risu 1.7.8 → 1.7.9

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA1:
-  metadata.gz: 16652fc4313b84cc7fdf74b816345a3146346bfe
-  data.tar.gz: 91ed6ad2e0ef2ebbb2177cc689683c5092f4f40b
+  metadata.gz: 4323f4148eb935a7f7fbe855eac75da1e721f5c4
+  data.tar.gz: a2e2f82eb2a95c8459a785ba92bcd260a758935c
 SHA512:
-  metadata.gz: 877344f282ee30df130405687c302b59f1ce63eb2db9a1677a10c6919c248e6e3920855c3221a0072f54f2f65747b2c6b5cc3768c36f450e12db2f422a147b96
-  data.tar.gz: aadbc5c2f1110117d855860b3ea2ee8b9bdff278641e8ce4df183977f82f8eadf3f1da982f30357301f1625c49a2cefa24b5b048f8b6404d941e33f02822b395
+  metadata.gz: c7b1dd24e54f291b8fc317e6f05945dd16b2cc7190d28b4aa8ce602fceceb6e81151ba74459c5b7377722928cdac1ced1f49cf0384273d89a0dc2cebb683ce73
+  data.tar.gz: 8a580555cf942fe6b7f3964ec11024911e83d7958e056d7f559bc4b35d3762debf997c1b61ec475b105386709bb242b27b32f73474680403ab04091a73eb2d69

data/Gemfile.lock

@@ -1,49 +1,50 @@
 PATH
   remote: .
   specs:
-    risu (1.7.6)
-      gruff (~> 0.6, >= 0.6.0)
-      libxml-ruby (~> 2.8, >= 2.8.0)
-      mysql2 (~> 0.4, >= 0.4.2)
-      nokogiri (~> 1.6, >= 1.6.7)
-      prawn (~> 2.0, >= 2.0.2)
+    risu (1.7.8)
+      gruff (~> 0.7, >= 0.7.0)
+      libxml-ruby (~> 2.9, >= 2.9.0)
+      mysql2 (~> 0.4, >= 0.4.4)
+      nokogiri (~> 1.6, >= 1.6.8)
+      prawn (~> 2.0, >= 2.1.0)
       prawn-table (~> 0.2, >= 0.2.2)
-      rails (~> 4.2, >= 4.2.5)
+      rails (~> 4.2, >= 4.2.6)
       rmagick (~> 2.15, >= 2.15.4)
       sqlite3 (~> 1.3, >= 1.3.11)
 
