zaws 0.0.5 → 0.1.1

data/lib/zaws/helper/nessus_client.rb

@@ -0,0 +1,143 @@
+require 'excon'
+require 'json'
+
+module ZAWS
+  module Helper
+    class NessusClient
+
+      autoload :NessusCreds, "zaws/helper/nessus_creds"
+
+      # @param [NessusClient::Creds] creds
+      def initialize(creds)
+        @creds = creds
+      end
+
+      def url
+        @creds.url
+      end
+
+      # Make a GET request expecting a JSON response.
+      def get(path, query = {}, options = {})
+        # Handle nil or empty Array
+        options[:query] = query.to_h if query
+        options[:idempotent] = true
+        json_request('GET', path, options)
+      end
+
+      # Make a POST request expecting a JSON response.
+      def post(path, body, options = {})
+        options[:body] = body
+        json_request('POST', path, options)
+      end
+
+      # Make a PUT request expecting a JSON response.
+      def put(path, body, options = {})
+        options[:body] = body
+        json_request('PUT', path, options)
+      end
+
+      def delete(path, options = {})
+        options[:idempotent] = true
+        json_request('DELETE', path, options)
+      end
+
+      def json_request(method, path, options = {})
+        if options[:body] && !options[:body].instance_of?(String)
+          options[:body] = options[:body].to_json
+        end
+        options[:headers] ||= {}
+        options[:headers]['Content-Type'] = 'application/json'
+        response = request(method, path, options)
+        JSON.parse(response.body) if (response.body.length > 0 && response.headers['content-type'].match(/json/))
+      end
+
+      def request(method, path, options = {})
+        connection = Excon.new(@creds.url)
+        options[:expects] ||= [200]
+        options[:method] = method
+        options[:path] = path
+        options[:headers] ||= {}
+        options[:headers]['X-ApiKeys'] = "accessKey=#{@creds.access_key}; secretKey=#{@creds.secret_key}"
+        connection.request(options)
+      end
+      #
+      # # Export and download a scan result
+      # #
+      # # @scan_id
+      # # @body
+      # #   A hash to be used for the initial request payload.
+      # # @return String
+      # #   The filepath of the file that was downloaded.
+      # def export_download_scan(scan_id, body = {}, download_directory = '', history_id = nil)
+      #   body = {
+      #       'format' => 'pdf',
+      #       'chapters' => ['vuln_hosts_summary'],
+      #   }.merge(body)
+      #   fail("Invalid format #{body['format']}") unless ['nessus', 'csv', 'db', 'html', 'pdf'].include?(body['format'])
+      #   diff = body['chapters'] - %w(vuln_hosts_summary vuln_by_host compliance_exec remediations vuln_by_plugin compliance)
+      #   fail("Invalid chapter list #{body['chapters'].inspect}") if diff.length > 0
+      #   body['chapters'] = body['chapters'].join(';')
+      #   options = {}
+      #   options[:query] = {'history_id' => history_id} if history_id
+      #   data = post("/scans/#{scan_id}/export", body, options)
+      #   file_id = data['file']
+      #   fail "Invalid response to export" unless file_id
+      #   NessusClient.retry do
+      #     data = get("/scans/#{scan_id}/export/#{file_id}/status")
+      #     data['status'] == 'ready'
+      #   end
+      #   # Use request() since we the response is a file, not JSON
+      #   response = request('GET', "/scans/#{scan_id}/export/#{file_id}/download")
+      #   match = response.headers['content-disposition'].match(/attachment; filename="([^"]+)"/)
+      #   fail 'Invalid download response' unless match
+      #   target_filename = File.join(download_directory, match[1])
+      #   bytes = File.write(target_filename, response.body)
+      #   content_length = response.headers['content-length'].to_i
+      #   fail "File has wrong number of bytes #{bytes} vs #{content_length} in #{target_filename}" unless bytes == content_length
+      #   target_filename
+      # end
+
+      # class TimeoutException < RuntimeError
+      # end
+      #
+      # # Retry a block of code multiple times until it returns true, or until
+      # # time limit ais reached. This always runs the block at least once.
+      # #
+      # # Options:
+      # #
+      # #  [:delay]  Sleep the given number of seconds between each try.
+      # #            The default to sleep 2 seconds.
+      # #
+      # #  [:timeout] Don't try for longer than the given number of seconds.
+      # #
+      # #  [:message] A message that describes what is being attempted.
+      # #
+      # #  [:stdout] An IO object to write messages to. Defaults to $stdout.
+      # #
+      # def self.retry(opts = {}, &blk)
+      #   opts = {
+      #       delay: 2,
+      #       timeout: 30,
+      #       stdout: $stdout,
+      #   }.merge(opts)
+      #
+      #   d = opts[:delay]
+      #   io = opts[:stdout]
+      #   times = 0
+      #   start_time = Time.now.to_f
+      #   stop_time = Time.now.to_i + opts[:timeout]
+      #   io.puts "Waiting for: #{opts[:message]}" if opts[:message]
+      #   begin
+      #     sleep(d) if times > 0
+      #     times += 1
+      #     result = blk.call(times)
+      #     if (!result) &&(Time.now.to_f - start_time) >= opts[:timeout]
+      #       raise TimeoutException.new("Timeout after #{opts[:timeout]} sec.")
+      #     end
+      #     io.puts "+ retry: #{stop_time-Time.now.to_i} secs left"
+      #   end while (!result)
+      #   result
+      # end
+    end
+  end
+end

