public VulnsByFamily(NessusClientData_v2 data)
: base(new PluginComparer())
{
foreach (ReportHost host in data.Report.ReportHosts)
{
foreach (ReportItem item in host.ReportItems)
{
Plugin plugin = new Plugin(item);
if (plugin.Criticality == Criticality.None)
{
continue;
}
if (!ContainsKey(plugin))
{
Add(plugin, new ReportHosts());
}
if (!this[plugin].Contains(host))
{
this[plugin].Add(host);
}
}
}
}
private void toolStripButton1_Click(object sender, EventArgs e)
{
//Add report
openFileDialog1.InitialDirectory = Environment.GetFolderPath(Environment.SpecialFolder.MyDocuments);
openFileDialog1.Filter = Filter;
openFileDialog1.FileName = "";
DialogResult r = openFileDialog1.ShowDialog(this);
if (r == System.Windows.Forms.DialogResult.OK)
{
NessusClientData_v2 data = NessusClientData_v2.Parse(openFileDialog1.FileName);
reports.Add(new Report(data));
}
}
private void backgroundWorker1_DoWork(object sender, DoWorkEventArgs e)
{
//Merge reports
NessusClientData_v2 report = reports[0].GetReport();
for (int i = 1; i < reports.Count; i++)
{
foreach (ReportHost host in reports[i].GetReport().Report.ReportHosts)
{
report.Report.ReportHosts.Add(host);
}
}
e.Result = report;
}
void backgroundWorker1_RunWorkerCompleted(object sender, RunWorkerCompletedEventArgs e)
{
Wait = false;
NessusClientData_v2 report = (NessusClientData_v2)e.Result;
saveFileDialog1.InitialDirectory = Environment.GetFolderPath(Environment.SpecialFolder.MyDocuments);
saveFileDialog1.FileName = "";
saveFileDialog1.Filter = Filter;
DialogResult r = saveFileDialog1.ShowDialog(this);
if (r == System.Windows.Forms.DialogResult.OK)
{
NessusClientData_v2.Save(report, saveFileDialog1.FileName);
statusLabel.Text = String.Format("Successfully merged {0} report(s) at {1}.", report.Report.ReportHosts.Count, saveFileDialog1.FileName);
}
}
private void backgroundWorker1_DoWork(object sender, DoWorkEventArgs e)
{
string inputPath = textBox1.Text;
NessusReports.ReportType reportType = ((ReportTypeSelection)comboBox1.SelectedItem).Type;
string outputPath = (string)e.Argument;
string ext = Path.GetExtension(outputPath);
NessusClientData_v2 data = NessusClientData_v2.Parse(inputPath);
if (ext.Equals("html", StringComparison.CurrentCultureIgnoreCase))
{
HtmlNessusReport report = new HtmlNessusReport();
report.Path = outputPath;
e.Result = report.Export(data, reportType);
}
else
{
CsvNessusReport report = new CsvNessusReport();
report.Path = outputPath;
e.Result = report.Export(data, reportType);
}
}
public Report(NessusClientData_v2 data)
{
scanData = data;
}
public override bool Export(NessusClientData_v2 data, NessusReports.ReportType type)
{
StringBuilder buffer = new StringBuilder();
if (Title.Length == 0)
{
Title = "Nessus Report (HTML)";
}
buffer.Append(HtmlTemplate.Header(Title));
/*
* CSS Reference:
* .title = Title of some section/page.
* .header = Column Headers
* .subtitle = Subtitle of some section/page.
* .critical = Critical
* .high = High
* .medium = Medium
* .low = Low
* .none = None
*/
switch (type)
{
case NessusReports.ReportType.HostsOnly:
buffer.Append("<tr><td class=\"header\">Name</td><td class=\"header\">IP</td><td class=\"header\">FQDN</td><td class=\"header\">MAC</td><td class=\"header\">OS</td></tr>");
foreach (ReportHost host in data.Report.ReportHosts)
{
string fqdn = (host.FQDN.Length > 0) ? host.FQDN : host.NetbiosName;
string mac = host.MacAddress;
string os = host.OS;
buffer.Append(String.Format("<tr><td>{0}</td><td>{1}</td><td>{2}</td><td>{3}</td><td>{4}</td></tr>", host.Name, host.IpAddress, fqdn, mac, os));
}
break;
case NessusReports.ReportType.VulnsByHost:
foreach (ReportHost host in data.Report.ReportHosts)
{
buffer.Append(String.Format("<tr><td colspan=\"9\" class=\"title\">{0} ({1})</td></tr>", host.Name, host.IpAddress));
buffer.Append("<tr><td class=\"header\">Port</td><td class=\"header\">Protocol</td><td class=\"header\">Service</td><td class=\"header\">Description</td><td class=\"header\">Plugin</td><td class=\"header\">Risk</td><td class=\"header\">Severity</td><td class=\"header\">Solution</td><td class=\"header\">Synopsis</td></tr>");
foreach (ReportItem item in host.ReportItems)
{
buffer.Append(String.Format("<tr><td>{0}</td><td>{1}</td><td>{2}</td><td>{3}</td><td>{4}</td><td>{5}</td><td>{6}</td><td>{7}</td><td>{8}</td></tr>",
item.Port,
item.Protocol,
item.ServiceName,
item.Description,
item.Plugin_Name,
item.Risk_Factor,
item.Severity,
item.Solution,
item.Synopsis));
buffer.Append(Environment.NewLine);
}
}
break;
case NessusReports.ReportType.VulnsByFamily:
VulnsByFamily vulns = new VulnsByFamily(data);
//Now, we can do the HTML...
