OpenBSD OpenSSH 4.3 on Linux
|None| +|Fix|string|None|False|The steps that are part of the fix this solution prescribes|None| +|Solution ID|string|None|False|The identifier of the solution|None| +|Solution Summary|string|None|False|Remediation summary|None| +|Solution Type|string|None|True|Remediation type|None| +|Status|string|None|False|Status, i.e. vulnerable|None| +|Vulnerability ID|string|None|False|The identifier of the vulnerability|None| + +**software** + +|Name|Type|Default|Required|Description|Example| +| :--- | :--- | :--- | :--- | :--- | :--- | +|Configurations|[]configuration|None|False|Configurations|None| +|CPE|cpe|None|False|CPE|None| +|Description|string|None|False|Description of the software|None| +|Family|string|None|False|Family of the software|None| +|ID|integer|None|False|ID|None| +|Product|string|None|False|Product of the software|None| +|Type|string|None|False|Type of the software|None| +|Vendor|string|None|False|Vendor of the software|None| +|Version|string|None|False|Version of the software|None| + +**vulnerability_description** + +|Name|Type|Default|Required|Description|Example| +| :--- | :--- | :--- | :--- | :--- | :--- | +|HTML|string|None|None|Vulnerability description HTML|None| +|Text|string|None|None|Vulnerability description raw text|None| + +**pci** + +|Name|Type|Default|Required|Description|Example| +| :--- | :--- | :--- | :--- | :--- | :--- | +|Adjusted CVSS score|integer|None|None|PCI adjusted CVSS score|None| +|Adjusted severity score|integer|None|None|PCI adjusted severity score|None| +|Fail|boolean|None|None|Whether this vulnerability results in a PCI assessment failure|None| +|Special Notes|string|None|None|PCI special notes|None| +|Status|string|None|None|PCI status|None| + +**cvss_v2** + +|Name|Type|Default|Required|Description|Example| +| :--- | :--- | :--- | :--- | :--- | :--- | +|Access Complexity|string|None|None|CVSSv2 access complexity metric|None| +|Access Vector|string|None|None|CVSSv2 access vector metric|None| +|Authentication|string|None|None|CVSSv2 authentication metric|None| +|Availability Impact|string|None|None|CVSSv2 availability impact metric|None| +|Confidentiality Impact|string|None|None|CVSSv2 confidentiality impact metric|None| +|Exploit Score|float|None|None|CVSSv2 combined exploit metric score (Access Complexity/Access Vector/Authentication)|None| +|Impact Score|float|None|None|CVSSv2 combined impact metric score (Confidentiality/Integrity/Availability)|None| +|Integrity Impact|string|None|None|CVSSv2 integrity impact metric|None| +|Score|float|None|None|CVSSv2 score|None| +|Vector|string|None|None|CVSSv2 combined vector string|None| + +**cvss_v3** + +|Name|Type|Default|Required|Description|Example| +| :--- | :--- | :--- | :--- | :--- | :--- | +|Attack Complexity|string|None|None|CVSSv3 attack complexity metric|None| +|Attack Vector|string|None|None|CVSSv3 attack vector metric|None| +|Availability Impact|string|None|None|CVSSv3 availability impact metric|None| +|Confidentiality Impact|string|None|None|CVSSv3 confidentiality impact metric|None| +|Exploit Score|float|None|None|CVSSv3 combined exploit metric score (Attack Complexity/Attack Vector/Privilege Required/Scope/User Interaction)|None| +|Impact Score|float|None|None|CVSSv3 combined impact metric score (Confidentiality/Integrity/Availability)|None| +|Integrity Impact|string|None|None|CVSSv3 integrity impact metric|None| +|Privilege Required|string|None|None|CVSSv3 privilege required metric|None| +|Scope|string|None|None|CVSSv3 scope metric|None| +|Score|float|None|None|CVSSv3 score|None| +|User Interaction|string|None|None|CVSSv3 user interaction metric|None| +|Vector|string|None|None|CVSSv3 combined vector string|None| + +**cvss** + +|Name|Type|Default|Required|Description|Example| +| :--- | :--- | :--- | :--- | :--- | :--- | +|Links|[]link|None|None|List of hypermedia links to corresponding resources|None| +|V2|cvss_v2|None|None|CVSSv2 details|None| +|V3|cvss_v3|None|None|CVSSv3 details|None| + +**creds** + +|Name|Type|Default|Required|Description|Example| +| :--- | :--- | :--- | :--- | :--- | :--- | +|Port|integer|None|False|The port that is used|None| +|Protocol|string|None|False|TCP or other|None| +|Status|string|None|False|Which creds apply|None| + +**identifiers** + +|Name|Type|Default|Required|Description|Example| +| :--- | :--- | :--- | :--- | :--- | :--- | +|ID|string|None|False|The ID|None| +|Source|string|None|False|The source|None| + +**asset_tag** + +|Name|Type|Default|Required|Description|Example| +| :--- | :--- | :--- | :--- | :--- | :--- | +|Name|string|None|False|The name|None| +|Type|string|None|False|The type|None| + +**asset** + +|Name|Type|Default|Required|Description|Example| +| :--- | :--- | :--- | :--- | :--- | :--- | +|Assessed for Policies|boolean|None|False|Whether the asset has been assessed for policies at least once|None| +|Assessed for Vulnerabilities|boolean|None|False|Whether the asset has been assessed for vulnerabilities at least once|None| +|Credential Assessments|[]creds|None|False|Assessments from the credentials|None| +|Critical Vulnerabilities|integer|None|False|Number of critical vulnerabilities|None| +|Exploits|integer|None|False|Number of exploits|None| +|Hostname|string|None|False|Primary host name (local or FQDN) of the asset|None| +|ID|string|None|True|Identifier of the asset|None| +|IP|string|None|False|Primary IPv4 or IPv6 address of the asset|None| +|Last Assessed For Vulnerabilities|string|None|False|Date of last scan|None| +|Last Scan End|string|None|False|When the last scan was ended|None| +|Last Scan Start|string|None|False|When the last scan was started|None| +|MAC|string|None|False|Media Access Control (MAC) address, e.g. AF:12:BC:5A:F7:48|None| +|Malware Kits|integer|None|False|Number of malware kits|None| +|Moderate Vulnerabilities|integer|None|False|Number of moderate vulnerabilities|None| +|New Vulnerabilities|[]string|None|False|Vulnerabilities that are the new between current and comparison time for the asset|None| +|OS Architecture|string|None|False|The srchitecture of the os|None| +|OS Description|string|None|False|Description of the os|None| +|OS Family|string|None|False|Family of the os|None| +|OS Name|string|None|False|Name of the os|None| +|OS System Name|string|None|False|Name of the system os|None| +|OS Type|string|None|False|Type of os|None| +|OS Vendor|string|None|False|Vendor of the os|None| +|Remediated Vulnerabilities|[]string|None|False|Vulnerabilities that were remediated in the latest version at current time for the asset|None| +|Risk Score|float|None|False|Risk score (with criticality adjustments) of the asset|None| +|Severe Vulnerabilities|integer|None|False|Number of sever vulns|None| +|Source|string|None|False|Source of the asset|None| +|Tags|[]asset_tag|None|False|Asset tags|None| +|Total Vulnerabilities|integer|None|False|Total number of vulns|None| +|Unique Identifiers|[]identifiers|None|False|Uniqure aspects of the asset|None| + +**exploit** + +|Name|Type|Default|Required|Description|Example| +| :--- | :--- | :--- | :--- | :--- | :--- | +|Description|string|None|True|A verbose description of the exploit|None| +|ID|string|None|True|The identifier of the exploit|None| +|Name|string|None|True|The name of the exploit|None| +|Rank|string|None|True|The exploit rank|None| +|Skill level|string|None|True|The level of skill required to use the exploit|None| +|Source|string|None|True|Details about where the exploit is defined|None| + +**vulnerability** + +|Name|Type|Default|Required|Description|Example| +| :--- | :--- | :--- | :--- | :--- | :--- | +|Added|date|None|False|Date the vulnerability was last added to an asset|None| +|Categories|string|None|True|Labels this vulnerability falls under|None| +|CVES|string|None|False|CVES ID|None| +|CVSSv2|cvss_v2|None|False|information regarding CVSSv2|None| +|CVSSv3|cvss_v3|None|False|information regarding CVSSv3|None| +|Denial of Service|boolean|None|False|Whether or not this vulnerability is a denial of service attack|None| +|Description|string|None|False|Description of the vulnerability|None| +|Exploits|[]exploit|None|False|List of exploits related to the vulnerability|None| +|ID|string|None|True|ID of the vulnerability|None| +|Links|[]link|None|False|List of links related to the vulnerability|None| +|Malware Kits|[]object|None|False|List of malware kits related to the vulnerability|None| +|Modified|date|None|False|Date the vulnerability was last modified|None| +|PCI|pci|None|False|information regarding PCI|None| +|Published|date|None|True|Date the vulnerability was added to