 GEM
+  remote: https://rubygems.org/
   specs:
-    actionmailer (4.2.5)
-      actionpack (= 4.2.5)
-      actionview (= 4.2.5)
-      activejob (= 4.2.5)
+    actionmailer (4.2.6)
+      actionpack (= 4.2.6)
+      actionview (= 4.2.6)
+      activejob (= 4.2.6)
       mail (~> 2.5, >= 2.5.4)
       rails-dom-testing (~> 1.0, >= 1.0.5)
-    actionpack (4.2.5)
-      actionview (= 4.2.5)
-      activesupport (= 4.2.5)
+    actionpack (4.2.6)
+      actionview (= 4.2.6)
+      activesupport (= 4.2.6)
       rack (~> 1.6)
       rack-test (~> 0.6.2)
       rails-dom-testing (~> 1.0, >= 1.0.5)
       rails-html-sanitizer (~> 1.0, >= 1.0.2)
-    actionview (4.2.5)
-      activesupport (= 4.2.5)
+    actionview (4.2.6)
+      activesupport (= 4.2.6)
       builder (~> 3.1)
       erubis (~> 2.7.0)
       rails-dom-testing (~> 1.0, >= 1.0.5)
       rails-html-sanitizer (~> 1.0, >= 1.0.2)
-    activejob (4.2.5)
-      activesupport (= 4.2.5)
+    activejob (4.2.6)
+      activesupport (= 4.2.6)
       globalid (>= 0.3.0)
-    activemodel (4.2.5)
-      activesupport (= 4.2.5)
+    activemodel (4.2.6)
+      activesupport (= 4.2.6)
       builder (~> 3.1)
-    activerecord (4.2.5)
-      activemodel (= 4.2.5)
-      activesupport (= 4.2.5)
+    activerecord (4.2.6)
+      activemodel (= 4.2.6)
+      activesupport (= 4.2.6)
       arel (~> 6.0)
-    activesupport (4.2.5)
+    activesupport (4.2.6)
       i18n (~> 0.7)
       json (~> 1.7, >= 1.7.7)
       minitest (~> 5.1)
@@ -51,45 +52,50 @@ GEM
       tzinfo (~> 1.1)
     arel (6.0.3)
     builder (3.2.2)
+    concurrent-ruby (1.0.2)
     docile (1.1.5)
     erubis (2.7.0)
     globalid (0.3.6)
       activesupport (>= 4.1.0)
-    gruff (0.6.0)
-      rmagick (>= 2.13.4)
+    gruff (0.7.0)
+      rmagick (~> 2.13, >= 2.13.4)
     i18n (0.7.0)
     json (1.8.3)
-    libxml-ruby (2.8.0)
+    libxml-ruby (2.9.0)
     loofah (2.0.3)
       nokogiri (>= 1.5.9)
-    mail (2.6.3)
-      mime-types (>= 1.16, < 3)
-    mime-types (2.99)
-    mini_portile2 (2.0.0)
-    minitest (5.8.3)
-    mysql2 (0.4.2)
-    nokogiri (1.6.7)
-      mini_portile2 (~> 2.0.0.rc2)
-    pdf-core (0.6.0)
-    power_assert (0.2.6)
-    prawn (2.0.2)
-      pdf-core (~> 0.6.0)
+    mail (2.6.4)
+      mime-types (>= 1.16, < 4)
+    mime-types (3.1)
+      mime-types-data (~> 3.2015)
+    mime-types-data (3.2016.0521)
+    mini_portile2 (2.1.0)
+    minitest (5.9.0)
+    mysql2 (0.4.4)
+    nokogiri (1.6.8)
+      mini_portile2 (~> 2.1.0)
+      pkg-config (~> 1.1.7)
+    pdf-core (0.6.1)
+    pkg-config (1.1.7)
+    power_assert (0.3.0)
+    prawn (2.1.0)
+      pdf-core (~> 0.6.1)
       ttfunk (~> 1.4.0)
     prawn-table (0.2.2)
       prawn (>= 1.3.0, < 3.0.0)
     rack (1.6.4)
     rack-test (0.6.3)
       rack (>= 1.0)
-    rails (4.2.5)
-      actionmailer (= 4.2.5)
-      actionpack (= 4.2.5)
-      actionview (= 4.2.5)
-      activejob (= 4.2.5)
-      activemodel (= 4.2.5)
-      activerecord (= 4.2.5)
-      activesupport (= 4.2.5)
+    rails (4.2.6)
+      actionmailer (= 4.2.6)
+      actionpack (= 4.2.6)
+      actionview (= 4.2.6)
+      activejob (= 4.2.6)
+      activemodel (= 4.2.6)
+      activerecord (= 4.2.6)
+      activesupport (= 4.2.6)
       bundler (>= 1.3.0, < 2.0)
-      railties (= 4.2.5)
+      railties (= 4.2.6)
       sprockets-rails
     rails-deprecated_sanitizer (1.0.3)
       activesupport (>= 4.2.0.alpha)
@@ -97,28 +103,29 @@ GEM
       activesupport (>= 4.2.0.beta, < 5.0)
       nokogiri (~> 1.6.0)
       rails-deprecated_sanitizer (>= 1.0.1)
-    rails-html-sanitizer (1.0.2)
+    rails-html-sanitizer (1.0.3)
       loofah (~> 2.0)
-    railties (4.2.5)
-      actionpack (= 4.2.5)
-      activesupport (= 4.2.5)
+    railties (4.2.6)
+      actionpack (= 4.2.6)
+      activesupport (= 4.2.6)
       rake (>= 0.8.7)
       thor (>= 0.18.1, < 2.0)
-    rake (10.4.2)
+    rake (11.2.2)
     rmagick (2.15.4)
-    simplecov (0.11.1)
+    simplecov (0.11.2)
       docile (~> 1.1.0)
       json (~> 1.8)
       simplecov-html (~> 0.10.0)
     simplecov-html (0.10.0)
-    sprockets (3.4.1)
+    sprockets (3.6.2)
+      concurrent-ruby (~> 1.0)
       rack (> 1, < 3)
-    sprockets-rails (2.3.3)
-      actionpack (>= 3.0)
-      activesupport (>= 3.0)
-      sprockets (>= 2.8, < 4.0)
+    sprockets-rails (3.0.4)
+      actionpack (>= 4.0)
+      activesupport (>= 4.0)
+      sprockets (>= 3.0.0)
     sqlite3 (1.3.11)
-    test-unit (3.1.5)
+    test-unit (3.2.0)
       power_assert
     thor (0.19.1)
     thread_safe (0.3.5)
@@ -131,11 +138,11 @@ PLATFORMS
   ruby
 
