net", netbios: "REDADA", local_checks_proto: nil, smb_login_used: nil, ssh_auth_meth: nil, ssh_login_used: nil, pci_dss_compliance: nil, notes: nil>
 
@@ -113,6 +117,9 @@ If you would like to contribute templates/bug fixes/etc to risu. The easiest way
 # Issues
 If you have any problems, bugs or feature requests please use the [github issue tracker](http://github.com/arxopia/risu/issues).
 
+# Donations / tips
+Feel free to donate or tip to BTC: 1Cfd5G6rJmSBrNcTHxEgE4uYgH7XZJPY7Z
+
 # Contact
 You can reach me at risu[at]arxopia[dot]com.
 

data/Rakefile

@@ -1,4 +1,4 @@
-# Copyright (c) 2010-2013 Arxopia LLC.
+# Copyright (c) 2010-2014 Arxopia LLC.
 # All rights reserved.
 #
 # Redistribution and use in source and binary forms, with or without
@@ -44,7 +44,7 @@ end
 
 task :release => [:tag_and_bag, :build] do
  	system "gem push #{Risu::APP_NAME}-#{Risu::VERSION}.gem"
-	puts "Just released #{Risu::APP_NAME} v#{Risu::VERSION}. #{Risu::APP_NAME} is an Nessus XML parser/database. More information at http://arxopia.com/projects/risu/"
+	puts "Just released #{Risu::APP_NAME} v#{Risu::VERSION}. #{Risu::APP_NAME} is an Nessus XML parser/database/report generator. More information at http://arxopia.com/projects/risu/"
 end
 
 task :clean do

data/bin/risu

@@ -1,6 +1,6 @@
 #!/usr/bin/env ruby
 
-# Copyright (c) 2010-2013 Arxopia LLC.
+# Copyright (c) 2010-2014 Arxopia LLC.
 # All rights reserved.
 #
 # Redistribution and use in source and binary forms, with or without
@@ -23,8 +23,8 @@
 # LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA,
 # OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF
 # LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE
-#OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED
-#OF THE POSSIBILITY OF SUCH DAMAGE.
+# OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED
+# OF THE POSSIBILITY OF SUCH DAMAGE.
 
 $LOAD_PATH.unshift(File.join(File.dirname(__FILE__), '/../lib'))
 

data/lib/risu.rb

@@ -1,4 +1,4 @@
-# Copyright (c) 2010-2013 Arxopia LLC.
+# Copyright (c) 2010-2014 Arxopia LLC.
 # All rights reserved.
 #
 # Redistribution and use in source and binary forms, with or without
@@ -26,11 +26,15 @@
 
 module Risu
 	APP_NAME = "risu"
-	VERSION = "1.6.3"
+	VERSION = "1.7.0"
 	GRAPH_WIDTH = 750
+	#                  red     orange  yellow  green    blue   purple        grey           pink
+	GRAPH_COLORS = %w(#d2403f #ec9241 #fcc343 #50ad51 #397bbb #8E6B8E black #cccccc brown #e52d89)
+	GITHUB = "http://github.com/arxopia/risu"
 	EMAIL = "risu@arxopia.com"
 	CONFIG_FILE = "./risu.cfg"
 	USER_TEMPLATES_DIR = "~/.risu/templates/"
+
 end
 
 require 'rails'

data/lib/risu/base.rb

@@ -1,4 +1,4 @@
-# Copyright (c) 2010-2013 Arxopia LLC.
+# Copyright (c) 2010-2014 Arxopia LLC.
 # All rights reserved.
 #
 # Redistribution and use in source and binary forms, with or without
@@ -21,8 +21,8 @@
 # LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA,
 # OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF
 # LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE
-#OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED
-#OF THE POSSIBILITY OF SUCH DAMAGE.
+# OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED
+# OF THE POSSIBILITY OF SUCH DAMAGE.
 
 module Risu
 	module Base
@@ -32,4 +32,11 @@ end
 require 'risu/base/template_base'
 require 'risu/base/template_manager'
 require 'risu/base/templater'
+require 'risu/base/host_template_helper'
+require 'risu/base/malware_template_helper'
+require 'risu/base/graph_template_helper'
+require 'risu/base/shares_template_helper'
 require 'risu/base/template_helper'
+
+require 'risu/base/post_process_base'
+require 'risu/base/post_process_manager'

data/lib/risu/base/graph_template_helper.rb

@@ -0,0 +1,71 @@
+# Copyright (c) 2012-2014 Arxopia LLC.
+# All rights reserved.
+#
+# Redistribution and use in source and binary forms, with or without
+# modification, are permitted provided that the following conditions are met:
+#
+#     * Redistributions of source code must retain the above copyright
+#       notice, this list of conditions and the following disclaimer.
+#     * Redistributions in binary form must reproduce the above copyright
+#       notice, this list of conditions and the following disclaimer in the
+#       documentation and/or other materials provided with the distribution.
+#     * Neither the name of the Arxopia LLC nor the names of its contributors
+#     	may be used to endorse or promote products derived from this software
+#     	without specific prior written permission.
+#
+# THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS "AS IS" AND
+# ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED
+# WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE
+# DISCLAIMED. IN NO EVENT SHALL ARXOPIA LLC BE LIABLE FOR ANY DIRECT, INDIRECT,
+# INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT
+# LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA,
+# OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF
+# LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE
+# OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED
+# OF THE POSSIBILITY OF SUCH DAMAGE.
+
+module Risu
+	module Templates
+		module GraphTemplateHelper
+			
+			#
+			def other_os_graph_page
+				if Host.other_os_graph_has_data?
+					new_page
+					@output.image Host.other_os_graph, :width => 500, :height => 375, :position => :center
+					text Host.other_os_graph_text
+				end				
+			end
+
+			#
+			def windows_os_graph_page
+				if Host.windows_os_graph_has_data?
+					new_page
+					@output.image Host.windows_os_graph, :width => 500, :height => 375, :position => :center
+					text Host.windows_os_graph_text
+				end
+			end
+
+			#
+			def root_cause_graph_page
+				new_page
+				@output.image Plugin.root_cause_graph, :width => 500, :height => 375, :position => :center
+				text Plugin.root_cause_graph_text
+			end
+
+			#
+			def risks_by_service_graph_page
+				new_page
+				@output.image Item.risks_by_service_graph(10), :width => 500, :height => 375, :position => :center
+				text Item.risks_by_service_graph_text
+			end
+
+			#
+			def risks_by_severity_graph_page
+				new_page
+				@output.image Item.risks_by_severity_graph, :width => 500, :height => 375, :position => :center
+				text Item.risks_by_severity_graph_text, :inline_format => true
+			end				
+		end
+	end
+end