InsightVM|None| +|References|string|None|False|Links to information related to the vulnerability|None| +|Risk Score|float|None|True|Risk score (with criticality adjustments) of the vulnerability|None| +|Severity|string|None|True|Severity of the vulnerability|None| +|Severity Score|integer|None|True|Severity score of the vulnerability|None| +|Title|string|None|False|Name of the vulnerability|None| -_This plugin does not contain any triggers._ - -### Custom Output Types - -#### address - -|Name|Type|Required|Description| -|----|----|--------|-----------| -|IP|string|False|IPv4 or IPv6 address| -|MAC|string|False|Media Access Control (MAC) address, e.g. AF:12:BC:5A:F7:48| - -#### asset - -|Name|Type|Required|Description| -|----|----|--------|-----------| -|Addresses|[]address|False|All addresses discovered on the asset| -|Assessed for Policies|boolean|False|Whether the asset has been assessed for policies at least once| -|Assessed for Vulnerabilities|boolean|False|Whether the asset has been assessed for vulnerabilities at least once| -|Configurations|[]configuration|False|Configuration key-values pairs enumerated on the asset| -|Databases|[]database|False|Databases enumerated on the asset| -|Files|[]file|False|Files discovered with searching on the asset| -|History|[]history|False|History of changes to the asset over time| -|Hostname|string|False|Primary host name (local or FQDN) of the asset| -|Hostnames|[]hostName|False|All hostnames or aliases discovered on the asset| -|ID|integer|False|Identifier of the asset| -|IDs|[]id|False|Unique identifiers found on the asset, such as hardware or operating system identifiers| -|IP|string|False|Primary IPv4 or IPv6 address of the asset| -|Links|[]link|False|Hypermedia links to corresponding or related resources| -|MAC|string|False|Media Access Control (MAC) address, e.g. AF:12:BC:5A:F7:48| -|OS|string|False|Full description of the operating system of the asset| -|OS Fingerprint|osFingerprint|False|Details of the operating system of the asset| -|Raw Risk Score|float|False|Base risk score of the asset| -|Risk Score|float|False|Risk score (with criticality adjustments) of the asset| -|Services|[]service|False|Services discovered on the asset| -|Software|[]software|False|Software discovered on the asset| -|Type|string|False|Type of asset e.g. unknown, guest, hypervisor, physical, mobile| -|User Groups|[]userGroup|False|User group accounts enumerated on the asset| -|Users|[]user|False|User accounts enumerated on the asset| -|Vulnerabilities|vulnerabilities|False| Summary information for vulnerabilities on the asset| - -#### asset_group - -|Name|Type|Required|Description| -|----|----|--------|-----------| -|Assets|integer|True|Site asset count| -|Description|string|False|Asset group description| -|ID|integer|True|Site ID| -|Links|[]link|True|Hypermedia links to corresponding or related resources| -|Name|string|True|Asset group name| -|Risk Score|float|True|Site risk score| -|Search Criteria|object|False|Asset group search criteria| -|Type|string|True|Asset group type| -|Vulnerabilities|vulnerabilities_count|True|Asset group vulnerability counts| - -#### asset_vulnerability - -|Name|Type|Required|Description| -|----|----|--------|-----------| -|ID|string|False|Vulnerability ID, ie. ssh-openssh-x11uselocalhost-x11-forwarding-session-hijack| -|Instances|integer|False|Identifier of the report instance| -|Links|[]link|False|Hypermedia links to corresponding or related resources| -|Results|[]asset_vulnerability_result|False|The vulnerability check results for the finding. Multiple instances may be present if one or more checks fired, or a check has multiple independent results| -|Risk Score|float|False|The risk score for the vulnerability| -|Since|string|False|The date when this vulnerability was first detected| -|Status|string|False|Status, ie. vulnerable| - -#### asset_vulnerability_result - -|Name|Type|Required|Description| -|----|----|--------|-----------| -|Check ID|string|False|Check ID, ie. ssh-openssh-x11uselocalhost-x11-forwarding-session-hijack| -|Exceptions|[]integer|False|If the result is vulnerable with exceptions applied, the identifier(s) of the exceptions actively applied to the result| -|Key|string|False|An additional discriminating key used to uniquely identify between multiple instances of results on the same finding| -|Links|[]link|False|Hypermedia links to corresponding or related resources| -|Port|integer|False|Port of the service the result was discovered on e.g. 22| -|Proof|string|False|Proof of the vulnerability, ie.OpenBSD OpenSSH 4.3 on Linux
| -|Protocol|string|False|Protocol of the service the result was discovered on, ie. TCP| -|Status|string|False|Status of the vulnerability check result, ie. vulnerable-version| - -#### authentication_source - -|Name|Type|Required|Description| -|----|----|--------|-----------| -|External|boolean|True|Whether the authentication source is external (true) or internal (false)| -|ID|integer|True|Authentication source identifier| -|Links|[]link|True|List of hypermedia links to corresponding or related resources| -|Name|string|True|Authentication source name| -|Type|string|True|Authentication source type| - -#### configuration - -|Name|Type|Required|Description| -|----|----|--------|-----------| -|Name|string|False|Name of the configuration value| -|Value|string|False|Configuration value| - -#### cpe - -|Name|Type|Required|Description| -|----|----|--------|-----------| -|Edition|string|False|Edition-related terms applied by the vendor to the product| -|Language|string|False|Defines the language supported in the user interface of the product being described. The format of the language tag adheres to RFC 5646| -|Other|string|False|Captures any other general descriptive or identifying information which is vendor- or product-specific and which does not logically fit in any other attribute value| -|Part|string|False|A single letter code that designates the particular platform part that is being identified| -|Product|string|False|Most common and recognizable title or name of the product| -|Software Edition|string|False|Characterizes how the product is tailored to a particular market or class of end users| -|Target Hardware|string|False|Characterize the instruction set architecture on which the product operates| -|Target Software|string|False|Characterizes the software computing environment within which the product operates| -|Update|string|False|Vendor-specific alphanumeric strings characterizing the particular update, service pack, or point release of the product| -|Version 2.2|string|False|The full CPE string in the CPE 2.2 format| -|Version 2.3|string|False|The full CPE string in the CPE 2.3 format| -|Vendor|string|False|The person or organization that manufactured or created the product| -|Version|string|False|Vendor-specific alphanumeric strings characterizing the particular release version of the product| - -#### CVSS - -|Name|Type|Required|Description| -|----|----|--------|-----------| -|Links|[]link|False|List of hypermedia links to corresponding resources| -|V2|cvss_v2|False|CVSSv2 details| -|V3|cvss_v3|False|CVSSv3 details| - -#### CVSS_v2 - -|Name|Type|Required|Description| -|----|----|--------|-----------| -|Access Complexity|string|False|CVSSv2 access complexity metric| -|Access Vector|string|False|CVSSv2 access vector metric| -|Authentication|string|False|CVSSv2 authentication metric| -|Availability Impact|string|False|CVSSv2 availability impact metric| -|Confidentiality Impact|string|False|CVSSv2 confidentiality impact metric| -|Exploit Score|float|False|CVSSv2 combined exploit metric score (Access Complexity/Access Vector/Authentication)| -|Impact Score|float|False|CVSSv2 combined impact metric score (Confidentiality/Integrity/Availability)| -|Integrity Impact|string|False|CVSSv2 integrity impact metric| -|Score|float|False|CVSSv2 score| -|Vector|string|False|CVSSv2 combined vector string| - -#### CVSS_v3 - -|Name|Type|Required|Description| -|----|----|--------|-----------| -|Attack Complexity|string|False|CVSSv3 attack complexity metric| -|Attack Vector|string|False|CVSSv3 attack vector metric| -|Availability Impact|string|False|CVSSv3 availability impact metric| -|Confidentiality Impact|string|False|CVSSv3 confidentiality impact metric| -|Exploit Score|float|False|CVSSv3 combined exploit metric score (Attack Complexity/Attack Vector/Privilege Required/Scope/User Interaction)| -|Impact Score|float|False|CVSSv3 combined impact metric score (Confidentiality/Integrity/Availability)| -|Integrity Impact|string|False|CVSSv3 integrity impact metric| -|Privilege