RubyGems - ssh_scan - Versions diffs - 0.0.15 → 0.0.16 - Mend

ssh_scan 0.0.15 → 0.0.16

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (24) hide show

checksums.yaml +4 -4
data/Rakefile +136 -0
data/bin/ssh_scan +22 -5
data/bin/ssh_scan_api +36 -0
data/lib/ssh_scan.rb +1 -0
data/lib/ssh_scan/api.rb +124 -0
data/lib/ssh_scan/banner.rb +20 -2
data/lib/ssh_scan/os.rb +1 -0
data/lib/ssh_scan/os/raspbian.rb +39 -0
data/lib/ssh_scan/os/ubuntu.rb +1 -1
data/lib/ssh_scan/ssh_lib.rb +8 -0
data/lib/ssh_scan/ssh_lib/cryptlib.rb +17 -0
data/lib/ssh_scan/ssh_lib/dropbear.rb +1 -2
data/lib/ssh_scan/ssh_lib/flowssh.rb +34 -0
data/lib/ssh_scan/ssh_lib/ipssh.rb +34 -0
data/lib/ssh_scan/ssh_lib/mpssh.rb +34 -0
data/lib/ssh_scan/ssh_lib/nosssh.rb +34 -0
data/lib/ssh_scan/ssh_lib/pgp.rb +17 -0
data/lib/ssh_scan/ssh_lib/romsshell.rb +34 -0
data/lib/ssh_scan/ssh_lib/sentryssh.rb +17 -0
data/lib/ssh_scan/update.rb +10 -1
data/lib/ssh_scan/version.rb +2 -1
data/ssh_scan.gemspec +5 -0
metadata +85 -3

checksums.yaml CHANGED

@@ -1,7 +1,7 @@
 ---
 SHA1:
-  metadata.gz: c5d764d9a2898d145c0f46eee1c59bb0c6e7bcde
-  data.tar.gz: 9bd1e38f1e4c715bf01a9526b85a5cf4d5c7961f
+  metadata.gz: 4ee64bc0510d0062484755cc9258e947ddd53575
+  data.tar.gz: abc430f6465b494019aa648d358c25224d49f4ce
 SHA512:
-  metadata.gz: d9dca78fe553facec68df4241f43ed13537ef08d5b39f9d50ddafa50e97ba0c24d76a836f527c677e7cd90092be970604a3729b0348e06dfd28daefb4aef34b1
-  data.tar.gz: 67329c5b6e9c652b4572c9d1085be7cf220d48cafe19cf4dfa2827d8849ea5e43afcc284f79638cd1fdb03fca79677b1b662c3bef64f61765e4ab51f442475a4
+  metadata.gz: e0b5318192b079acc3c8a7d4232f56029dcaa8ad48d5dc40e1abc64bea229ef40b29ef4f24e9a42bb989e09b589c9f3f604e1f89bb164c4da7837e97e7300c40
+  data.tar.gz: 5c6d3cbaea3d77c7d3394dcf20fdca6a90f8b5bc14973c971d88bc84ee8220fb4332f182c3f5621c9414544ca8d376432bfccc54a5855d6777fcb0840c689f60