data/lib/zaws/helper/nessus_creds.rb

@@ -0,0 +1,67 @@
+require 'yaml'
+
+module ZAWS
+  module Helper
+    class NessusCreds
+        # Simple container for credentials
+        class Creds
+
+          # @param [String] nessus_url
+          # @param [String] access_key
+          # @param [String] secret_key
+          def initialize(nessus_url, access_key, secret_key)
+            @creds = {}
+            @creds[:url] = nessus_url
+            @creds[:access_key] = access_key
+            @creds[:secret_key] = secret_key
+          end
+
+          def url
+            fetch_creds[:url]
+          end
+
+          def access_key
+            fetch_creds[:access_key]
+          end
+
+          def secret_key
+            fetch_creds[:secret_key]
+          end
+
+          private
+
+          def fetch_creds
+            # Nothing to do in the base class
+            @creds
+          end
+        end
+
+        # Subclass that loads creds from a YAML file.
+        class Creds::YamlFile < Creds
+          FILENAME = '.nessus.yml'
+
+          def initialize(home)
+            @creds_file = File.join(home, FILENAME)
+          end
+
+          private
+
+          def fetch_creds
+            unless @creds
+              fail("Missing file #{@creds_file}") unless File.exist?(@creds_file)
+              file_creds = YAML.load(File.read(@creds_file))
+              file_creds ||= {}
+              ['url', 'secretKey', 'accessKey'].each do |key|
+                fail("Missing #{key} value in #{@creds_file}") unless file_creds[key]
+              end
+              @creds = {}
+              @creds[:url] = file_creds['url']
+              @creds[:access_key] = file_creds['accessKey']
+              @creds[:secret_key] = file_creds['secretKey']
+            end
+            @creds
+          end
+        end
+    end
+  end
+end

data/lib/zaws/helper/option.rb

@@ -1,24 +1,23 @@
-
 module ZAWS
   module Helper
-	class Option
+    class Option
 
-	  def self.exists?(optarr,opt_hash)
-		optarr.all? { |opt| opt_hash[opt] }
-	  end
+      def self.exists?(optarr, opt_hash)
+        optarr.all? { |opt| opt_hash[opt] }
+      end
 
-      def self.absent(optarr,opt_hash)
-        optarr.inject([]) { |missing,opt| opt_hash[opt] ? missing : missing << opt }
-	  end
+      def self.absent(optarr, opt_hash)
+        optarr.inject([]) { |missing, opt| opt_hash[opt] ? missing : missing << opt }
+      end
 
-      def self.exclusive?(optarr,opt_hash)
-		(optarr.inject(0) { |total,opt| opt_hash[opt] ? total + 1 : total }) <= 1
-	  end
+      def self.exclusive?(optarr, opt_hash)
+        (optarr.inject(0) { |total, opt| opt_hash[opt] ? total + 1 : total }) <= 1
+      end
 
-	  def self.minimum?(min,optarr,opt_hash)
-		(optarr.inject(0) { |total,opt| opt_hash[opt] ? total + 1 : total }) >= min 
-	  end
+      def self.minimum?(min, optarr, opt_hash)
+        (optarr.inject(0) { |total, opt| opt_hash[opt] ? total + 1 : total }) >= min
+      end
 
-	end
+    end
   end
 end

data/lib/zaws/helper/output.rb

@@ -1,46 +1,98 @@
+require 'json'
 
 module AWS_consts
   # Color codes http://kpumuk.info/ruby-on-rails/colorizing-console-ruby-script-output/
-   COLOR_RED=31
-   COLOR_GREEN=32
-   COLOR_YELLOW=33
-   COLOR_DEFAULT=39
-   COLOR_BLUE=34
-   COLOR_CYAN=36
+  COLOR_RED=31
+  COLOR_GREEN=32
+  COLOR_YELLOW=33
+  COLOR_DEFAULT=39
+  COLOR_BLUE=34
+  COLOR_CYAN=36
 end
 
 module ZAWS
   module Helper
-	class Output 
+    class Output
 
-	  def self.colorize(text, color_code)
-		"\e[#{color_code}m#{text}\e[0m"
-	  end
+      def self.out_nagios_ok(output, text)
+        output.puts colorize(text, AWS_consts::COLOR_GREEN) if output
+      end
 
-	  def self.opt_required(output,opt_arr)
-		opt_arr.each { |opt| output.puts(" --#{opt} required!") }
-	  end
+      def self.out_nagios_critical(output, text)
+        output.puts colorize(text, AWS_consts::COLOR_RED) if output
+      end
 