Required|string|False|CVSSv3 privilege required metric| -|Scope|string|False|CVSSv3 scope metric| -|Score|float|False|CVSSv3 score| -|User Interaction|string|False|CVSSv3 user interaction metric| -|Vector|string|False|CVSSv3 combined vector string| - -#### database - -|Name|Type|Required|Description| -|----|----|--------|-----------| -|Description|string|False|Description of the database instance| -|ID|integer|False|Identifier of the database| -|Name|string|False|Name of the database instance| - -#### exception_review - -|Name|Type|Required|Description| -|----|----|--------|-----------| -|Review Comment|string|False|The comment from the reviewer detailing the review| -|Review Date|date|False|The date and time the review took place| -|Links|[]link|False|Hypermedia links to corresponding or related resources| -|Reviewer Name|string|False|The login name of the user that reviewed the vulnerability exception| -|Reviewer ID|integer|False|The identifier of the user that reviewed the vulnerability exception| - -#### exception_scope - -|Name|Type|Required|Description| -|----|----|--------|-----------| -|Vulnerability Scope ID|integer|True|The identifer of the scope (asset, group, site) the vulnerability exception applies to| -|Exception Scope Key|string|False|Optional key to discriminate the instance when the scope type is Instance| -|Links|[]link|False|Hypermedia links to corresponding or related resources| -|Port|integer|False|If the scope type is Instance, the port the exception applies to| -|Exception Scope Type|string|True|The type of vulnerability exception - Global, Site, Asset, Asset Group, Instance| -|Vulnerability|string|True|The vulnerability the exception applies to| - -#### exception_submit - -|Name|Type|Required|Description| -|----|----|--------|-----------| -|Submit Comment|string|False|The comment from the submit detailing the exception| -|Submit Date|date|False|The date and time the exception request took place| -|Links|[]link|False|Hypermedia links to corresponding or related resources| -|Submitter Name|string|False|The login name of the user that submitted the vulnerability exception| -|Submitter ID|integer|False|The identifier of the user that submitted the vulnerability exception| - -#### file - -|Name|Type|Required|Description| -|----|----|--------|-----------| -|Attributes|[]configuration|False|Attributes detected on the file| -|Contents|bytes|False|Contents of the file| -|Name|string|False|Name of the file| -|Size|integer|False|Size of the regular file (in bytes). If the file is a directory, no value is returned| -|Type|string|False|Type of the file, e.g. file or directory| - -#### fingerprint - -|Name|Type|Required|Description| -|----|----|--------|-----------| -|Description|string|False|None| -|Family|string|False|None| -|Product|string|False|None| -|Vendor|string|False|None| -|Version|string|False|None| - -#### history - -|Name|Type|Required|Description| -|----|----|--------|-----------| -|Date|string|False|Date the asset information was collected or changed| -|Description|string|False|Additional information describing the change| -|Scan ID|integer|False|If a scan-oriented change, the identifier of the corresponding scan the asset was scanned in| -|Type|string|False|Type, for additional information see the help section of this plugin| -|User|string|False|User| -|Version|integer|False|Version| -|Vulnerability Exception ID|integer|False|Vulnerability exception ID| - -#### hostName - -|Name|Type|Required|Description| -|----|----|--------|-----------| -|Name|string|False|Name| -|Source|string|False|Source| - -#### id - -|Name|Type|Required|Description| -|----|----|--------|-----------| -|ID|string|False|ID| -|Source|string|False|Source| - -#### link - -|Name|Type|Required|Description| -|----|----|--------|-----------| -|URL|string|False|A hypertext reference, which is either a URI (see RFC 3986) or URI template (see RFC 6570)| -|Rel|string|False|Link relation type following RFC 5988| - -#### match - -|Name|Type|Required|Description| -|----|----|--------|-----------| -|Confidence|string|False|None| -|Fingerprint|fingerprint|False|None| - -#### osFingerprint - -|Name|Type|Required|Description| -|----|----|--------|-----------| -|Architecture|string|False|The architecture of the operating system| -|Configuration|[]configuration|False|Configuration key-values pairs enumerated on the operating system| -|CPE|cpe|False|Common Platform Enumeration| -|Description|string|False|The description of the operating system (containing vendor, family, product, version and architecture in a single string)| -|Family|string|False|Family of the operating system| -|ID|integer|False|Identifier of the operating system| -|Product|string|False|Name of the operating system| -|System Name|string|False|A combination of vendor and family (with redundancies removed), suitable for grouping| -|Type|string|False|Type of operating system| -|Vendor|string|False|Vendor of the operating system| -|Version|string|False|Version of the operating system| - -#### page - -|Name|Type|Required|Description| -|----|----|--------|-----------| -|Link Type|string|False|Type of link used to traverse or detect the page| -|Path|string|False|Path to the page (URI)| -|Response|integer|False|HTTP response code observed with retrieving the page| - -#### PCI - -|Name|Type|Required|Description| -|----|----|--------|-----------| -|Adjusted CVSS score|integer|False|PCI adjusted CVSS score| -|Adjusted severity score|integer|False|PCI adjusted severity score| -|Fail|boolean|False|Whether this vulnerability results in a PCI assessment failure| -|Special Notes|string|False|PCI special notes| -|Status|string|False|PCI status| - -#### remediation - -|Name|Type|Required|Description| -|----|----|--------|-----------| -|Asset Count|integer|True|The number of assets that require the solution to be applied| -|Assets|[]remediation_asset|True|The assets that require the solution to be applied| -|Fix|string|False|The steps that are part of the fix this solution prescribes| -|Rapid7 Solution ID|string|True|The identifier of the solution within InsightVM/Nexpose| -|Risk Score|integer|True|The risk score that is reduced by performing the solution| -|Solution ID|integer|True|The identifier of the solution| -|Summary|string|True|Remediation summary| -|Vulnerabilities|[]remediation_vulnerability|True|The vulnerabilities that would be remediated| -|Vulnerability Count|integer|True|The number of vulnerabilities that would be remediated| - -#### remediation_asset - -|Name|Type|Required|Description| -|----|----|--------|-----------| -|Criticality Tag|string|False|The criticality tag assigned to the asset| -|Hostname|string|False|Primary host name (local or FQDN) of the asset| -|ID|integer|True|Identifier of the asset| -|IP|string|True|Primary IPv4 or IPv6 address of the asset| -|MAC|string|False|Media Access Control (MAC) address, e.g. AF:12:BC:5A:F7:48| -|OS|string|False|Full description of the operating system of the asset| -|Risk Score|float|False|Risk score (with criticality adjustments) of the asset| - -#### remediation_vulnerability - -|Name|Type|Required|Description| -|----|----|--------|-----------| -|CVSS Score|string|True|The CVSS score of the vulnerability| -|Description|string|True|The description of the vulnerability| -|ID|integer|True|Identifier of the vulnerability| -|Risk Score|integer|True|The risk score of the vulnerability| -|Severity|integer|True|The severity of the vulnerability| -|Title|string|True|The title of the vulnerability| - -#### report_id - -|Name|Type|Required|Description| -|----|----|--------|-----------| -|Report ID|integer|False|Identifer| -|Report Name|string|False|Name of report| - -#### resources - -|Name|Type|Required|Description| -|----|----|--------|-----------| -|Applies To|string|False|None| -|Confidence|string|False|None| -|Estimate|string|False|None| -|ID|string|False|None| -|links|[]link|False|None| -|Matches|[]match|False|None| -|Steps|step|False|None| -|Summary|summary|False|None| -|Type|string|False|None| - -#### role - -|Name|Type|Required|Description| -|----|----|--------|-----------| -|Description|string|True|The description of the role| -|Id|string|True|ID of the role, e.g 'global-admin'| -|Links|[]link|True|List of hypermedia links to corresponding or related resources| -|Name|string|True|Name of the role| -|Privileges|[]string|True|List of privileges assigned to the role| - -#### scan - -|Name|Type|Required|Description| -|----|----|--------|-----------| -|Assets|integer|False|Count of assets identified during the scan| -|Duration|date|False|Duration of