data/Rakefile CHANGED

@@ -4,6 +4,8 @@ require 'rubygems/package_task'
 require 'rspec'
 require 'rspec/core'
 require 'rspec/core/rake_task'
+require 'bundler/setup'
+require 'ssh_scan/version'
 $:.unshift File.join(File.dirname(__FILE__), "lib")
@@ -13,3 +15,137 @@ task :default => :spec
 desc "Run all specs in spec directory"
 RSpec::Core::RakeTask.new(:spec)
+PACKAGE_NAME = "ssh_scan"
+VERSION = SSHScan::VERSION
+TRAVELING_RUBY_VERSION = "20150210-2.1.5"
+SQLITE3_VERSION = "1.3.9"  # Must match Gemfile
+desc "Package your app"
+task :package => ['package:linux:x86', 'package:linux:x86_64', 'package:osx', 'package:win32']
+namespace :package do
+  namespace :linux do
+    desc "Package your app for Linux x86"
+    task :x86 => [:bundle_install,
+      "packaging/traveling-ruby-#{TRAVELING_RUBY_VERSION}-linux-x86.tar.gz",
+      "packaging/traveling-ruby-#{TRAVELING_RUBY_VERSION}-linux-x86-sqlite3-#{SQLITE3_VERSION}.tar.gz"
+    ] do
+      create_package("linux-x86")
+    end
+    desc "Package your app for Linux x86_64"
+    task :x86_64 => [:bundle_install,
+      "packaging/traveling-ruby-#{TRAVELING_RUBY_VERSION}-linux-x86_64.tar.gz",
+      "packaging/traveling-ruby-#{TRAVELING_RUBY_VERSION}-linux-x86_64-sqlite3-#{SQLITE3_VERSION}.tar.gz"
+    ] do
+      create_package("linux-x86_64")
+    end
+  end
+  desc "Package your app for OS X"
+  task :osx => [:bundle_install,
+    "packaging/traveling-ruby-#{TRAVELING_RUBY_VERSION}-osx.tar.gz",
+    "packaging/traveling-ruby-#{TRAVELING_RUBY_VERSION}-osx-sqlite3-#{SQLITE3_VERSION}.tar.gz"
+  ] do
+    create_package("osx")
+  end
+  desc "Package your app for Windows x86"
+  task :win32 => [:bundle_install, "packaging/traveling-ruby-#{TRAVELING_RUBY_VERSION}-win32.tar.gz"] do
+    create_package("win32", :windows)
+  end
+  desc "Install gems to local directory"
+  task :bundle_install do
+    if RUBY_VERSION !~ /^2\.3\./
+      abort "You can only 'bundle install' using Ruby 2.3, because that's what Traveling Ruby uses."
+    end
+    sh "rm -rf packaging/tmp"
+    sh "mkdir packaging/tmp"
+    sh "mkdir packaging/tmp/lib"
+    sh "mkdir packaging/tmp/bin"
+    sh "cp -R lib/* packaging/tmp/lib"
+    sh "cp -R bin/* packaging/tmp/bin"
+    sh "cp Gemfile Gemfile.lock #{PACKAGE_NAME}.gemspec packaging/tmp/"
+    Bundler.with_clean_env do
+      sh "cd packaging/tmp && env BUNDLE_IGNORE_CONFIG=1 bundle install --path ../vendor --without development"
+    end
+    sh "rm -rf packaging/tmp"
+    sh "rm -f packaging/vendor/*/*/cache/*"
+    sh "rm -rf packaging/vendor/ruby/*/extensions"
+    sh "find packaging/vendor/ruby/*/gems -name '*.so' | xargs rm -f"
+    sh "find packaging/vendor/ruby/*/gems -name '*.bundle' | xargs rm -f"
+    sh "find packaging/vendor/ruby/*/gems -name '*.o' | xargs rm -f"
+  end
+end
+file "packaging/traveling-ruby-#{TRAVELING_RUBY_VERSION}-linux-x86.tar.gz" do
+  download_runtime("linux-x86")
+end
+file "packaging/traveling-ruby-#{TRAVELING_RUBY_VERSION}-linux-x86_64.tar.gz" do
+  download_runtime("linux-x86_64")
+end
+file "packaging/traveling-ruby-#{TRAVELING_RUBY_VERSION}-osx.tar.gz" do
+  download_runtime("osx")
+end
+file "packaging/traveling-ruby-#{TRAVELING_RUBY_VERSION}-win32.tar.gz" do
+  download_runtime("win32")
+end
+file "packaging/traveling-ruby-#{TRAVELING_RUBY_VERSION}-linux-x86-sqlite3-#{SQLITE3_VERSION}.tar.gz" do
+  download_native_extension("linux-x86", "sqlite3-#{SQLITE3_VERSION}")
+end
+file "packaging/traveling-ruby-#{TRAVELING_RUBY_VERSION}-linux-x86_64-sqlite3-#{SQLITE3_VERSION}.tar.gz" do
+  download_native_extension("linux-x86_64", "sqlite3-#{SQLITE3_VERSION}")
+end
+file "packaging/traveling-ruby-#{TRAVELING_RUBY_VERSION}-osx-sqlite3-#{SQLITE3_VERSION}.tar.gz" do
+  download_native_extension("osx", "sqlite3-#{SQLITE3_VERSION}")
+end
+def create_package(target, os_type = :unix)
+  package_dir = "#{PACKAGE_NAME}-#{VERSION}-#{target}"
+  sh "rm -rf #{package_dir}"
+  sh "mkdir #{package_dir}"
+  sh "mkdir -p #{package_dir}/lib/app"
+  sh "cp bin/#{PACKAGE_NAME} #{package_dir}/lib/app/"
+  sh "mkdir #{package_dir}/lib/ruby"
+  sh "tar -xzf packaging/traveling-ruby-#{TRAVELING_RUBY_VERSION}-#{target}.tar.gz -C #{package_dir}/lib/ruby"
+  if os_type == :unix
+    sh "cp packaging/wrapper.sh #{package_dir}/#{PACKAGE_NAME}"
+  else
+    sh "cp packaging/wrapper.bat #{package_dir}/#{PACKAGE_NAME}.bat"
+  end
+  sh "cp -R lib/* #{package_dir}/lib/"
+  sh "cp -pR packaging/vendor #{package_dir}/lib/"
+  sh "cp Gemfile Gemfile.lock #{PACKAGE_NAME}.gemspec #{package_dir}/lib/vendor/"
+  sh "mkdir #{package_dir}/lib/vendor/.bundle"
+  sh "cp packaging/bundler-config #{package_dir}/lib/vendor/.bundle/config"
+  sh "tar -xzf packaging/traveling-ruby-#{TRAVELING_RUBY_VERSION}-#{target}-sqlite3-#{SQLITE3_VERSION}.tar.gz " +
+    "-C #{package_dir}/lib/vendor/ruby"
+  if !ENV['DIR_ONLY']
+    if os_type == :unix
+      sh "tar -czf #{package_dir}.tar.gz #{package_dir}"
+    else
+      sh "zip -9r #{package_dir}.zip #{package_dir}"
+    end
+    sh "rm -rf #{package_dir}"
+  end
+end
+def download_runtime(target)
+  sh "cd packaging && curl -L -O --fail " +
+    "https://d6r77u77i8pq3.cloudfront.net/releases/traveling-ruby-#{TRAVELING_RUBY_VERSION}-#{target}.tar.gz"
+end
+def download_native_extension(target, gem_name_and_version)
+  sh "curl -L --fail -o packaging/traveling-ruby-#{TRAVELING_RUBY_VERSION}-#{target}-#{gem_name_and_version}.tar.gz " +
+    "https://d6r77u77i8pq3.cloudfront.net/releases/traveling-ruby-gems-#{TRAVELING_RUBY_VERSION}-#{target}/#{gem_name_and_version}.tar.gz"
+end

