RubyGems - ssh_scan - Versions diffs - 0.0.15 → 0.0.16 - Mend

ssh_scan 0.0.15 → 0.0.16

Files changed (24) hide show

checksums.yaml +4 -4
data/Rakefile +136 -0
data/bin/ssh_scan +22 -5
data/bin/ssh_scan_api +36 -0
data/lib/ssh_scan.rb +1 -0
data/lib/ssh_scan/api.rb +124 -0
data/lib/ssh_scan/banner.rb +20 -2
data/lib/ssh_scan/os.rb +1 -0
data/lib/ssh_scan/os/raspbian.rb +39 -0
data/lib/ssh_scan/os/ubuntu.rb +1 -1
data/lib/ssh_scan/ssh_lib.rb +8 -0
data/lib/ssh_scan/ssh_lib/cryptlib.rb +17 -0
data/lib/ssh_scan/ssh_lib/dropbear.rb +1 -2
data/lib/ssh_scan/ssh_lib/flowssh.rb +34 -0
data/lib/ssh_scan/ssh_lib/ipssh.rb +34 -0
data/lib/ssh_scan/ssh_lib/mpssh.rb +34 -0
data/lib/ssh_scan/ssh_lib/nosssh.rb +34 -0
data/lib/ssh_scan/ssh_lib/pgp.rb +17 -0
data/lib/ssh_scan/ssh_lib/romsshell.rb +34 -0
data/lib/ssh_scan/ssh_lib/sentryssh.rb +17 -0
data/lib/ssh_scan/update.rb +10 -1
data/lib/ssh_scan/version.rb +2 -1
data/ssh_scan.gemspec +5 -0
metadata +85 -3

checksums.yaml CHANGED

@@ -1,7 +1,7 @@
 ---
 SHA1:
-  metadata.gz: c5d764d9a2898d145c0f46eee1c59bb0c6e7bcde
-  data.tar.gz: 9bd1e38f1e4c715bf01a9526b85a5cf4d5c7961f
+  metadata.gz: 4ee64bc0510d0062484755cc9258e947ddd53575
+  data.tar.gz: abc430f6465b494019aa648d358c25224d49f4ce
 SHA512:
-  metadata.gz: d9dca78fe553facec68df4241f43ed13537ef08d5b39f9d50ddafa50e97ba0c24d76a836f527c677e7cd90092be970604a3729b0348e06dfd28daefb4aef34b1
-  data.tar.gz: 67329c5b6e9c652b4572c9d1085be7cf220d48cafe19cf4dfa2827d8849ea5e43afcc284f79638cd1fdb03fca79677b1b662c3bef64f61765e4ab51f442475a4
+  metadata.gz: e0b5318192b079acc3c8a7d4232f56029dcaa8ad48d5dc40e1abc64bea229ef40b29ef4f24e9a42bb989e09b589c9f3f604e1f89bb164c4da7837e97e7300c40
+  data.tar.gz: 5c6d3cbaea3d77c7d3394dcf20fdca6a90f8b5bc14973c971d88bc84ee8220fb4332f182c3f5621c9414544ca8d376432bfccc54a5855d6777fcb0840c689f60