the scan| -|End Time|date|False|End time of the scan| -|Engine ID|integer|False|ID for the scan engine/scan engine pool used for the scan| -|Engine Name|string|False|Name of the scan engine/scan engine pool used for the scan| -|ID|integer|False|ID of the scan| -|Links|[]link|False|List of hypermedia links to corresponding resources| -|Message|string|False|Scan status message| -|Scan Name|string|False|Name of the scan| -|Scan Type|string|False|Type of scan (automated, manual, scheduled)| -|Site ID|integer|False|ID of the site scanned| -|Site Name|string|False|Name of the site scanned| -|Start Time|date|False|Start time for the scan| -|Started By|string|False|User that started the scan| -|Status|string|False|Scan status (aborted, unknown, running, finished, stopped, error, paused, dispatched, integrating)| -|Vulnerabilities|vulnerabilities_count|False|Counts of vulnerabilities identified during the scan| - -#### scan_engine - -|Name|Type|Required|Description| -|----|----|--------|-----------| -|Address|string|True|Scan engine address (IP/hostname)| -|Content Version|string|False|Scan engine content version| -|Engine Pools|[]integer|True|Engine pool IDs with which the scan engine is associated| -|ID|integer|True|Scan engine identifier| -|Last Refreshed Date|date|False|Date and time when the engine last communicated with the console| -|Last Updated Date|date|False|Date and time when the engine was last updated| -|Links|[]link|True|List of hypermedia links to corresponding resources| -|Name|string|True|Scan engine name| -|Port|integer|True|Scan engine communication port| -|Product Version|string|False|Scan engine product version| -|Sites|[]integer|False|Sites with which the scan engine is associated| - -#### scan_engine_pool - -|Name|Type|Required|Description| -|----|----|--------|-----------| -|Engines|[]integer|True|List of scan engine IDs associated with the scan engine pool| -|ID|integer|True|Scan engine pool identifier| -|Links|[]link|True|List of hypermedia links to corresponding resources| -|Name|string|True|Scan engine pool name| - -#### service - -|Name|Type|Required|Description| -|----|----|--------|-----------| -|Configurations|[]configuration|False|Configuration key-values pairs enumerated on the service| -|Databases|[]database|False|Databases enumerated on the service| -|Family|string|False|Family of the service| -|Links|[]link|False|Hypermedia links to corresponding or related resources| -|Name|string|False|Name of the service| -|Port|integer|False|Port of the service| -|Product|string|False|Product running the service| -|Protocol|string|False|Protocol of the service| -|User Groups|[]userGroup|False|User groups| -|Users|[]user|False|Users| -|Vendor|string|False|Vendor of the service| -|Version|string|False|Version of the service| -|Web Applications|[]webApplication|False|Web applications found on the service| - -#### site - -|Name|Type|Required|Description| -|----|----|--------|-----------| -|Assets|integer|True|Site asset count| -|Connection Type|string|False|Site discovery connection type (if applicable)| -|Description|string|False|Site description| -|ID|integer|True|Identifier of the site| -|Importance|string|True|Site importance, used with the 'weighted' risk scoring strategy| -|Last Scan Time|date|False|Site last scan time| -|Links|[]link|True|Hypermedia links to corresponding or related resources| -|Name|string|True|Site name| -|Risk Score|float|True|Site risk score| -|Scan Engine|integer|True|Site default scan engine ID| -|Scan Template|string|True|Site default scan template| -|Type|string|True|Site type| -|Vulnerabilities|vulnerabilities_count|True|Site vulnerability counts| - -#### software - -|Name|Type|Required|Description| -|----|----|--------|-----------| -|Configurations|[]configuration|False|Configurations| -|CPE|cpe|False|CPE| -|Description|string|False|Description of the software| -|Family|string|False|Family of the software| -|ID|integer|False|ID| -|Product|string|False|Product of the software| -|Type|string|False|Type of the software| -|Vendor|string|False|Vendor of the software| -|Version|string|False|Version of the software| - -#### step - -|Name|Type|Required|Description| -|----|----|--------|-----------| -|HTML|string|False|None| -|text|string|False|None| - -#### summary - -|Name|Type|Required|Description| -|----|----|--------|-----------| -|HTML|string|False|None| -|text|string|False|None| - -#### tag - -|Name|Type|Required|Description| -|----|----|--------|-----------| -|Color|string|False|Tag color| -|Created|date|False|Tag creation date| -|ID|integer|True|Tag ID| -|Links|[]link|False|Hypermedia links to corresponding or related resources| -|Name|string|True|Tag name| -|Risk Modifier|string|False|Tag risk score modifier| -|Search Criteria|object|False|Tag search criteria| -|Source|string|False|Tag source| -|Type|string|True|Tag type| - -#### tag_asset - -|Name|Type|Required|Description| -|----|----|--------|-----------| -|ID|integer|True|Asset ID| -|Sources|[]string|True|Tag association sources| - -#### user - -|Name|Type|Required|Description| -|----|----|--------|-----------| -|Full Name|string|False|Full name of the user account| -|ID|integer|False|Identifier of the user account| -|Name|string|False|Name of the user account| - -#### userGroup - -|Name|Type|Required|Description| -|----|----|--------|-----------| -|ID|integer|False|Identifier of the user group| -|Name|string|False|Name of the user group| - -#### user_account - -|Name|Type|Required|Description| -|----|----|--------|-----------| -|Authentication|authentication_source|False|The authentication source used to authenticate the user| -|Email|string|False|The email address of the user| -|Enabled|boolean|False|Whether the user account is enabled| -|ID|integer|False|The identifier of the user| -|Links|[]link|False|List of hypermedia links to corresponding or related resources| -|Locale|user_account_locale|False|The locale and language preferences for the user| -|Locked|boolean|True|Whether the user account is locked (exceeded maximum password retry attempts)| -|Login|string|True|The login name of the user| -|Name|string|True|The full name of the user| -|Role|user_account_role|False|The privileges and role the user is assigned| - -#### user_account_locale - -|Name|Type|Required|Description| -|----|----|--------|-----------| -|Default|string|True|Default locale| -|Reports|string|True|Reports locale| - -#### user_account_role - -|Name|Type|Required|Description| -|----|----|--------|-----------| -|All Asset Groups|boolean|False|Whether the user has access to all asset groups| -|All Sites|boolean|False|Whether the user has access to all sites| -|ID|string|False|The identifier of the role the user is assigned to| -|Privileges|[]string|False|None| -|Superuser|boolean|False|Whether the user is a superuser| - -#### vulnerabilities - -|Name|Type|Required|Description| -|----|----|--------|-----------| -|Critical|integer|False|Number of critical vulnerabilities| -|Exploits|integer|False|Number of distinct exploits that can exploit any of the vulnerabilities on the asset| -|Malware Kits|integer|False|Number of distinct malware kits that vulnerabilities on the asset are susceptible to| -|Moderate|integer|False|Number of moderate vulnerabilities| -|Severe|integer|False|Number of severe vulnerabilities| -|Total|integer|False|Total number of vulnerabilities| - -#### vulnerabilities_count - -|Name|Type|Required|Description| -|----|----|--------|-----------| -|Critical|integer|False|Number of critical vulnerabilities| -|Moderate|integer|False|Number of moderate vulnerabilities| -|Severe|integer|False|Number of severe vulnerabilities| -|Total number of vulnerabilities|integer|False|Total| - -#### vulnerability - -|Name|Type|Required|Description| -|----|----|--------|-----------| -|Added|date|False|Date that the vulnerability was added to InsightVM| -|Categories|[]string|False|List of vulnerabilities categories with which this vulnerability is affiliated| -|CVEs|[]string|False|List of CVE identifiers associated with this vulnerability| -|CVSS|CVSS|False|Vulnerability CVSS details| -|Denial of Service|boolean|False|Whether the vulnerability is a denial of service vulnerability| -|Description|vulnerability_description|False|Vulnerability description| -|Exploits|integer|False|Exploit count| -|ID|string|False|Vulnerability ID| -|Links|[]link|False|List of hypermedia links to corresponding resources| -|Malware Kits|integer|False|Malware kit count| -|Modified|date|False|Date the vulnerability was last modified in InsightVM| -|PCI|PCI|False|Vulnerability PCI