data/bin/ssh_scan CHANGED

@@ -113,6 +113,10 @@ opt_parser = OptionParser.new do |opts|
     options[:fingerprint_database] = fingerprint_db
   end
+  opts.on("--suppress-update-status", "Do not check for updates") do
+    options[:suppress_update_status] = true
+  end
   opts.on("-u", "--unit-test [FILE]",
           "Throw appropriate exit codes based on compliance status") do
     options[:unit_test] = true
@@ -138,6 +142,11 @@ opt_parser = OptionParser.new do |opts|
     exit
   end
+  opts.on("-l", "--listen", "Listen and serve API requests") do
+    SSHScan::API.run!
+    exit
+  end
   opts.on_tail("-h", "--help", "Show this message") do
     puts opts
     puts "\nExamples:"
@@ -190,11 +199,19 @@ unless File.exists?(options[:policy])
 end
 # Check to see if we're running the latest released version
-update = SSHScan::Update.new
-if update.newer_gem_available?
-  options[:logger].warn("You're NOT using the latest version of ssh_scan, try 'gem update ssh_scan' to get the latest")
-else
-  options[:logger].info("You're using the latest version of ssh_scan #{SSHScan::VERSION}")
+if !options[:suppress_update_status]
+  update = SSHScan::Update.new
+  if update.newer_gem_available?
+    options[:logger].warn("You're NOT using the latest version of ssh_scan, try 'gem update ssh_scan' to get the latest")
+  else
+    if update.errors.size > 0
+      update.errors.each do |error|
+        options[:logger].error(error)
+      end
+    else
+      options[:logger].info("You're using the latest version of ssh_scan #{SSHScan::VERSION}")
+    end
+  end
 end
 options[:policy_file] = SSHScan::Policy.from_file(options[:policy])