data/Rakefile CHANGED

@@ -4,6 +4,8 @@ require 'rubygems/package_task'
 require 'rspec'
 require 'rspec/core'
 require 'rspec/core/rake_task'
+require 'bundler/setup'
+require 'ssh_scan/version'
 $:.unshift File.join(File.dirname(__FILE__), "lib")
@@ -13,3 +15,137 @@ task :default => :spec
 desc "Run all specs in spec directory"
 RSpec::Core::RakeTask.new(:spec)
+PACKAGE_NAME = "ssh_scan"
+VERSION = SSHScan::VERSION
+TRAVELING_RUBY_VERSION = "20150210-2.1.5"
+SQLITE3_VERSION = "1.3.9"  # Must match Gemfile
+desc "Package your app"
+task :package => ['package:linux:x86', 'package:linux:x86_64', 'package:osx', 'package:win32']
+namespace :package do
+  namespace :linux do
+    desc "Package your app for Linux x86"
+    task :x86 => [:bundle_install,
+      "packaging/traveling-ruby-#{TRAVELING_RUBY_VERSION}-linux-x86.tar.gz",
+      "packaging/traveling-ruby-#{TRAVELING_RUBY_VERSION}-linux-x86-sqlite3-#{SQLITE3_VERSION}.tar.gz"
+    ] do
+      create_package("linux-x86")
+    end
+    desc "Package your app for Linux x86_64"
+    task :x86_64 => [:bundle_install,
+      "packaging/traveling-ruby-#{TRAVELING_RUBY_VERSION}-linux-x86_64.tar.gz",
+      "packaging/traveling-ruby-#{TRAVELING_RUBY_VERSION}-linux-x86_64-sqlite3-#{SQLITE3_VERSION}.tar.gz"
+    ] do
+      create_package("linux-x86_64")
+    end
+  end
+  desc "Package your app for OS X"
+  task :osx => [:bundle_install,
+    "packaging/traveling-ruby-#{TRAVELING_RUBY_VERSION}-osx.tar.gz",
+    "packaging/traveling-ruby-#{TRAVELING_RUBY_VERSION}-osx-sqlite3-#{SQLITE3_VERSION}.tar.gz"
+  ] do
+    create_package("osx")
+  end
+  desc "Package your app for Windows x86"
+  task :win32 => [:bundle_install, "packaging/traveling-ruby-#{TRAVELING_RUBY_VERSION}-win32.tar.gz"] do
+    create_package("win32", :windows)
+  end
+  desc "Install gems to local directory"
+  task :bundle_install do
+    if RUBY_VERSION !~ /^2\.3\./
+      abort "You can only 'bundle install' using Ruby 2.3, because that's what Traveling Ruby uses."
+    end
+    sh "rm -rf packaging/tmp"
+    sh "mkdir packaging/tmp"
+    sh "mkdir packaging/tmp/lib"
+    sh "mkdir packaging/tmp/bin"
+    sh "cp -R lib/* packaging/tmp/lib"
+    sh "cp -R bin/* packaging/tmp/bin"
+    sh "cp Gemfile Gemfile.lock #{PACKAGE_NAME}.gemspec packaging/tmp/"
+    Bundler.with_clean_env do
+      sh "cd packaging/tmp && env BUNDLE_IGNORE_CONFIG=1 bundle install --path ../vendor --without development"
+    end
+    sh "rm -rf packaging/tmp"
+    sh "rm -f packaging/vendor/*/*/cache/*"
+    sh "rm -rf packaging/vendor/ruby/*/extensions"
+    sh "find packaging/vendor/ruby/*/gems -name '*.so' | xargs rm -f"
+    sh "find packaging/vendor/ruby/*/gems -name '*.bundle' | xargs rm -f"
+    sh "find packaging/vendor/ruby/*/gems -name '*.o' | xargs rm -f"
+  end
+end
+file "packaging/traveling-ruby-#{TRAVELING_RUBY_VERSION}-linux-x86.tar.gz" do
+  download_runtime("linux-x86")
+end
+file "packaging/traveling-ruby-#{TRAVELING_RUBY_VERSION}-linux-x86_64.tar.gz" do
+  download_runtime("linux-x86_64")
+end
+file "packaging/traveling-ruby-#{TRAVELING_RUBY_VERSION}-osx.tar.gz" do
+  download_runtime("osx")
+end
+file "packaging/traveling-ruby-#{TRAVELING_RUBY_VERSION}-win32.tar.gz" do
+  download_runtime("win32")
+end
+file "packaging/traveling-ruby-#{TRAVELING_RUBY_VERSION}-linux-x86-sqlite3-#{SQLITE3_VERSION}.tar.gz" do
+  download_native_extension("linux-x86", "sqlite3-#{SQLITE3_VERSION}")
+end
+file "packaging/traveling-ruby-#{TRAVELING_RUBY_VERSION}-linux-x86_64-sqlite3-#{SQLITE3_VERSION}.tar.gz" do
+  download_native_extension("linux-x86_64", "sqlite3-#{SQLITE3_VERSION}")
+end
+file "packaging/traveling-ruby-#{TRAVELING_RUBY_VERSION}-osx-sqlite3-#{SQLITE3_VERSION}.tar.gz" do
+  download_native_extension("osx", "sqlite3-#{SQLITE3_VERSION}")
+end
+def create_package(target, os_type = :unix)
+  package_dir = "#{PACKAGE_NAME}-#{VERSION}-#{target}"
+  sh "rm -rf #{package_dir}"
+  sh "mkdir #{package_dir}"
+  sh "mkdir -p #{package_dir}/lib/app"
+  sh "cp bin/#{PACKAGE_NAME} #{package_dir}/lib/app/"
+  sh "mkdir #{package_dir}/lib/ruby"
+  sh "tar -xzf packaging/traveling-ruby-#{TRAVELING_RUBY_VERSION}-#{target}.tar.gz -C #{package_dir}/lib/ruby"
+  if os_type == :unix
+    sh "cp packaging/wrapper.sh #{package_dir}/#{PACKAGE_NAME}"
+  else
+    sh "cp packaging/wrapper.bat #{package_dir}/#{PACKAGE_NAME}.bat"
+  end
+  sh "cp -R lib/* #{package_dir}/lib/"
+  sh "cp -pR packaging/vendor #{package_dir}/lib/"
+  sh "cp Gemfile Gemfile.lock #{PACKAGE_NAME}.gemspec #{package_dir}/lib/vendor/"
+  sh "mkdir #{package_dir}/lib/vendor/.bundle"
+  sh "cp packaging/bundler-config #{package_dir}/lib/vendor/.bundle/config"
+  sh "tar -xzf packaging/traveling-ruby-#{TRAVELING_RUBY_VERSION}-#{target}-sqlite3-#{SQLITE3_VERSION}.tar.gz " +
+    "-C #{package_dir}/lib/vendor/ruby"
+  if !ENV['DIR_ONLY']
+    if os_type == :unix
+      sh "tar -czf #{package_dir}.tar.gz #{package_dir}"
+    else
+      sh "zip -9r #{package_dir}.zip #{package_dir}"
+    end
+    sh "rm -rf #{package_dir}"
+  end
+end
+def download_runtime(target)
+  sh "cd packaging && curl -L -O --fail " +
+    "https://d6r77u77i8pq3.cloudfront.net/releases/traveling-ruby-#{TRAVELING_RUBY_VERSION}-#{target}.tar.gz"
+end
+def download_native_extension(target, gem_name_and_version)
+  sh "curl -L --fail -o packaging/traveling-ruby-#{TRAVELING_RUBY_VERSION}-#{target}-#{gem_name_and_version}.tar.gz " +
+    "https://d6r77u77i8pq3.cloudfront.net/releases/traveling-ruby-gems-#{TRAVELING_RUBY_VERSION}-#{target}/#{gem_name_and_version}.tar.gz"
+end