details| -|Published|date|False|Date the vulnerability was published| -|Risk Score|float|False|Vulnerability risk score using the configured risk scoring strategy (RealRisk by default)| -|Severity|string|False|Vulnerability severity string (Moderate/Severe/Critical)| -|Severity Score|integer|False|Vulnerability severity score| -|Title|string|False|Vulnerability title| - -#### vulnerability_description - -|Name|Type|Required|Description| -|----|----|--------|-----------| -|HTML|string|False|Vulnerability description HTML| -|Text|string|False|Vulnerability description raw text| - -#### vulnerability_exception - -|Name|Type|Required|Description| -|----|----|--------|-----------| -|Expires|date|False|The date and time the vulnerability exception is set to expire| -|Vulnerability Exception ID|integer|True|The ID uniquely identifying the vulnerability exception| -|Links|[]link|False|Hypermedia links to corresponding or related resources| -|Review Details|object|False|Details of the exception review| -|Exception Scope|object|True|Details of the scope of the exception| -|State|string|True|The state of the vulnerability exception| -|Submission Details|object|True|Details of the exception submission| - -#### vulnerability_solution - -|Name|Type|Required|Description| -|----|----|--------|-----------| -|Links|[]link|False|Hypermedia links to corresponding or related resources| -|Solutions|[]resources|False|Solutions to vulnerabilities| - -#### webApplication - -|Name|Type|Required|Description| -|----|----|--------|-----------| -|ID|integer|False|Identifier of the web application| -|Pages|[]page|False|Pages| -|Root|string|False|Web root of the web application| -|Virtual Host|string|False|Virtual host of the web application| ## Troubleshooting @@ -1148,6 +856,7 @@ _This plugin does not contain any troubleshooting information._ # Version History +* 5.0.0 - Vulnerability Search: fix `malware_kits` output and remove `Asset Criteria` input * 4.0.0 - Vulnerability Search: fix schema validation problem for exploits field * 3.3.0 - Asset Search: add filter fields: `current_time`, `comparison_time` * 3.2.0 - Add vulnerability search action @@ -1159,9 +868,9 @@ _This plugin does not contain any troubleshooting information._ * 1.0.0 - Initial plugin # Links +* [InsightVM Cloud API](https://help.rapid7.com/insightvm/en-us/api/integrations.html) ## References -* [InsightVM Cloud API](https://help.rapid7.com/insightvm/en-us/api/integrations.html) * [Managing Platform API Keys](https://docs.rapid7.com/insight/managing-platform-api-keys) * [Scan Engine Pairing](https://docs.rapid7.com/insightvm/scan-engine-management-on-the-insight-platform/#how-to-pair-your-scan-engines-to-the-insight-platform) diff --git a/plugins/rapid7_insightvm_cloud/icon_rapid7_insightvm_cloud/actions/__init__.py b/plugins/rapid7_insightvm_cloud/icon_rapid7_insightvm_cloud/actions/__init__.py index cd1ae73fb8..b38595d559 100755 --- a/plugins/rapid7_insightvm_cloud/icon_rapid7_insightvm_cloud/actions/__init__.py +++ b/plugins/rapid7_insightvm_cloud/icon_rapid7_insightvm_cloud/actions/__init__.py @@ -1,7 +1,14 @@ -# GENERATED BY KOMAND SDK - DO NOT EDIT +# GENERATED BY INSIGHT-PLUGIN - DO NOT EDIT + +from .start_scan.action import StartScan + +from .get_scan.action import GetScan + from .asset_search.action import AssetSearch + from .get_asset.action import GetAsset -from .get_scan.action import GetScan -from .start_scan.action import StartScan + from .stop_scan.action import StopScan + from .vuln_search.action import VulnSearch + diff --git a/plugins/rapid7_insightvm_cloud/icon_rapid7_insightvm_cloud/actions/asset_search/__init__.py b/plugins/rapid7_insightvm_cloud/icon_rapid7_insightvm_cloud/actions/asset_search/__init__.py index f16996f6c6..21cb5323e7 100755 --- a/plugins/rapid7_insightvm_cloud/icon_rapid7_insightvm_cloud/actions/asset_search/__init__.py +++ b/plugins/rapid7_insightvm_cloud/icon_rapid7_insightvm_cloud/actions/asset_search/__init__.py @@ -1,2 +1,2 @@ -# GENERATED BY KOMAND SDK - DO NOT EDIT +# GENERATED BY INSIGHT-PLUGIN - DO NOT EDIT from .action import AssetSearch diff --git a/plugins/rapid7_insightvm_cloud/icon_rapid7_insightvm_cloud/actions/asset_search/schema.py b/plugins/rapid7_insightvm_cloud/icon_rapid7_insightvm_cloud/actions/asset_search/schema.py index 7ce702c4ee..6ea9bec848 100755 --- a/plugins/rapid7_insightvm_cloud/icon_rapid7_insightvm_cloud/actions/asset_search/schema.py +++ b/plugins/rapid7_insightvm_cloud/icon_rapid7_insightvm_cloud/actions/asset_search/schema.py @@ -1,4 +1,4 @@ -# GENERATED BY KOMAND SDK - DO NOT EDIT +# GENERATED BY INSIGHT-PLUGIN - DO NOT EDIT import insightconnect_plugin_runtime import json @@ -14,14 +14,14 @@ class Input: SIZE = "size" SORT_CRITERIA = "sort_criteria" VULN_CRITERIA = "vuln_criteria" - + class Output: ASSETS = "assets" - + class AssetSearchInput(insightconnect_plugin_runtime.Input): - schema = json.loads(""" + schema = json.loads(r""" { "type": "object", "title": "Variables", @@ -34,18 +34,18 @@ class AssetSearchInput(insightconnect_plugin_runtime.Input): }, "comparison_time": { "type": "string", - "title": "Comparison Time", + "format": "date-time", "displayType": "date", + "title": "Comparison Time", "description": "The date and time to compare the asset current state against to detect changes", - "format": "date-time", "order": 6 }, "current_time": { "type": "string", - "title": "Current Time", + "format": "date-time", "displayType": "date", + "title": "Current Time", "description": "The current date and time to compare against the asset state to detect changes", - "format": "date-time", "order": 5 }, "size": { @@ -67,7 +67,8 @@ class AssetSearchInput(insightconnect_plugin_runtime.Input): "description": "Vulnerability criteria to filter by", "order": 4 } - } + }, + "definitions": {} } """) @@ -76,7 +77,7 @@ def __init__(self): class AssetSearchOutput(insightconnect_plugin_runtime.Output): - schema = json.loads(""" + schema = json.loads(r""" { "type": "object", "title": "Variables", @@ -186,15 +187,6 @@ class AssetSearchOutput(insightconnect_plugin_runtime.Output): "description": "Number of moderate vulnerabilities", "order": 14 }, - "new": { - "type": "array", - "title": "New Vulnerabilities", - "description": "Vulnerabilities that are the new between current and comparison time for the asset", - "items": { - "type": "string" - }, - "order": 28 - }, "os_architecture": { "type": "string", "title": "OS Architecture", @@ -237,15 +229,6 @@ class AssetSearchOutput(insightconnect_plugin_runtime.Output): "description": "Vendor of the os", "order": 21 }, - "remediated": { - "type": "array", - "title": "Remediated Vulnerabilities", - "description": "Vulnerabilities that were remediated in the latest version at current time for the asset", - "items": { - "type": "string" - }, - "order": 29 - }, "risk_score": { "type": "number", "title": "Risk Score", @@ -258,12 +241,6 @@ class AssetSearchOutput(insightconnect_plugin_runtime.Output): "description": "Number of sever vulns", "order": 23 }, - "source": { - "type": "string", - "title": "Source", - "description": "Source of the asset", - "order": 26 - }, "tags": { "type": "array", "title": "Tags", @@ -279,6 +256,12 @@ class AssetSearchOutput(insightconnect_plugin_runtime.Output): "description": "Total number of vulns", "order": 25 }, + "source": { + "type": "string", + "title": "Source", + "description": "Source of the asset", + "order": 26 + }, "unique_identifiers": { "type": "array", "title": "Unique Identifiers", @@ -287,91 +270,29 @@ class AssetSearchOutput(insightconnect_plugin_runtime.Output): "$ref": "#/definitions/identifiers" }, "order": 27 + }, + "new": { + "type": "array", + "title": "New Vulnerabilities", + "description": "Vulnerabilities that are the new between current and comparison time for the asset", + "items": { + "type": "string" + }, + "order": 28 + }, + "remediated": { + "type": "array", + "title": "Remediated Vulnerabilities", + "description": "Vulnerabilities that were remediated in the latest version at current time for the asset", + "items": { + "type": "string" + }, + "order": 29 } }, "required": [ "id" - ], - "definitions": { - "asset_tag": { - "type": "object", - "title": "asset_tag", - "properties": { - "name": { - "type": "string", - "title": "Name", - "description": "The name", - "order": 1 - }, - "type": { - "type": "string", - "title": "Type", - "description": "The type", - "order": 2 - } - } - }, - "creds": { - "type": "object", - "title": "creds", - "properties": { - "port": { - "type": "integer", - "title": "Port", - "description": "The port that is