data/bin/ssh_scan_api ADDED

@@ -0,0 +1,36 @@
+#!/usr/bin/env ruby
+$:.unshift File.join(File.dirname(__FILE__), "../lib")
+require 'optparse'
+require 'ssh_scan'
+options = {
+  :port => 8000,
+}
+opt_parser = OptionParser.new do |opts|
+  opts.banner = "ssh_scan_api v#{SSHScan::API_VERSION} (https://github.com/mozilla/ssh_scan)\n\n" +
+                "Usage: ssh_scan [options]"
+  opts.on("-p", "--port [PORT]", "Listen and serve API requests on this port (Default: 8000)") do |port|
+    options[:port] = port.to_i
+  end
+  opts.on("-v", "--version", "Show ssh_scan API version") do
+    puts SSHScan::API_VERSION
+    exit
+  end
+  opts.on_tail("-h", "--help", "Show help") do
+    puts opts
+    puts "\nExamples:\n"
+    puts "  ssh_scan_api -p 4567"
+    puts ""
+    exit
+  end
+end
+opt_parser.parse!
+SSHScan::API.run!(:port => options[:port])

data/lib/ssh_scan.rb CHANGED

@@ -12,6 +12,7 @@ require 'ssh_scan/protocol'
 require 'ssh_scan/scan_engine'
 require 'ssh_scan/target_parser'
 require 'ssh_scan/update'
+require 'ssh_scan/api'
 #Monkey Patches
 require 'string_ext'

data/lib/ssh_scan/api.rb ADDED

@@ -0,0 +1,124 @@
+require 'sinatra/base'
+require 'sinatra/namespace'
+require 'ssh_scan/version'
+require 'ssh_scan/policy'
+require 'ssh_scan/scan_engine'
+require 'json'
+require 'haml'
+require 'secure_headers'
+module SSHScan
+  class API < Sinatra::Base
+    use SecureHeaders::Middleware
+    SecureHeaders::Configuration.default do |config|
+      config.cookies = {
+        secure: true, # mark all cookies as "Secure"
+        httponly: true, # mark all cookies as "HttpOnly"
+      }
+      config.hsts = "max-age=31536000; includeSubdomains; preload"
+      config.x_frame_options = "DENY"
+      config.x_content_type_options = "nosniff"
+      config.x_xss_protection = "1; mode=block"
+      config.x_download_options = "noopen"
+      config.x_permitted_cross_domain_policies = "none"
+      config.referrer_policy = "origin-when-cross-origin"
+      config.csp = {
+        default_src: %w('none'),
+        frame_ancestors: %w('none'),
+        upgrade_insecure_requests: true, # see https://www.w3.org/TR/upgrade-insecure-requests/
+      }
+    end
+    class NullLogger < Logger
+      def initialize(*args)
+      end
+      def add(*args, &block)
+      end
+    end
+    register Sinatra::Namespace
+    before do
+      headers "Server" => "ssh_scan_api"
+    end
+    # Custom 404 handling
+    not_found do
+      content_type "text/plain"
+      'Invalid request, see API documentation here: https://github.com/mozilla/ssh_scan/wiki/ssh_scan-Web-API'
+    end
+    get '/robots.txt' do
+      content_type "text/plain"
+      "User-agent: *\nDisallow: /\n"
+    end
+    get '/contribute.json' do
+      content_type :json
+      {
+        :name => "ssh_scan api",
+        :description => "An api for performing ssh compliance and policy scanning",
+        :repository => {
+          :url => "https://github.com/mozilla/ssh_scan",
+          :tests => "https://travis-ci.org/mozilla/ssh_scan",
+        },
+        :participate => {
+          :home => "https://github.com/mozilla/ssh_scan",
+          :docs => "https://github.com/mozilla/ssh_scan",
+          :irc => "irc://irc.mozilla.org/#infosec",
+          :irc_contacts => [
+            "claudijd",
+            "pwnbus",
+            "kang",
+          ],
+          :glitter => "https://gitter.im/mozilla-ssh_scan/Lobby",
+          :glitter_contacts => [
+            "claudijd",
+            "pwnbus",
+            "kang",
+            "jinankjain",
+            "agaurav77"
+          ],
+        },
+        :bugs => {
+          :list => "https://github.com/mozilla/ssh_scan/issues",
+        },
+        :keywords => [
+          "ruby",
+          "sinatra",
+        ],
+      }.to_json
+    end
+    namespace "/api/v#{SSHScan::API_VERSION}" do
+      before do
+        content_type :json
+      end
+      post '/scan' do
+        options = {
+          :sockets => [],
+          :policy => File.expand_path("../../../policies/mozilla_modern.yml", __FILE__),
+          :timeout => 2,
+          :verbosity => nil,
+          :logger => NullLogger.new,
+          :fingerprint_database => "fingerprints.db",
+        }
+        options[:sockets] << "#{params[:target]}:#{params[:port] ? params[:port] : "22"}"
+        options[:policy_file] = SSHScan::Policy.from_file(options[:policy])
+        scan_engine = SSHScan::ScanEngine.new()
+        scan_engine.scan(options).to_json
+      end
+      get '/__version__' do
+        {
+          :ssh_scan_version => SSHScan::VERSION,
+          :api_version => SSHScan::API_VERSION,
+        }.to_json
+      end
+    end
+  end
+end