 DEPENDENCIES
-  minitest (~> 5.0, >= 5.8.3)
+  minitest (~> 5.0, >= 5.9)
   risu!
-  simplecov (~> 0.11, >= 0.11.1)
-  test-unit (~> 3.1, >= 3.1.5)
-  yard (~> 0.8, >= 0.8.0)
+  simplecov (~> 0.11, >= 0.11.2)
+  test-unit (~> 3.2, >= 3.2)
+  yard (~> 0.8, >= 0.8.7.6)
 
 BUNDLED WITH
-   1.10.6
+   1.12.5

data/README.markdown

@@ -1,4 +1,4 @@
-# risu [![Gem Version](https://badge.fury.io/rb/risu.png)](http://badge.fury.io/rb/risu) [![Build Status](https://travis-ci.org/arxopia/risu.png?branch=master)](https://travis-ci.org/arxopia/risu)  [![Code Climate](https://codeclimate.com/github/arxopia/risu/badges/gpa.svg)](https://codeclimate.com/github/arxopia/risu) [![Inline docs](http://inch-ci.org/github/arxopia/risu.png)](http://inch-ci.org/github/arxopia/risu) [![Join the chat at https://gitter.im/arxopia/risu](https://badges.gitter.im/Join%20Chat.svg)](https://gitter.im/arxopia/risu?utm_source=badge&utm_medium=badge&utm_campaign=pr-badge&utm_content=badge)
+# risu [![Gem Version](https://badge.fury.io/rb/risu.png)](http://badge.fury.io/rb/risu) [![Build Status](https://travis-ci.org/arxopia/risu.png?branch=master)](https://travis-ci.org/arxopia/risu)  [![Code Climate](https://codeclimate.com/github/arxopia/risu/badges/gpa.svg)](https://codeclimate.com/github/arxopia/risu) [![Inline docs](http://inch-ci.org/github/arxopia/risu.png)](http://inch-ci.org/github/arxopia/risu) 
 
 Risu is [Nessus](http://www.nessus.org) parser, that converts Nessus .nessus xml files into a [ActiveRecord](http://api.rubyonrails.org/classes/ActiveRecord/Base.html) database, this allows for easy report generation and vulnerability verification.
 
@@ -131,9 +131,6 @@ If you would like to contribute templates/bug fixes/etc to risu. The easiest way
 If you have any problems, bugs or feature requests please use the [github issue tracker](http://github.com/arxopia/risu/issues).
 
 # Contact
-You can reach me at risu[at]arxopia[dot]com.
+You can reach me at jacob.hammack[at]arxopia[dot]com.
 
 You can also contact me on IRC as hammackj on irc.freenode.net, #risu
-
-# Donations / tips
-Feel free to donate or tip to BTC: 1Cfd5G6rJmSBrNcTHxEgE4uYgH7XZJPY7Z

data/docs/NEWS.markdown

@@ -1,5 +1,10 @@
 # News
 
+# 1.7.9 (July 1, 2016)
+- Updated RootCauses
+- Fixed issue #99 with the FindingsHost template enumerating the wrong findings. [@ghuisman]
+- Fixed issue #94 Where some fields in the Schema were strings instead of bool [@abenson]
+
 # 1.7.8 (June 25, 2016)
 - Changed license from 3 clause BSD to MIT.
 