data/bin/ssh_scan CHANGED

@@ -113,6 +113,10 @@ opt_parser = OptionParser.new do |opts|
     options[:fingerprint_database] = fingerprint_db
   end
+  opts.on("--suppress-update-status", "Do not check for updates") do
+    options[:suppress_update_status] = true
+  end
   opts.on("-u", "--unit-test [FILE]",
           "Throw appropriate exit codes based on compliance status") do
     options[:unit_test] = true
@@ -138,6 +142,11 @@ opt_parser = OptionParser.new do |opts|
     exit
   end
+  opts.on("-l", "--listen", "Listen and serve API requests") do
+    SSHScan::API.run!
+    exit
+  end
   opts.on_tail("-h", "--help", "Show this message") do
     puts opts
     puts "\nExamples:"
@@ -190,11 +199,19 @@ unless File.exists?(options[:policy])
 end
 # Check to see if we're running the latest released version
-update = SSHScan::Update.new
-if update.newer_gem_available?
-  options[:logger].warn("You're NOT using the latest version of ssh_scan, try 'gem update ssh_scan' to get the latest")
-else
-  options[:logger].info("You're using the latest version of ssh_scan #{SSHScan::VERSION}")
+if !options[:suppress_update_status]
+  update = SSHScan::Update.new
+  if update.newer_gem_available?
+    options[:logger].warn("You're NOT using the latest version of ssh_scan, try 'gem update ssh_scan' to get the latest")
+  else
+    if update.errors.size > 0
+      update.errors.each do |error|
+        options[:logger].error(error)
+      end
+    else
+      options[:logger].info("You're using the latest version of ssh_scan #{SSHScan::VERSION}")
+    end
+  end
 end
 options[:policy_file] = SSHScan::Policy.from_file(options[:policy])