-      def self.opt_exclusive(output,opt_arr)
+      def self.out_no_op(output, text)
+        output.puts colorize(text, AWS_consts::COLOR_GREEN) if output
+      end
+
+      def self.out_change(output, text)
+        output.puts colorize(text, AWS_consts::COLOR_YELLOW) if output
+      end
+
+      def self.return_change(text)
+        return colorize(text, AWS_consts::COLOR_YELLOW)
+      end
+
+      def self.return_no_op( text)
+        return colorize(text, AWS_consts::COLOR_GREEN)
+      end
+
+      def self.colorize(text, color_code)
+        "\e[#{color_code}m#{text}\e[0m"
+      end
+
+      def self.opt_required(output, opt_arr)
+        opt_arr.each { |opt| output.puts(" --#{opt} required!") }
+      end
+
+      def self.opt_exclusive(output, opt_arr)
         output.puts("  These options cannot be combined:")
-		opt_arr.each { |opt| output.puts("    --#{opt}") }
-	  end
+        opt_arr.each { |opt| output.puts("    --#{opt}") }
+      end
 
-      def self.opt_minimum(output,min,opt_arr)
+      def self.opt_minimum(output, min, opt_arr)
         output.puts("  At mininum, #{min} of the following is required:")
-		opt_arr.each { |opt| output.puts("    --#{opt}") }
-	  end
+        opt_arr.each { |opt| output.puts("    --#{opt}") }
+      end
 
-      def self.binary_nagios_check(ok_condition,ok_msg,critical_msg,textout=nil)
+      def self.binary_nagios_check(ok_condition, ok_msg, critical_msg, textout=nil)
         if ok_condition
-          textout.puts ok_msg if textout
-		  return 0
-		else
-          textout.puts critical_msg if textout
-		  return 2
-		end
-	  end
-
-	end
+          out_nagios_ok(textout, ok_msg) if textout
+          return 0
+        else
+          out_nagios_critical(textout, critical_msg) if textout
+          return 2
+        end
+      end
+
+      def self.cloudtrail(json_data, format = "csv")
+        parsed = JSON.parse(json_data)
+        records = parsed["Records"]
+
+        str_out = ""
+        if format == "csv"
+          records.each do |record|
+            str_out << "#{record["userIdentity"]["userName"]}, "
+            str_out << "#{record["eventTime"]}, "
+            str_out << "#{record["eventSource"]}, "
+            str_out << "#{record["eventName"]}"
+
+            if record["errorCode"]
+              str_out << ", "
+              str_out << "#{record["errorCode"]}, "
+              str_out << "#{record["errorMessage"]}"
+            end
+
+            str_out << "\n"
+          end
+        elsif format == "raw"
+          str_out=json_data
+        end
+
+        return str_out
+      end
+
+    end
   end
 end

data/lib/zaws/helper/process_hash.rb

@@ -0,0 +1,47 @@
+module ZAWS
+  module Helper
+    class ProcessHash
+      def self.keep(target, list_of_strings)
+        result=''
+        if target.instance_of?(Hash)
+          target.each do |k, v|
+            list_of_strings.each do |x|
+              if k.downcase.include? x.downcase
+                result = {} if result.eql?('')
+                result[k]=v
+              end
+            end
+            if result.eql?('')
+              recurse=self.keep(v, list_of_strings)
+            end
+            if !recurse.nil? and !recurse.eql?('')
+              result = {} if result.eql?('')
+              result[k]=recurse
+            end
+          end
+        end
+        if target.instance_of?(String)
+          list_of_strings.each do |x|
+            if target.downcase.include? x.downcase
+              result=target
+            end
+          end
+        end
+        if target.instance_of?(Array)
+          target.each do |y|
+            iterate=self.keep(y, list_of_strings)
+            if !iterate.nil? and !iterate.eql?('')
+              result = [] if result.eql?('')
+              result << iterate
+            end
+          end
+        end
+        if result.nil?
+          return ''
+        end
+        return result
+      end
+    end
+  end
+end
+

data/lib/zaws/helper/verbose.rb

@@ -0,0 +1,15 @@
+module ZAWS
+  module Helper
+    class Verbose
+
+      def self.output(available)
+        if available
+          return $stdout
+        else
+          return nil
+        end
+
+      end
+    end
+  end
+end

data/lib/zaws/helper/zfile.rb

@@ -1,11 +1,11 @@
 module ZAWS
   module Helper
-	class ZFile
+    class ZFile
 
-	  # This prepend function not currently unit tested, 
-	  # see "thor/spec/actions/file_manipulation_spec" 
-	  # for ideas on how to accomplish this.
-	  def self.prepend(command,description,filepath)
+      # This prepend function not currently unit tested,
+      # see "thor/spec/actions/file_manipulation_spec"
+      # for ideas on how to accomplish this.
+      def prepend(command, description, filepath)
         new_file=filepath + ".new"
         File.open(new_file, 'w') do |fo|
           fo.puts description
@@ -14,10 +14,10 @@ module ZAWS
             fo.puts li
           end
         end
-          File.rename(new_file, filepath)
-	  end
+        File.rename(new_file, filepath)
+      end
 
-	end
+    end
   end
 end