used", - "order": 1 - }, - "protocol": { - "type": "string", - "title": "Protocol", - "description": "TCP or other", - "order": 2 - }, - "status": { - "type": "string", - "title": "Status", - "description": "Which creds apply", - "order": 3 - } - } - }, - "identifiers": { - "type": "object", - "title": "identifiers", - "properties": { - "id": { - "type": "string", - "title": "ID", - "description": "The ID", - "order": 2 - }, - "source": { - "type": "string", - "title": "Source", - "description": "The source", - "order": 1 - } - } - } - } - }, - "asset_tag": { - "type": "object", - "title": "asset_tag", - "properties": { - "name": { - "type": "string", - "title": "Name", - "description": "The name", - "order": 1 - }, - "type": { - "type": "string", - "title": "Type", - "description": "The type", - "order": 2 - } - } + ] }, "creds": { "type": "object", @@ -397,21 +318,39 @@ class AssetSearchOutput(insightconnect_plugin_runtime.Output): } } }, - "identifiers": { + "asset_tag": { "type": "object", - "title": "identifiers", + "title": "asset_tag", "properties": { - "id": { + "name": { "type": "string", - "title": "ID", - "description": "The ID", - "order": 2 + "title": "Name", + "description": "The name", + "order": 1 }, + "type": { + "type": "string", + "title": "Type", + "description": "The type", + "order": 2 + } + } + }, + "identifiers": { + "type": "object", + "title": "identifiers", + "properties": { "source": { "type": "string", "title": "Source", "description": "The source", "order": 1 + }, + "id": { + "type": "string", + "title": "ID", + "description": "The ID", + "order": 2 } } } diff --git a/plugins/rapid7_insightvm_cloud/icon_rapid7_insightvm_cloud/actions/get_asset/__init__.py b/plugins/rapid7_insightvm_cloud/icon_rapid7_insightvm_cloud/actions/get_asset/__init__.py index 8847331b93..edd2ecb236 100755 --- a/plugins/rapid7_insightvm_cloud/icon_rapid7_insightvm_cloud/actions/get_asset/__init__.py +++ b/plugins/rapid7_insightvm_cloud/icon_rapid7_insightvm_cloud/actions/get_asset/__init__.py @@ -1,2 +1,2 @@ -# GENERATED BY KOMAND SDK - DO NOT EDIT +# GENERATED BY INSIGHT-PLUGIN - DO NOT EDIT from .action import GetAsset diff --git a/plugins/rapid7_insightvm_cloud/icon_rapid7_insightvm_cloud/actions/get_asset/schema.py b/plugins/rapid7_insightvm_cloud/icon_rapid7_insightvm_cloud/actions/get_asset/schema.py index 97d5ebc015..d28a24970c 100755 --- a/plugins/rapid7_insightvm_cloud/icon_rapid7_insightvm_cloud/actions/get_asset/schema.py +++ b/plugins/rapid7_insightvm_cloud/icon_rapid7_insightvm_cloud/actions/get_asset/schema.py @@ -1,4 +1,4 @@ -# GENERATED BY KOMAND SDK - DO NOT EDIT +# GENERATED BY INSIGHT-PLUGIN - DO NOT EDIT import insightconnect_plugin_runtime import json @@ -10,15 +10,15 @@ class Component: class Input: ID = "id" INCLUDE_VULNS = "include_vulns" - + class Output: ASSET = "asset" VULNERABILITIES = "vulnerabilities" - + class GetAssetInput(insightconnect_plugin_runtime.Input): - schema = json.loads(""" + schema = json.loads(r""" { "type": "object", "title": "Variables", @@ -39,7 +39,8 @@ class GetAssetInput(insightconnect_plugin_runtime.Input): }, "required": [ "id" - ] + ], + "definitions": {} } """) @@ -48,7 +49,7 @@ def __init__(self): class GetAssetOutput(insightconnect_plugin_runtime.Output): - schema = json.loads(""" + schema = json.loads(r""" { "type": "object", "title": "Variables", @@ -164,15 +165,6 @@ class GetAssetOutput(insightconnect_plugin_runtime.Output): "description": "Number of moderate vulnerabilities", "order": 14 }, - "new": { - "type": "array", - "title": "New Vulnerabilities", - "description": "Vulnerabilities that are the new between current and comparison time for the asset", - "items": { - "type": "string" - }, - "order": 28 - }, "os_architecture": { "type": "string", "title": "OS Architecture", @@ -215,15 +207,6 @@ class GetAssetOutput(insightconnect_plugin_runtime.Output): "description": "Vendor of the os", "order": 21 }, - "remediated": { - "type": "array", - "title": "Remediated Vulnerabilities", - "description": "Vulnerabilities that were remediated in the latest version at current time for the asset", - "items": { - "type": "string" - }, - "order": 29 - }, "risk_score": { "type": "number", "title": "Risk Score", @@ -236,12 +219,6 @@ class GetAssetOutput(insightconnect_plugin_runtime.Output): "description": "Number of sever vulns", "order": 23 }, - "source": { - "type": "string", - "title": "Source", - "description": "Source of the asset", - "order": 26 - }, "tags": { "type": "array", "title": "Tags", @@ -257,6 +234,12 @@ class GetAssetOutput(insightconnect_plugin_runtime.Output): "description": "Total number of vulns", "order": 25 }, + "source": { + "type": "string", + "title": "Source", + "description": "Source of the asset", + "order": 26 + }, "unique_identifiers": { "type": "array", "title": "Unique Identifiers", @@ -265,71 +248,51 @@ class GetAssetOutput(insightconnect_plugin_runtime.Output): "$ref": "#/definitions/identifiers" }, "order": 27 + }, + "new": { + "type": "array", + "title": "New Vulnerabilities", + "description": "Vulnerabilities that are the new between current and comparison time for the asset", + "items": { + "type": "string" + }, + "order": 28 + }, + "remediated": { + "type": "array", + "title": "Remediated Vulnerabilities", + "description": "Vulnerabilities that were remediated in the latest version at current time for the asset", + "items": { + "type": "string" + }, + "order": 29 } }, "required": [ "id" - ], - "definitions": { - "asset_tag": { - "type": "object", - "title": "asset_tag", - "properties": { - "name": { - "type": "string", - "title": "Name", - "description": "The name", - "order": 1 - }, - "type": { - "type": "string", - "title": "Type", - "description": "The type", - "order": 2 - } - } - }, - "creds": { - "type": "object", - "title": "creds", - "properties": { - "port": { - "type": "integer", - "title": "Port", - "description": "The port that is used", - "order": 1 - }, - "protocol": { - "type": "string", - "title": "Protocol", - "description": "TCP or other", - "order": 2 - }, - "status": { - "type": "string", - "title": "Status", - "description": "Which creds apply", - "order": 3 - } - } - }, - "identifiers": { - "type": "object", - "title": "identifiers", - "properties": { - "id": { - "type": "string", - "title": "ID", - "description": "The ID", - "order": 2 - }, - "source": { - "type": "string", - "title": "Source", - "description": "The source", - "order": 1 - } - } + ] + }, + "creds": { + "type": "object", + "title": "creds", + "properties": { + "port": { + "type": "integer", + "title": "Port", + "description": "The port that is used", + "order": 1 + }, + "protocol": { + "type": "string", + "title": "Protocol", + "description": "TCP or other", + "order": 2 + }, + "status": { + "type": "string", + "title": "Status", + "description": "Which creds apply", + "order": 3 } } }, @@ -351,16 +314,34 @@ class GetAssetOutput(insightconnect_plugin_runtime.Output): } } }, + "identifiers": { + "type": "object", + "title": "identifiers", + "properties": { + "source": { + "type": "string", + "title": "Source", + "description": "The source", + "order": 1 + }, + "id": { + "type": "string", + "title": "ID", + "description": "The ID", + "order": 2 + } + } + }, "asset_vulnerability": { "type": "object", "title": "asset_vulnerability", "properties": { "first_found": { "type": "string", - "title": "First Found", + "format": "date-time", "displayType": "date", + "title": "First Found", "description": "Date the vulnerability was first found in InsightVM", - "format": "date-time", "order": 1 }, "key": { @@ -371,16 +352,16 @@ class GetAssetOutput(insightconnect_plugin_runtime.Output): }, "last_found": { "type": "string", - "title": "Last Found", + "format": "date-time", "displayType": "date", + "title": "Last Found", "description": "Date the vulnerability was last found in InsightVM", - "format": "date-time", "order": 3 }, "proof": { "type": "string", "title": "Proof", - "description": "Proof of the vulnerability, i.e. \\u003cp\\u003e\\u003cp\\u003eOpenBSD OpenSSH 4.3 on Linux\\u003c/p\\u003e\\u003c/p\\u003e", + "description": "Proof of the vulnerability, i.e.OpenBSD OpenSSH 4.3 on Linux