data/bin/ssh_scan_api ADDED

@@ -0,0 +1,36 @@
+#!/usr/bin/env ruby
+$:.unshift File.join(File.dirname(__FILE__), "../lib")
+require 'optparse'
+require 'ssh_scan'
+options = {
+  :port => 8000,
+}
+opt_parser = OptionParser.new do |opts|
+  opts.banner = "ssh_scan_api v#{SSHScan::API_VERSION} (https://github.com/mozilla/ssh_scan)\n\n" +
+                "Usage: ssh_scan [options]"
+  opts.on("-p", "--port [PORT]", "Listen and serve API requests on this port (Default: 8000)") do |port|
+    options[:port] = port.to_i
+  end
+  opts.on("-v", "--version", "Show ssh_scan API version") do
+    puts SSHScan::API_VERSION
+    exit
+  end
+  opts.on_tail("-h", "--help", "Show help") do
+    puts opts
+    puts "\nExamples:\n"
+    puts "  ssh_scan_api -p 4567"
+    puts ""
+    exit
+  end
+end
+opt_parser.parse!
+SSHScan::API.run!(:port => options[:port])

data/lib/ssh_scan.rb CHANGED

@@ -12,6 +12,7 @@ require 'ssh_scan/protocol'
 require 'ssh_scan/scan_engine'
 require 'ssh_scan/target_parser'
 require 'ssh_scan/update'
+require 'ssh_scan/api'
 #Monkey Patches
 require 'string_ext'

data/lib/ssh_scan/api.rb ADDED

@@ -0,0 +1,124 @@
+require 'sinatra/base'
+require 'sinatra/namespace'
+require 'ssh_scan/version'
+require 'ssh_scan/policy'
+require 'ssh_scan/scan_engine'
+require 'json'
+require 'haml'
+require 'secure_headers'
+module SSHScan
+  class API < Sinatra::Base
+    use SecureHeaders::Middleware
+    SecureHeaders::Configuration.default do |config|
+      config.cookies = {
+        secure: true, # mark all cookies as "Secure"
+        httponly: true, # mark all cookies as "HttpOnly"
+      }
+      config.hsts = "max-age=31536000; includeSubdomains; preload"
+      config.x_frame_options = "DENY"
+      config.x_content_type_options = "nosniff"
+      config.x_xss_protection = "1; mode=block"
+      config.x_download_options = "noopen"
+      config.x_permitted_cross_domain_policies = "none"
+      config.referrer_policy = "origin-when-cross-origin"
+      config.csp = {
+        default_src: %w('none'),
+        frame_ancestors: %w('none'),
+        upgrade_insecure_requests: true, # see https://www.w3.org/TR/upgrade-insecure-requests/
+      }
+    end
+    class NullLogger < Logger
+      def initialize(*args)
+      end
+      def add(*args, &block)
+      end
+    end
+    register Sinatra::Namespace
+    before do
+      headers "Server" => "ssh_scan_api"
+    end
+    # Custom 404 handling
+    not_found do
+      content_type "text/plain"
+      'Invalid request, see API documentation here: https://github.com/mozilla/ssh_scan/wiki/ssh_scan-Web-API'
+    end
+    get '/robots.txt' do
+      content_type "text/plain"
+      "User-agent: *\nDisallow: /\n"
+    end
+    get '/contribute.json' do
+      content_type :json
+      {
+        :name => "ssh_scan api",
+        :description => "An api for performing ssh compliance and policy scanning",
+        :repository => {
+          :url => "https://github.com/mozilla/ssh_scan",
+          :tests => "https://travis-ci.org/mozilla/ssh_scan",
+        },
+        :participate => {
+          :home => "https://github.com/mozilla/ssh_scan",
+          :docs => "https://github.com/mozilla/ssh_scan",
+          :irc => "irc://irc.mozilla.org/#infosec",
+          :irc_contacts => [
+            "claudijd",
+            "pwnbus",
+            "kang",
+          ],
+          :glitter => "https://gitter.im/mozilla-ssh_scan/Lobby",
+          :glitter_contacts => [
+            "claudijd",
+            "pwnbus",
+            "kang",
+            "jinankjain",
+            "agaurav77"
+          ],
+        },
+        :bugs => {
+          :list => "https://github.com/mozilla/ssh_scan/issues",
+        },
+        :keywords => [
+          "ruby",
+          "sinatra",
+        ],
+      }.to_json
+    end
+    namespace "/api/v#{SSHScan::API_VERSION}" do
+      before do
+        content_type :json
+      end
+      post '/scan' do
+        options = {
+          :sockets => [],
+          :policy => File.expand_path("../../../policies/mozilla_modern.yml", __FILE__),
+          :timeout => 2,
+          :verbosity => nil,
+          :logger => NullLogger.new,
+          :fingerprint_database => "fingerprints.db",
+        }
+        options[:sockets] << "#{params[:target]}:#{params[:port] ? params[:port] : "22"}"
+        options[:policy_file] = SSHScan::Policy.from_file(options[:policy])
+        scan_engine = SSHScan::ScanEngine.new()
+        scan_engine.scan(options).to_json
+      end
+      get '/__version__' do
+        {
+          :ssh_scan_version => SSHScan::VERSION,
+          :api_version => SSHScan::API_VERSION,
+        }.to_json
+      end
+    end
+  end
+end