data/lib/ssh_scan/banner.rb CHANGED

@@ -25,14 +25,30 @@ module SSHScan
         return SSHScan::SSHLib::OpenSSH.new(@string)
       when /LibSSH/i
         return SSHScan::SSHLib::LibSSH.new()
+      when /ipssh/i
+        return SSHScan::SSHLib::IpSsh.new(@string)
       when /Cisco/i
         return SSHScan::SSHLib::CiscoSSH.new()
-      when /ROS/i
+      when /ROS/
         return SSHScan::SSHLib::ROSSSH.new()
       when /DOPRASSH/i
         return SSHScan::SSHLib::DOPRASSH.new()
+      when /cryptlib/i
+        return SSHScan::SSHLib::Cryptlib.new()
+      when /NOS-SSH/i
+        return SSHScan::SSHLib::NosSSH.new(@string)
+      when /pgp/i
+        return SSHScan::SSHLib::PGP.new()
+      when /ServerTech_SSH|Mocana SSH/i
+        return SSHScan::SSHLib::SentrySSH.new()
+      when /mpssh/i
+        return SSHScan::SSHLib::Mpssh.new(@string)
       when /dropbear/i
         return SSHScan::SSHLib::Dropbear.new(@string)
+      when /RomSShell/i
+        return SSHScan::SSHLib::RomSShell.new(@string)
+      when /Flowssh/i
+        return SSHScan::SSHLib::FlowSsh.new(@string)
       else
         return SSHScan::SSHLib::Unknown.new()
       end
@@ -52,10 +68,12 @@ module SSHScan
         return SSHScan::OS::FreeBSD.new
       when /Debian/i
         return SSHScan::OS::Debian.new
-      when /Windows/i
+      when /Windows|Microsoft/i
         return SSHScan::OS::Windows.new
       when /Cisco/i
         return SSHScan::OS::Cisco.new
+      when /Raspbian/i
+        return SSHScan::OS::Raspbian.new(@string)
       when /ROS/i
         return SSHScan::OS::ROS.new
       when /DOPRA/i

data/lib/ssh_scan/os.rb CHANGED

@@ -6,5 +6,6 @@ require 'ssh_scan/os/windows'
 require 'ssh_scan/os/redhat'
 require 'ssh_scan/os/cisco'
 require 'ssh_scan/os/ros'
+require 'ssh_scan/os/raspbian'
 require 'ssh_scan/os/dopra'
 require 'ssh_scan/os/unknown'