buffer.Append("<tr><td colspan=\"5\"><ul id=\"families\">");
foreach (Plugin plugin in vulns.Keys)
{
buffer.Append(String.Format("<li><a href=\"#{0}\" title=\"{1}\">{2} {3}</a> ({4})</li>", plugin.GetHashCode(), plugin.Description, plugin.Criticality.ToString().ToUpper(), plugin.Name, vulns[plugin].Count));
}
buffer.Append("</ul></td></tr>" + Environment.NewLine);
foreach (Plugin plugin in vulns.Keys)
{
buffer.Append(String.Format("<tr><td colspan=\"5\" class=\"title {0}\"><a name=\"{1}\"></a>{2} {3} ({4})</td></tr>", plugin.Criticality.ToString().ToLower(), plugin.GetHashCode(), plugin.Criticality.ToString().ToUpper(), plugin.Name, vulns[plugin].Count));
buffer.Append(String.Format("<tr><td colspan=\"5\" class=\"subtitle\">{0}</td></tr>", plugin.Description));
foreach (ReportHost host in vulns[plugin])
{
buffer.Append(String.Format("<tr><td>{0}</td><td>{1}</td><td>{2}</td><td>{3}</td><td>{4}</td></tr>", host.Name, host.IpAddress, host.FQDN, host.MacAddress, host.OS));
}
}
break;
}
buffer.Append(HtmlTemplate.Footer());
/*
* Write contents to file.
*/
TextWriter writer = null;
bool ok = false;
try
{
writer = new StreamWriter(File.Open(Path, FileMode.Create, FileAccess.Write, FileShare.None));
writer.WriteLine(buffer);
writer.Flush();
ok = true;
}
catch (Exception e)
{
Console.WriteLine("Error: Could not export/write file {0}: {1} {2}", Path, e.GetType(), e.Message);
}
finally
{
if (writer != null)
{
writer.Close();
}
}
return(ok);
}
public abstract bool Export(NessusClientData_v2 data, NessusReports.ReportType type);
public override bool Export(NessusClientData_v2 data, NessusReports.ReportType type)
{
StringBuilder buffer = new StringBuilder();
switch (type)
{
case NessusReports.ReportType.HostsOnly:
buffer.Append("Name,IP,FQDN,MAC,OS" + Environment.NewLine);
foreach (ReportHost host in data.Report.ReportHosts)
{
buffer.Append(String.Format("{0},{1},{2},\"{3}\",\"{4}\"{5}",
host.Name,
host.IpAddress,
host.FQDN,
AddSlashes(host.MacAddress),
AddSlashes(host.OS),
Environment.NewLine));
}
break;
case NessusReports.ReportType.VulnsByHost:
buffer.Append("Name,IP,FQDN,Mac,Port,Protocol,Service,Description,Plugin,Risk,Severity,Solution,Synopsis" + Environment.NewLine);
foreach (ReportHost host in data.Report.ReportHosts)
{
//buffer.Append(String.Format("{0} {1}{2}", host.Name, host.FQDN, Environment.NewLine));
foreach (ReportItem item in host.ReportItems)
{
buffer.Append(String.Format("{0},{1},{2},{3},{4},{5},{6},\"{7}\",{8},{9},{10},\"{11}\",\"{12}\"",
host.Name,
host.IpAddress,
host.FQDN,
host.MacAddress,
item.Port,
item.Protocol,
item.ServiceName,
AddSlashes(item.Description),
item.Plugin_Name,
item.Risk_Factor,
item.Severity,
AddSlashes(item.Solution),
AddSlashes(item.Synopsis)));
buffer.Append(Environment.NewLine);
}
buffer.Append(Environment.NewLine);
}
break;
case NessusReports.ReportType.VulnsByFamily:
VulnsByFamily vulns = new VulnsByFamily(data);
buffer.Append("Plugin,Criticality,HostName,IP,FQDN,MacAddress,Description,Severity,Synopsis,Solution" + Environment.NewLine);
foreach (Plugin plugin in vulns.Keys)
{
foreach (ReportHost host in vulns[plugin])
{
buffer.Append(String.Format("\"{0}\",{1},{2},{3},{4},\"{5}\",\"{6}\",{7},\"{8}\",\"{9}\"{10}",
AddSlashes(plugin.Name),
plugin.Criticality.ToString(),
host.Name,
host.IpAddress,
host.FQDN,
AddSlashes(host.MacAddress),
AddSlashes(plugin.Description),
plugin.Severity + "",
AddSlashes(plugin.Synopsis),
AddSlashes(plugin.Solution),
Environment.NewLine));
}
}
break;
}
bool ok = false;
TextWriter writer = null;
try
{
writer = new StreamWriter(File.Open(Path, FileMode.Create, FileAccess.Write, FileShare.None));
writer.WriteLine(buffer);
writer.Flush();
ok = true;
}
catch (Exception e)
{
Console.WriteLine("Error: Could not export/write file {0}: {1} {2}", Path, e.GetType(), e.Message);
}
finally
{
if (writer != null)
{
writer.Close();
}
}
return(ok);
}