data/lib/ssh_scan/banner.rb CHANGED

@@ -25,14 +25,30 @@ module SSHScan
         return SSHScan::SSHLib::OpenSSH.new(@string)
       when /LibSSH/i
         return SSHScan::SSHLib::LibSSH.new()
+      when /ipssh/i
+        return SSHScan::SSHLib::IpSsh.new(@string)
       when /Cisco/i
         return SSHScan::SSHLib::CiscoSSH.new()
-      when /ROS/i
+      when /ROS/
         return SSHScan::SSHLib::ROSSSH.new()
       when /DOPRASSH/i
         return SSHScan::SSHLib::DOPRASSH.new()
+      when /cryptlib/i
+        return SSHScan::SSHLib::Cryptlib.new()
+      when /NOS-SSH/i
+        return SSHScan::SSHLib::NosSSH.new(@string)
+      when /pgp/i
+        return SSHScan::SSHLib::PGP.new()
+      when /ServerTech_SSH|Mocana SSH/i
+        return SSHScan::SSHLib::SentrySSH.new()
+      when /mpssh/i
+        return SSHScan::SSHLib::Mpssh.new(@string)
       when /dropbear/i
         return SSHScan::SSHLib::Dropbear.new(@string)
+      when /RomSShell/i
+        return SSHScan::SSHLib::RomSShell.new(@string)
+      when /Flowssh/i
+        return SSHScan::SSHLib::FlowSsh.new(@string)
       else
         return SSHScan::SSHLib::Unknown.new()
       end
@@ -52,10 +68,12 @@ module SSHScan
         return SSHScan::OS::FreeBSD.new
       when /Debian/i
         return SSHScan::OS::Debian.new
-      when /Windows/i
+      when /Windows|Microsoft/i
         return SSHScan::OS::Windows.new
       when /Cisco/i
         return SSHScan::OS::Cisco.new
+      when /Raspbian/i
+        return SSHScan::OS::Raspbian.new(@string)
       when /ROS/i
         return SSHScan::OS::ROS.new
       when /DOPRA/i

data/lib/ssh_scan/os.rb CHANGED

@@ -6,5 +6,6 @@ require 'ssh_scan/os/windows'
 require 'ssh_scan/os/redhat'
 require 'ssh_scan/os/cisco'
 require 'ssh_scan/os/ros'
+require 'ssh_scan/os/raspbian'
 require 'ssh_scan/os/dopra'
 require 'ssh_scan/os/unknown'