@@ -209,8 +214,8 @@
 - Support for Ruby less than 1.9.3 also doesn't exist
 - Schema
 	- Changed size of ServerPreferences.value to text instead of string. Pull Request from [alanjones]
-	- Changed size of HostProperties.value to text instead of string. Pull Request from [alanjones]
-	- Changed size of References.value to text instead of string. Pull Request from [alanjones]
+	- Changed size of HostProperties.value to text instead of string. Pull Request from [@alanjones]
+	- Changed size of References.value to text instead of string. Pull Request from [@alanjones]
 - Models
 	- Policy Model
 		- Added policy_comments

data/lib/risu/base/schema.rb

@@ -139,7 +139,7 @@ module Risu
 					t.string :script_version
 					t.string :d2_elliot_name
 					t.string :exploit_framework_d2_elliot
-					t.string :exploited_by_malware
+					t.boolean :exploited_by_malware
 					t.boolean :rollup
 					t.integer :risk_score
 					t.string :compliance

data/lib/risu/parsers/nessus/postprocess/root_cause.rb

@@ -289,6 +289,12 @@ module Risu
 							90510 => "Vendor Patch",
 							87311 => "Vendor Patch",
 							-99980 => "Vendor Patch",
+							86994 => "Vendor Patch",
+							91230 => "Vendor Patch",
+							-99990 => "Vendor Patch",
+							-99975 => "Vendor Patch",
+							-99961 => "Vendor Patch",
+							88577 => "Vendor Patch",
 
 
 
@@ -322,6 +328,8 @@ module Risu
 							84729 => "Vendor Support",
 							58991 => "Vendor Support",
 							69552 => "Vendor Support",
+							56212 => "Vendor Support",
+							11057 => "Vendor Support",
 
 
 
@@ -408,6 +416,9 @@ module Risu
 							15984 => "Configuration",
 							66349 => "Configuration",
 							10483 => "Configuration",
+							59275 => "Configuration",
+							35453 => "Configuration",
+							90317 => "Configuration",
 
 						}
 					end

data/lib/risu/templates/findings_host.rb

@@ -18,7 +18,6 @@
 # OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN
 # THE SOFTWARE.
 
-
 module Risu
 	module Templates
 		class FindingsHost < Risu::Base::TemplateBase
@@ -31,7 +30,7 @@ module Risu
 				{
 					:name => "findings_host",
 					:author => "hammackj",
-					:version => "0.0.3",
+					:version => "0.0.4",
 					:renderer => "PDF",
 					:description => "Generates a findings report by host"
 				}
@@ -68,7 +67,7 @@ module Risu
 							output.fill_color "000000"
 						end
 
-						host.items.high_risks_unique_sorted.each do |item|
+						host.items.critical_risks_unique_sorted.each do |item|
 							name = Plugin.find_by_id(item.plugin_id).plugin_name
 							output.text "#{name}"
 						end

data/lib/risu/version.rb

@@ -21,7 +21,7 @@
 
 module Risu
 	APP_NAME = "risu"
-	VERSION = "1.7.8"
+	VERSION = "1.7.9"
 	HOME_PAGE = "https://arxopia.github.io/risu/"
 	GITHUB = "http://github.com/arxopia/risu"
 	EMAIL = "jacob.hammack@arxopia.com"

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: risu
 version: !ruby/object:Gem::Version
-  version: 1.7.8
+  version: 1.7.9
 platform: ruby
 authors:
 - Jacob Hammack
 autorequire: 
 bindir: bin
 cert_chain: []
-date: 2016-06-25 00:00:00.000000000 Z
+date: 2016-07-02 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: rails
@@ -436,3 +436,4 @@ signing_key:
 specification_version: 4
 summary: risu
 test_files: []
+has_rdoc: yard