data/lib/ssh_scan/os/raspbian.rb ADDED

@@ -0,0 +1,39 @@
+module SSHScan
+  module OS
+    class Raspbian
+      class Version
+        def initialize(version_string)
+          @version_string = version_string
+        end
+        def to_s
+          @version_string
+        end
+      end
+      def initialize(banner)
+        @banner = banner
+        @version = Raspbian::Version.new(raspbian_version_guess)
+      end
+      def raspbian_version_guess
+        return nil if @banner.nil?
+        match = @banner.match(/SSH-2.0-Raspbian-(\d+)/)
+        return nil if match.nil?
+        return match[1]
+      end
+      def common
+        "raspbian"
+      end
+      def cpe
+        "o:raspbian:raspbian"
+      end
+      def version
+        @version
+      end
+    end
+  end
+end

data/lib/ssh_scan/os/ubuntu.rb CHANGED

@@ -200,7 +200,7 @@ module SSHScan
       end
       def cpe
-        "o:canonical:ubuntu:#{@version}"
+        "o:canonical:ubuntu" + (@version.to_s ? ":#{@version}" : "")
       end
     end
   end

data/lib/ssh_scan/ssh_lib.rb CHANGED

@@ -4,4 +4,12 @@ require 'ssh_scan/ssh_lib/ciscossh'
 require 'ssh_scan/ssh_lib/rosssh'
 require 'ssh_scan/ssh_lib/doprassh'
 require 'ssh_scan/ssh_lib/dropbear'
+require 'ssh_scan/ssh_lib/romsshell'
+require 'ssh_scan/ssh_lib/flowssh'
+require 'ssh_scan/ssh_lib/cryptlib'
+require 'ssh_scan/ssh_lib/mpssh'
+require 'ssh_scan/ssh_lib/sentryssh'
+require 'ssh_scan/ssh_lib/ipssh'
+require 'ssh_scan/ssh_lib/pgp'
+require 'ssh_scan/ssh_lib/nosssh'
 require 'ssh_scan/ssh_lib/unknown'

data/lib/ssh_scan/ssh_lib/cryptlib.rb ADDED

@@ -0,0 +1,17 @@
+module SSHScan
+  module SSHLib
+    class Cryptlib
+      def common
+        "cryptlib"
+      end
+      def cpe
+        "a:cryptlib:cryptlib"
+      end
+      def version
+        nil
+      end
+    end
+  end
+end

data/lib/ssh_scan/ssh_lib/dropbear.rb CHANGED

@@ -31,7 +31,7 @@ module SSHScan
       end
       def cpe
-        "o:dropbear:dropbear:#{@version.to_s}"
+        "a:dropbear:dropbear" << (":" + version.to_s) unless version.nil?
       end
       def version
@@ -40,4 +40,3 @@ module SSHScan
     end
   end
 end

data/lib/ssh_scan/ssh_lib/flowssh.rb ADDED

@@ -0,0 +1,34 @@
+module SSHScan
+  module SSHLib
+    class FlowSsh
+      class Version
+        def initialize(version_string)
+          @version_string = version_string
+        end
+        def to_s
+          @version_string
+        end
+      end
+      def initialize(banner = nil)
+        @banner = banner
+      end
+      def version()
+        return nil if @banner.nil?
+        match = @banner.match(/(\d+[\.\d+]+(p)?(\d+)?) FlowSsh/)
+        return nil if match.nil?
+        return FlowSsh::Version.new(match[1])
+      end
+      def common
+        "flowssh"
+      end
+      def cpe
+        "a:bitvise:flowssh" << (":" + version.to_s) unless version.nil?
+      end
+    end
+  end
+end

data/lib/ssh_scan/ssh_lib/ipssh.rb ADDED

@@ -0,0 +1,34 @@
+module SSHScan
+  module SSHLib
+    class IpSsh
+      class Version
+        def initialize(version_string)
+          @version_string = version_string
+        end
+        def to_s
+          @version_string
+        end
+      end
+      def initialize(banner = nil)
+        @banner = banner
+      end
+      def version()
+        return nil if @banner.nil?
+        match = @banner.match(/IPSSH-(\d+[\.\d+]+(p)?(\d+)?)/)
+        return nil if match.nil?
+        return IpSsh::Version.new(match[1])
+      end
+      def common
+        "ipssh"
+      end
+      def cpe
+        "a:ipssh:ipssh" << (":" + version.to_s) unless version.nil?
+      end
+    end
+  end
+end