data/lib/ssh_scan/os/raspbian.rb ADDED

@@ -0,0 +1,39 @@
+module SSHScan
+  module OS
+    class Raspbian
+      class Version
+        def initialize(version_string)
+          @version_string = version_string
+        end
+        def to_s
+          @version_string
+        end
+      end
+      def initialize(banner)
+        @banner = banner
+        @version = Raspbian::Version.new(raspbian_version_guess)
+      end
+      def raspbian_version_guess
+        return nil if @banner.nil?
+        match = @banner.match(/SSH-2.0-Raspbian-(\d+)/)
+        return nil if match.nil?
+        return match[1]
+      end
+      def common
+        "raspbian"
+      end
+      def cpe
+        "o:raspbian:raspbian"
+      end
+      def version
+        @version
+      end
+    end
+  end
+end

data/lib/ssh_scan/os/ubuntu.rb CHANGED

@@ -200,7 +200,7 @@ module SSHScan
       end
       def cpe
-        "o:canonical:ubuntu:#{@version}"
+        "o:canonical:ubuntu" + (@version.to_s ? ":#{@version}" : "")
       end
     end
   end

data/lib/ssh_scan/ssh_lib.rb CHANGED

@@ -4,4 +4,12 @@ require 'ssh_scan/ssh_lib/ciscossh'
 require 'ssh_scan/ssh_lib/rosssh'
 require 'ssh_scan/ssh_lib/doprassh'
 require 'ssh_scan/ssh_lib/dropbear'
+require 'ssh_scan/ssh_lib/romsshell'
+require 'ssh_scan/ssh_lib/flowssh'
+require 'ssh_scan/ssh_lib/cryptlib'
+require 'ssh_scan/ssh_lib/mpssh'
+require 'ssh_scan/ssh_lib/sentryssh'
+require 'ssh_scan/ssh_lib/ipssh'
+require 'ssh_scan/ssh_lib/pgp'
+require 'ssh_scan/ssh_lib/nosssh'
 require 'ssh_scan/ssh_lib/unknown'

data/lib/ssh_scan/ssh_lib/cryptlib.rb ADDED

@@ -0,0 +1,17 @@
+module SSHScan
+  module SSHLib
+    class Cryptlib
+      def common
+        "cryptlib"
+      end
+      def cpe
+        "a:cryptlib:cryptlib"
+      end
+      def version
+        nil
+      end
+    end
+  end
+end

data/lib/ssh_scan/ssh_lib/dropbear.rb CHANGED

@@ -31,7 +31,7 @@ module SSHScan
       end
       def cpe
-        "o:dropbear:dropbear:#{@version.to_s}"
+        "a:dropbear:dropbear" << (":" + version.to_s) unless version.nil?
       end
       def version
@@ -40,4 +40,3 @@ module SSHScan
     end
   end
 end

data/lib/ssh_scan/ssh_lib/flowssh.rb ADDED

@@ -0,0 +1,34 @@
+module SSHScan
+  module SSHLib
+    class FlowSsh
+      class Version
+        def initialize(version_string)
+          @version_string = version_string
+        end
+        def to_s
+          @version_string
+        end
+      end
+      def initialize(banner = nil)
+        @banner = banner
+      end
+      def version()
+        return nil if @banner.nil?
+        match = @banner.match(/(\d+[\.\d+]+(p)?(\d+)?) FlowSsh/)
+        return nil if match.nil?
+        return FlowSsh::Version.new(match[1])
+      end
+      def common
+        "flowssh"
+      end
+      def cpe
+        "a:bitvise:flowssh" << (":" + version.to_s) unless version.nil?
+      end
+    end
+  end
+end

data/lib/ssh_scan/ssh_lib/ipssh.rb ADDED

@@ -0,0 +1,34 @@
+module SSHScan
+  module SSHLib
+    class IpSsh
+      class Version
+        def initialize(version_string)
+          @version_string = version_string
+        end
+        def to_s
+          @version_string
+        end
+      end
+      def initialize(banner = nil)
+        @banner = banner
+      end
+      def version()
+        return nil if @banner.nil?
+        match = @banner.match(/IPSSH-(\d+[\.\d+]+(p)?(\d+)?)/)
+        return nil if match.nil?
+        return IpSsh::Version.new(match[1])
+      end
+      def common
+        "ipssh"
+      end
+      def cpe
+        "a:ipssh:ipssh" << (":" + version.to_s) unless version.nil?
+      end
+    end
+  end
+end

data/lib/ssh_scan/ssh_lib/mpssh.rb ADDED

@@ -0,0 +1,34 @@
+module SSHScan
+  module SSHLib
+    class Mpssh
+      class Version
+        def initialize(version_string)
+          @version_string = version_string
+        end
+        def to_s
+          @version_string
+        end
+      end
+      def initialize(banner = nil)
+        @banner = banner
+      end
+      def version()
+        return nil if @banner.nil?
+        match = @banner.match(/mpSSH_(\d+[\.\d+]+(p)?(\d+)?)/i)
+        return nil if match.nil?
+        return Mpssh::Version.new(match[1])
+      end
+      def common
+        "mpssh"
+      end
+      def cpe
+        "a:mpssh:mpssh" << (":" + version.to_s) unless version.nil?
+      end
+    end
+  end
+end

data/lib/ssh_scan/ssh_lib/nosssh.rb ADDED

@@ -0,0 +1,34 @@
+module SSHScan
+  module SSHLib
+    class NosSSH
+      class Version
+        def initialize(version_string)
+          @version_string = version_string
+        end
+        def to_s
+          @version_string
+        end
+      end
+      def initialize(banner = nil)
+        @banner = banner
+      end
+      def version()
+        return nil if @banner.nil?
+        match = @banner.match(/NOS-SSH_(\d+[\.\d+]+)/)
+        return nil if match.nil?
+        return NosSSH::Version.new(match[1])
+      end
+      def common
+        "nosssh"
+      end
+      def cpe
+        "a:nosssh:nosssh" << (":" + version.to_s) unless version.nil?
+      end
+    end
+  end
+end

data/lib/ssh_scan/ssh_lib/pgp.rb ADDED

@@ -0,0 +1,17 @@
+module SSHScan
+  module SSHLib
+    class PGP
+      def common
+        "pgp"
+      end
+      def cpe
+        "a:pgp:pgp"
+      end
+      def version
+        nil
+      end
+    end
+  end
+end

data/lib/ssh_scan/ssh_lib/romsshell.rb ADDED

@@ -0,0 +1,34 @@
+module SSHScan
+  module SSHLib
+    class RomSShell
+      class Version
+        def initialize(version_string)
+          @version_string = version_string
+        end
+        def to_s
+          @version_string
+        end
+      end
+      def initialize(banner = nil)
+        @banner = banner
+      end
+      def version()
+        return nil if @banner.nil?
+        match = @banner.match(/RomSShell_(\d+[\.\d+]+(p)?(\d+)?)/)
+        return nil if match.nil?
+        return RomSShell::Version.new(match[1])
+      end
+      def common
+        "romsshell"
+      end
+      def cpe
+        "a:allegrosoft:romsshell" << (":" + version.to_s) unless version.nil?
+      end
+    end
+  end
+end

data/lib/ssh_scan/ssh_lib/sentryssh.rb ADDED

@@ -0,0 +1,17 @@
+module SSHScan
+  module SSHLib
+    class SentrySSH
+      def common
+        "sentryssh"
+      end
+      def cpe
+        "a:servertech:sentryssh"
+      end
+      def version
+        nil
+      end
+    end
+  end
+end

data/lib/ssh_scan/update.rb CHANGED

@@ -5,6 +5,10 @@ require 'net/http'
 module SSHScan
   class Update
+    def initialize
+      @errors = []
+    end
     def next_patch_version(version = SSHScan::VERSION)
       major, minor, patch = version.split(".")
       patch_num = patch.to_i
@@ -34,7 +38,8 @@ module SSHScan
       begin
         res = Net::HTTP.get_response(uri)
-      rescue
+      rescue Exception => e
+        @errors << e.message
         return false
       end
@@ -45,6 +50,10 @@ module SSHScan
       end
     end
+    def errors
+      @errors.uniq
+    end
     def newer_gem_available?(version = SSHScan::VERSION)
       if gem_exists?(next_patch_version(version))
         return true

data/lib/ssh_scan/version.rb CHANGED

@@ -1,3 +1,4 @@
 module SSHScan
-  VERSION = '0.0.15'
+  VERSION = '0.0.16'
+  API_VERSION = '0.0.1'
 end