data/lib/ssh_scan/ssh_lib/mpssh.rb ADDED

@@ -0,0 +1,34 @@
+module SSHScan
+  module SSHLib
+    class Mpssh
+      class Version
+        def initialize(version_string)
+          @version_string = version_string
+        end
+        def to_s
+          @version_string
+        end
+      end
+      def initialize(banner = nil)
+        @banner = banner
+      end
+      def version()
+        return nil if @banner.nil?
+        match = @banner.match(/mpSSH_(\d+[\.\d+]+(p)?(\d+)?)/i)
+        return nil if match.nil?
+        return Mpssh::Version.new(match[1])
+      end
+      def common
+        "mpssh"
+      end
+      def cpe
+        "a:mpssh:mpssh" << (":" + version.to_s) unless version.nil?
+      end
+    end
+  end
+end

data/lib/ssh_scan/ssh_lib/nosssh.rb ADDED

@@ -0,0 +1,34 @@
+module SSHScan
+  module SSHLib
+    class NosSSH
+      class Version
+        def initialize(version_string)
+          @version_string = version_string
+        end
+        def to_s
+          @version_string
+        end
+      end
+      def initialize(banner = nil)
+        @banner = banner
+      end
+      def version()
+        return nil if @banner.nil?
+        match = @banner.match(/NOS-SSH_(\d+[\.\d+]+)/)
+        return nil if match.nil?
+        return NosSSH::Version.new(match[1])
+      end
+      def common
+        "nosssh"
+      end
+      def cpe
+        "a:nosssh:nosssh" << (":" + version.to_s) unless version.nil?
+      end
+    end
+  end
+end

data/lib/ssh_scan/ssh_lib/pgp.rb ADDED

@@ -0,0 +1,17 @@
+module SSHScan
+  module SSHLib
+    class PGP
+      def common
+        "pgp"
+      end
+      def cpe
+        "a:pgp:pgp"
+      end
+      def version
+        nil
+      end
+    end
+  end
+end

data/lib/ssh_scan/ssh_lib/romsshell.rb ADDED

@@ -0,0 +1,34 @@
+module SSHScan
+  module SSHLib
+    class RomSShell
+      class Version
+        def initialize(version_string)
+          @version_string = version_string
+        end
+        def to_s
+          @version_string
+        end
+      end
+      def initialize(banner = nil)
+        @banner = banner
+      end
+      def version()
+        return nil if @banner.nil?
+        match = @banner.match(/RomSShell_(\d+[\.\d+]+(p)?(\d+)?)/)
+        return nil if match.nil?
+        return RomSShell::Version.new(match[1])
+      end
+      def common
+        "romsshell"
+      end
+      def cpe
+        "a:allegrosoft:romsshell" << (":" + version.to_s) unless version.nil?
+      end
+    end
+  end
+end

data/lib/ssh_scan/ssh_lib/sentryssh.rb ADDED

@@ -0,0 +1,17 @@
+module SSHScan
+  module SSHLib
+    class SentrySSH
+      def common
+        "sentryssh"
+      end
+      def cpe
+        "a:servertech:sentryssh"
+      end
+      def version
+        nil
+      end
+    end
+  end
+end

data/lib/ssh_scan/update.rb CHANGED

@@ -5,6 +5,10 @@ require 'net/http'
 module SSHScan
   class Update
+    def initialize
+      @errors = []
+    end
     def next_patch_version(version = SSHScan::VERSION)
       major, minor, patch = version.split(".")
       patch_num = patch.to_i
@@ -34,7 +38,8 @@ module SSHScan
       begin
         res = Net::HTTP.get_response(uri)
-      rescue
+      rescue Exception => e
+        @errors << e.message
         return false
       end
@@ -45,6 +50,10 @@ module SSHScan
       end
     end
+    def errors
+      @errors.uniq
+    end
     def newer_gem_available?(version = SSHScan::VERSION)
       if gem_exists?(next_patch_version(version))
         return true

data/lib/ssh_scan/version.rb CHANGED

@@ -1,3 +1,4 @@
 module SSHScan
-  VERSION = '0.0.15'
+  VERSION = '0.0.16'
+  API_VERSION = '0.0.1'
 end