data/ssh_scan.gemspec CHANGED

@@ -30,6 +30,11 @@ Gem::Specification.new do |s|
   s.add_dependency('netaddr')
   s.add_dependency('net-ssh')
   s.add_dependency('sqlite3')
+  s.add_dependency('sinatra')
+  s.add_dependency('sinatra-contrib')
+  s.add_dependency('haml')
+  s.add_dependency('secure_headers')
+  s.add_development_dependency('rack-test')
   s.add_development_dependency('pry')
   s.add_development_dependency('rspec', '~> 3.0')
   s.add_development_dependency('rspec-its', '~> 1.2')

metadata CHANGED

@@ -1,7 +1,7 @@
 --- !ruby/object:Gem::Specification
 name: ssh_scan
 version: !ruby/object:Gem::Version
-  version: 0.0.15
+  version: 0.0.16
 platform: ruby
 authors:
 - Jonathan Claudius
@@ -9,7 +9,7 @@ authors:
 autorequire:
 bindir: bin
 cert_chain: []
-date: 2016-09-21 00:00:00.000000000 Z
+date: 2016-10-19 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: bindata
@@ -67,6 +67,76 @@ dependencies:
     - - ">="
       - !ruby/object:Gem::Version
         version: '0'
+- !ruby/object:Gem::Dependency
+  name: sinatra
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: sinatra-contrib
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: haml
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: secure_headers
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: rack-test
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
 - !ruby/object:Gem::Dependency
   name: pry
   requirement: !ruby/object:Gem::Requirement
@@ -127,6 +197,7 @@ description: A Ruby-based SSH scanner for configuration and policy scanning
 email: claudijd@yahoo.com
 executables:
 - ssh_scan
+- ssh_scan_api
 extensions: []
 extra_rdoc_files: []
 files:
@@ -138,7 +209,9 @@ files:
 - README.md
 - Rakefile
 - bin/ssh_scan
+- bin/ssh_scan_api
 - lib/ssh_scan.rb
+- lib/ssh_scan/api.rb
 - lib/ssh_scan/banner.rb
 - lib/ssh_scan/client.rb
 - lib/ssh_scan/constants.rb
@@ -157,6 +230,7 @@ files:
 - lib/ssh_scan/os/debian.rb
 - lib/ssh_scan/os/dopra.rb
 - lib/ssh_scan/os/freebsd.rb
+- lib/ssh_scan/os/raspbian.rb
 - lib/ssh_scan/os/redhat.rb
 - lib/ssh_scan/os/ros.rb
 - lib/ssh_scan/os/ubuntu.rb
@@ -168,11 +242,19 @@ files:
 - lib/ssh_scan/scan_engine.rb
 - lib/ssh_scan/ssh_lib.rb
 - lib/ssh_scan/ssh_lib/ciscossh.rb
+- lib/ssh_scan/ssh_lib/cryptlib.rb
 - lib/ssh_scan/ssh_lib/doprassh.rb
 - lib/ssh_scan/ssh_lib/dropbear.rb
+- lib/ssh_scan/ssh_lib/flowssh.rb
+- lib/ssh_scan/ssh_lib/ipssh.rb
 - lib/ssh_scan/ssh_lib/libssh.rb
+- lib/ssh_scan/ssh_lib/mpssh.rb
+- lib/ssh_scan/ssh_lib/nosssh.rb
 - lib/ssh_scan/ssh_lib/openssh.rb
+- lib/ssh_scan/ssh_lib/pgp.rb
+- lib/ssh_scan/ssh_lib/romsshell.rb
 - lib/ssh_scan/ssh_lib/rosssh.rb
+- lib/ssh_scan/ssh_lib/sentryssh.rb
 - lib/ssh_scan/ssh_lib/unknown.rb
 - lib/ssh_scan/target_parser.rb
 - lib/ssh_scan/update.rb
@@ -201,7 +283,7 @@ required_rubygems_version: !ruby/object:Gem::Requirement
       version: '0'
 requirements: []
 rubyforge_project:
-rubygems_version: 2.6.2
+rubygems_version: 2.5.1
 signing_key:
 specification_version: 4
 summary: Ruby-based SSH Scanner