data/ssh_scan.gemspec CHANGED

@@ -30,6 +30,11 @@ Gem::Specification.new do |s|
   s.add_dependency('netaddr')
   s.add_dependency('net-ssh')
   s.add_dependency('sqlite3')
+  s.add_dependency('sinatra')
+  s.add_dependency('sinatra-contrib')
+  s.add_dependency('haml')
+  s.add_dependency('secure_headers')
+  s.add_development_dependency('rack-test')
   s.add_development_dependency('pry')
   s.add_development_dependency('rspec', '~> 3.0')
   s.add_development_dependency('rspec-its', '~> 1.2')

metadata CHANGED

@@ -1,7 +1,7 @@
 --- !ruby/object:Gem::Specification
 name: ssh_scan
 version: !ruby/object:Gem::Version
-  version: 0.0.15
+  version: 0.0.16
 platform: ruby
 authors:
 - Jonathan Claudius
@@ -9,7 +9,7 @@ authors:
 autorequire:
 bindir: bin
 cert_chain: []
-date: 2016-09-21 00:00:00.000000000 Z
+date: 2016-10-19 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: bindata
@@ -67,6 +67,76 @@ dependencies:
     - - ">="
       - !ruby/object:Gem::Version
         version: '0'
+- !ruby/object:Gem::Dependency
+  name: sinatra
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: sinatra-contrib
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: haml
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: secure_headers
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: rack-test
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
 - !ruby/object:Gem::Dependency
   name: pry
   requirement: !ruby/object:Gem::Requirement
@@ -127,6 +197,7 @@ description: A Ruby-based SSH scanner for configuration and policy scanning
 email: claudijd@yahoo.com
 executables:
 - ssh_scan
+- ssh_scan_api
 extensions: []
 extra_rdoc_files: []
 files:
@@ -138,7 +209,9 @@ files:
 - README.md
 - Rakefile
 - bin/ssh_scan
+- bin/ssh_scan_api
 - lib/ssh_scan.rb
+- lib/ssh_scan/api.rb
 - lib/ssh_scan/banner.rb
 - lib/ssh_scan/client.rb
 - lib/ssh_scan/constants.rb
@@ -157,6 +230,7 @@ files:
 - lib/ssh_scan/os/debian.rb
 - lib/ssh_scan/os/dopra.rb
 - lib/ssh_scan/os/freebsd.rb
+- lib/ssh_scan/os/raspbian.rb
 - lib/ssh_scan/os/redhat.rb
 - lib/ssh_scan/os/ros.rb
 - lib/ssh_scan/os/ubuntu.rb
@@ -168,11 +242,19 @@ files:
 - lib/ssh_scan/scan_engine.rb
 - lib/ssh_scan/ssh_lib.rb
 - lib/ssh_scan/ssh_lib/ciscossh.rb
+- lib/ssh_scan/ssh_lib/cryptlib.rb
 - lib/ssh_scan/ssh_lib/doprassh.rb
 - lib/ssh_scan/ssh_lib/dropbear.rb
+- lib/ssh_scan/ssh_lib/flowssh.rb
+- lib/ssh_scan/ssh_lib/ipssh.rb
 - lib/ssh_scan/ssh_lib/libssh.rb
+- lib/ssh_scan/ssh_lib/mpssh.rb
+- lib/ssh_scan/ssh_lib/nosssh.rb
 - lib/ssh_scan/ssh_lib/openssh.rb
+- lib/ssh_scan/ssh_lib/pgp.rb
+- lib/ssh_scan/ssh_lib/romsshell.rb
 - lib/ssh_scan/ssh_lib/rosssh.rb
+- lib/ssh_scan/ssh_lib/sentryssh.rb
 - lib/ssh_scan/ssh_lib/unknown.rb
 - lib/ssh_scan/target_parser.rb
 - lib/ssh_scan/update.rb
@@ -201,7 +283,7 @@ required_rubygems_version: !ruby/object:Gem::Requirement
       version: '0'
 requirements: []
 rubyforge_project:
-rubygems_version: 2.6.2
+rubygems_version: 2.5.1
 signing_key:
 specification_version: 4
 summary: Ruby-based SSH Scanner