", "order": 4 }, "solution_fix": { @@ -423,48 +404,6 @@ class GetAssetOutput(insightconnect_plugin_runtime.Output): "required": [ "solution_type" ] - }, - "creds": { - "type": "object", - "title": "creds", - "properties": { - "port": { - "type": "integer", - "title": "Port", - "description": "The port that is used", - "order": 1 - }, - "protocol": { - "type": "string", - "title": "Protocol", - "description": "TCP or other", - "order": 2 - }, - "status": { - "type": "string", - "title": "Status", - "description": "Which creds apply", - "order": 3 - } - } - }, - "identifiers": { - "type": "object", - "title": "identifiers", - "properties": { - "id": { - "type": "string", - "title": "ID", - "description": "The ID", - "order": 2 - }, - "source": { - "type": "string", - "title": "Source", - "description": "The source", - "order": 1 - } - } } } } diff --git a/plugins/rapid7_insightvm_cloud/icon_rapid7_insightvm_cloud/actions/get_scan/__init__.py b/plugins/rapid7_insightvm_cloud/icon_rapid7_insightvm_cloud/actions/get_scan/__init__.py index 514534c165..22ae2edb3f 100755 --- a/plugins/rapid7_insightvm_cloud/icon_rapid7_insightvm_cloud/actions/get_scan/__init__.py +++ b/plugins/rapid7_insightvm_cloud/icon_rapid7_insightvm_cloud/actions/get_scan/__init__.py @@ -1,2 +1,2 @@ -# GENERATED BY KOMAND SDK - DO NOT EDIT +# GENERATED BY INSIGHT-PLUGIN - DO NOT EDIT from .action import GetScan diff --git a/plugins/rapid7_insightvm_cloud/icon_rapid7_insightvm_cloud/actions/get_scan/schema.py b/plugins/rapid7_insightvm_cloud/icon_rapid7_insightvm_cloud/actions/get_scan/schema.py index 22342b7f91..182f68ed0f 100755 --- a/plugins/rapid7_insightvm_cloud/icon_rapid7_insightvm_cloud/actions/get_scan/schema.py +++ b/plugins/rapid7_insightvm_cloud/icon_rapid7_insightvm_cloud/actions/get_scan/schema.py @@ -1,4 +1,4 @@ -# GENERATED BY KOMAND SDK - DO NOT EDIT +# GENERATED BY INSIGHT-PLUGIN - DO NOT EDIT import insightconnect_plugin_runtime import json @@ -9,7 +9,7 @@ class Component: class Input: SCAN_ID = "scan_id" - + class Output: ASSET_IDS = "asset_ids" @@ -18,10 +18,10 @@ class Output: SCAN_ID = "scan_id" STARTED = "started" STATUS = "status" - + class GetScanInput(insightconnect_plugin_runtime.Input): - schema = json.loads(""" + schema = json.loads(r""" { "type": "object", "title": "Variables", @@ -35,7 +35,8 @@ class GetScanInput(insightconnect_plugin_runtime.Input): }, "required": [ "scan_id" - ] + ], + "definitions": {} } """) @@ -44,7 +45,7 @@ def __init__(self): class GetScanOutput(insightconnect_plugin_runtime.Output): - schema = json.loads(""" + schema = json.loads(r""" { "type": "object", "title": "Variables", @@ -60,10 +61,10 @@ class GetScanOutput(insightconnect_plugin_runtime.Output): }, "finished": { "type": "string", - "title": "Finished", + "format": "date-time", "displayType": "date", + "title": "Finished", "description": "When the scan was finished", - "format": "date-time", "order": 6 }, "name": { @@ -80,10 +81,10 @@ class GetScanOutput(insightconnect_plugin_runtime.Output): }, "started": { "type": "string", - "title": "Started", + "format": "date-time", "displayType": "date", + "title": "Started", "description": "When the scan was started", - "format": "date-time", "order": 5 }, "status": { @@ -92,7 +93,8 @@ class GetScanOutput(insightconnect_plugin_runtime.Output): "description": "Current status of the retrieved scan", "order": 4 } - } + }, + "definitions": {} } """) diff --git a/plugins/rapid7_insightvm_cloud/icon_rapid7_insightvm_cloud/actions/start_scan/__init__.py b/plugins/rapid7_insightvm_cloud/icon_rapid7_insightvm_cloud/actions/start_scan/__init__.py index 829d3b05cd..10f2b5c34f 100755 --- a/plugins/rapid7_insightvm_cloud/icon_rapid7_insightvm_cloud/actions/start_scan/__init__.py +++ b/plugins/rapid7_insightvm_cloud/icon_rapid7_insightvm_cloud/actions/start_scan/__init__.py @@ -1,2 +1,2 @@ -# GENERATED BY KOMAND SDK - DO NOT EDIT +# GENERATED BY INSIGHT-PLUGIN - DO NOT EDIT from .action import StartScan diff --git a/plugins/rapid7_insightvm_cloud/icon_rapid7_insightvm_cloud/actions/start_scan/schema.py b/plugins/rapid7_insightvm_cloud/icon_rapid7_insightvm_cloud/actions/start_scan/schema.py index b87f68a9fb..b5b000b4fe 100755 --- a/plugins/rapid7_insightvm_cloud/icon_rapid7_insightvm_cloud/actions/start_scan/schema.py +++ b/plugins/rapid7_insightvm_cloud/icon_rapid7_insightvm_cloud/actions/start_scan/schema.py @@ -1,4 +1,4 @@ -# GENERATED BY KOMAND SDK - DO NOT EDIT +# GENERATED BY INSIGHT-PLUGIN - DO NOT EDIT import insightconnect_plugin_runtime import json @@ -12,16 +12,16 @@ class Input: HOSTNAMES = "hostnames" IPS = "ips" NAME = "name" - + class Output: ASSET_IDS = "asset_ids" DATA = "data" IDS = "ids" - + class StartScanInput(insightconnect_plugin_runtime.Input): - schema = json.loads(""" + schema = json.loads(r""" { "type": "object", "title": "Variables", @@ -62,7 +62,8 @@ class StartScanInput(insightconnect_plugin_runtime.Input): }, "required": [ "name" - ] + ], + "definitions": {} } """) @@ -71,7 +72,7 @@ def __init__(self): class StartScanOutput(insightconnect_plugin_runtime.Output): - schema = json.loads(""" + schema = json.loads(r""" { "type": "object", "title": "Variables", @@ -100,7 +101,8 @@ class StartScanOutput(insightconnect_plugin_runtime.Output): }, "order": 1 } - } + }, + "definitions": {} } """) diff --git a/plugins/rapid7_insightvm_cloud/icon_rapid7_insightvm_cloud/actions/stop_scan/__init__.py b/plugins/rapid7_insightvm_cloud/icon_rapid7_insightvm_cloud/actions/stop_scan/__init__.py index ee79682c8a..6cc965c6f7 100755 --- a/plugins/rapid7_insightvm_cloud/icon_rapid7_insightvm_cloud/actions/stop_scan/__init__.py +++ b/plugins/rapid7_insightvm_cloud/icon_rapid7_insightvm_cloud/actions/stop_scan/__init__.py @@ -1,2 +1,2 @@ -# GENERATED BY KOMAND SDK - DO NOT EDIT +# GENERATED BY INSIGHT-PLUGIN - DO NOT EDIT from .action import StopScan diff --git a/plugins/rapid7_insightvm_cloud/icon_rapid7_insightvm_cloud/actions/stop_scan/schema.py b/plugins/rapid7_insightvm_cloud/icon_rapid7_insightvm_cloud/actions/stop_scan/schema.py index f20a9673bc..e178b3ff3d 100755 --- a/plugins/rapid7_insightvm_cloud/icon_rapid7_insightvm_cloud/actions/stop_scan/schema.py +++ b/plugins/rapid7_insightvm_cloud/icon_rapid7_insightvm_cloud/actions/stop_scan/schema.py @@ -1,4 +1,4 @@ -# GENERATED BY KOMAND SDK - DO NOT EDIT +# GENERATED BY INSIGHT-PLUGIN - DO NOT EDIT import insightconnect_plugin_runtime import json @@ -9,16 +9,16 @@ class Component: class Input: ID = "id" - + class Output: MESSAGE = "message" STATUS_CODE = "status_code" SUCCESS = "success" - + class StopScanInput(insightconnect_plugin_runtime.Input): - schema = json.loads(""" + schema = json.loads(r""" { "type": "object", "title": "Variables", @@ -32,7 +32,8 @@ class StopScanInput(insightconnect_plugin_runtime.Input): }, "required": [ "id" - ] + ], + "definitions": {} } """) @@ -41,7 +42,7 @@ def __init__(self): class StopScanOutput(insightconnect_plugin_runtime.Output): - schema = json.loads(""" + schema = json.loads(r""" { "type": "object", "title": "Variables", @@ -67,7 +68,8 @@ class StopScanOutput(insightconnect_plugin_runtime.Output): }, "required": [ "success" - ] + ], + "definitions": {} } """) diff --git a/plugins/rapid7_insightvm_cloud/icon_rapid7_insightvm_cloud/actions/vuln_search/__init__.py b/plugins/rapid7_insightvm_cloud/icon_rapid7_insightvm_cloud/actions/vuln_search/__init__.py index 328b3ca2da..9e1abf96be 100755 --- a/plugins/rapid7_insightvm_cloud/icon_rapid7_insightvm_cloud/actions/vuln_search/__init__.py +++ b/plugins/rapid7_insightvm_cloud/icon_rapid7_insightvm_cloud/actions/vuln_search/__init__.py @@ -1,2 +1,2 @@ -# GENERATED BY KOMAND SDK - DO NOT EDIT +# GENERATED BY INSIGHT-PLUGIN - DO NOT EDIT from .action import VulnSearch diff --git a/plugins/rapid7_insightvm_cloud/icon_rapid7_insightvm_cloud/actions/vuln_search/action.py b/plugins/rapid7_insightvm_cloud/icon_rapid7_insightvm_cloud/actions/vuln_search/action.py index 8f63f1e39a..0e1b79a9e2 100755 --- a/plugins/rapid7_insightvm_cloud/icon_rapid7_insightvm_cloud/actions/vuln_search/action.py +++ b/plugins/rapid7_insightvm_cloud/icon_rapid7_insightvm_cloud/actions/vuln_search/action.py @@ -1,5 +1,6 @@ import insightconnect_plugin_runtime from .schema import VulnSearchInput, VulnSearchOutput, Input, Output, Component +import logging # Constants below MAX_SIZE = 500 @@ -13,7 +14,6 @@ def __init__(self): ) def run(self, params={}): - asset_crit = params.get(Input.ASSET_CRITERIA) vuln_crit = params.get(Input.VULN_CRITERIA) size = params.get(Input.SIZE, AVG_SIZE) sort_criteria = params.get(Input.SORT_CRITERIA, {}) @@ -29,9 +29,9 @@ def run(self, params={}): self.logger.info(f"'{size}' must be greater than zero, set to average size of 200.") size = AVG_SIZE parameters.append(("size", size)) - if asset_crit or vuln_crit: - body = {"asset": asset_crit, "vulnerability": vuln_crit} - resources = self.connection.ivm_cloud_api.call_api("vulnerabilities", "POST", params, body) + if vuln_crit: + body = {"vulnerability": vuln_crit} + resources = self.connection.ivm_cloud_api.call_api("vulnerabilities", "POST", parameters, body) else: resources = self.connection.ivm_cloud_api.call_api("vulnerabilities", "POST", parameters) diff --git a/plugins/rapid7_insightvm_cloud/icon_rapid7_insightvm_cloud/actions/vuln_search/schema.py b/plugins/rapid7_insightvm_cloud/icon_rapid7_insightvm_cloud/actions/vuln_search/schema.py index 34f8cc0f59..4fa7851615 100644 --- a/plugins/rapid7_insightvm_cloud/icon_rapid7_insightvm_cloud/actions/vuln_search/schema.py +++ b/plugins/rapid7_insightvm_cloud/icon_rapid7_insightvm_cloud/actions/vuln_search/schema.py @@ -1,4 +1,4 @@ -# GENERATED BY KOMAND SDK - DO NOT EDIT +# GENERATED BY INSIGHT-PLUGIN - DO NOT EDIT import insightconnect_plugin_runtime import json @@ -8,28 +8,21 @@ class Component: class Input: - ASSET_CRITERIA = "asset_criteria" SIZE = "size" SORT_CRITERIA = "sort_criteria" VULN_CRITERIA = "vuln_criteria" - + class Output: VULNERABILITIES = "vulnerabilities" - + class VulnSearchInput(insightconnect_plugin_runtime.Input): - schema = json.loads(""" + schema = json.loads(r""" { "type": "object", "title": "Variables", "properties": { - "asset_criteria": { - "type": "string", - "title": "Asset Criteria", - "description": "Filters to apply to the asset search such as IPv4 or IPv6 addresses and hostnames", - "order": 3 - }, "size": { "type": "integer", "title": "Size", @@ -47,9 +40,10 @@ class VulnSearchInput(insightconnect_plugin_runtime.Input): "type": "string", "title": "Vulnerability Criteria", "description": "Vulnerability criteria to filter by", - "order": 4 + "order": 3 } - } + }, + "definitions": {} } """) @@ -58,7 +52,7 @@ def __init__(self): class VulnSearchOutput(insightconnect_plugin_runtime.Output): - schema = json.loads(""" + schema = json.loads(r""" { "type": "object", "title": "Variables", @@ -77,6 +71,149 @@ class VulnSearchOutput(insightconnect_plugin_runtime.Output): "vulnerabilities" ], "definitions": { + "vulnerability": { + "type": "object", + "title": "vulnerability", + "properties": { + "title": { + "type": "string", + "title": "Title", + "description": "Name of the vulnerability", + "order": 1 + }, + "description": { + "type": "string", + "title": "Description", + "description": "Description of the vulnerability", + "order": 2 + }, + "added": { + "type": "string", + "format": "date-time", + "displayType": "date", + "title": "Added", + "description": "Date the vulnerability was last added to an asset", + "order": 3 + }, + "modified": { + "type": "string", + "format": "date-time", + "displayType": "date", + "title": "Modified", + "description": "Date the vulnerability was last modified", + "order": 4 + }, + "published": { + "type": "string", + "format": "date-time", + "displayType": "date", + "title": "Published", + "description": "Date the vulnerability was added to InsightVM", + "order": 5 + }, + "categories": { + "type": "string", + "title": "Categories", + "description": "Labels this vulnerability falls under", + "order": 6 + }, + "cves": { + "type": "string", + "title": "CVES", + "description": "CVES ID", + "order": 7 + }, + "cvss_v2": { + "$ref": "#/definitions/cvss_v2", + "title": "CVSSv2", + "description": "information regarding CVSSv2", + "order": 8 + }, + "cvss_v3": { + "$ref": "#/definitions/cvss_v3", + "title": "CVSSv3", + "description": "information regarding CVSSv3", + "order": 9 + }, + "denial_of_service": { + "type": "boolean", + "title": "Denial of Service", + "description": "Whether or not this vulnerability is a denial of service attack", + "order": 10 + }, + "exploits": { + "type": "array", + "title": "Exploits", + "description": "List of exploits related to the vulnerability", + "items": { + "$ref": "#/definitions/exploit" + }, + "order": 11 + }, + "id": { + "type": "string", + "title": "ID", + "description": "ID of the vulnerability", + "order": 12 + }, + "links": { + "type": "array", + "title": "Links", + "description": "List of links related to the vulnerability", + "items": { + "$ref": "#/definitions/link" + }, + "order": 13 + }, + "malware_kits": { + "type": "array", + "title": "Malware Kits", + "description": "List of malware kits related to the vulnerability", + "items": { + "type": "object" + }, + "order": 14 + }, + "pci": { + "$ref": "#/definitions/pci", + "title": "PCI", + "description": "information regarding PCI", + "order": 15 + }, + "references": { + "type": "string", + "title": "References", + "description": "Links to information related to the vulnerability", + "order": 16 + }, + "risk_score": { + "type": "number", + "title": "Risk Score", + "description": "Risk score (with criticality adjustments) of the vulnerability", + "order": 17 + }, + "severity": { + "type": "string", + "title": "Severity", + "description": "Severity of the vulnerability", + "order": 18 + }, + "severity_score": { + "type": "integer", + "title": "Severity Score", + "description": "Severity score of the vulnerability", + "order": 19 + } + }, + "required": [ + "categories", + "id", + "published", + "risk_score", + "severity", + "severity_score" + ] + }, "cvss_v2": { "type": "object", "title": "cvss_v2", @@ -324,399 +461,6 @@ class VulnSearchOutput(insightconnect_plugin_runtime.Output): "order": 5 } } - }, - "vulnerability": { - "type": "object", - "title": "vulnerability", - "properties": { - "added": { - "type": "string", - "title": "Added", - "displayType": "date", - "description": "Date the vulnerability was last added to an asset", - "format": "date-time", - "order": 3 - }, - "categories": { - "type": "string", - "title": "Categories", - "description": "Labels this vulnerability falls under", - "order": 6 - }, - "cves": { - "type": "string", - "title": "CVES", - "description": "CVES ID", - "order": 7 - }, - "cvss_v2": { - "$ref": "#/definitions/cvss_v2", - "title": "CVSSv2", - "description": "information regarding CVSSv2", - "order": 8 - }, - "cvss_v3": { - "$ref": "#/definitions/cvss_v3", - "title": "CVSSv3", - "description": "information regarding CVSSv3", - "order": 9 - }, - "denial_of_service": { - "type": "boolean", - "title": "Denial of Service", - "description": "Whether or not this vulnerability is a denial of service attack", - "order": 10 - }, - "description": { - "type": "string", - "title": "Description", - "description": "Description of the vulnerability", - "order": 2 - }, - "exploits": { - "type": "array", - "title": "Exploits", - "description": "List of exploits related to the vulnerability", - "items": { - "$ref": "#/definitions/exploit" - }, - "order": 11 - }, - "id": { - "type": "string", - "title": "ID", - "description": "ID of the vulnerability", - "order": 12 - }, - "links": { - "type": "array", - "title": "Links", - "description": "List of links related to the vulnerability", - "items": { - "$ref": "#/definitions/link" - }, - "order": 13 - }, - "malware_kits": { - "type": "array", - "title": "Malware Kits", - "description": "List of malware kits related to the vulnerability", - "items": { - "type": "string" - }, - "order": 14 - }, - "modified": { - "type": "string", - "title": "Modified", - "displayType": "date", - "description": "Date the vulnerability was last modified", - "format": "date-time", - "order": 4 - }, - "pci": { - "$ref": "#/definitions/pci", - "title": "PCI", - "description": "information regarding PCI", - "order": 15 - }, - "published": { - "type": "string", - "title": "Published", - "displayType": "date", - "description": "Date the vulnerability was added to InsightVM", - "format": "date-time", - "order": 5 - }, - "references": { - "type": "string", - "title": "References", - "description": "Links to information related to the vulnerability", - "order": 16 - }, - "risk_score": { - "type": "number", - "title": "Risk Score", - "description": "Risk score (with criticality adjustments) of the vulnerability", - "order": 17 - }, - "severity": { - "type": "string", - "title": "Severity", - "description": "Severity of the vulnerability", - "order": 18 - }, - "severity_score": { - "type": "integer", - "title": "Severity Score", - "description": "Severity score of the vulnerability", - "order": 19 - }, - "title": { - "type": "string", - "title": "Title", - "description": "Name of the vulnerability", - "order": 1 - } - }, - "required": [ - "categories", - "id", - "published", - "risk_score", - "severity", - "severity_score" - ], - "definitions": { - "cvss_v2": { - "type": "object", - "title": "cvss_v2", - "properties": { - "access_complexity": { - "type": "string", - "title": "Access Complexity", - "description": "CVSSv2 access complexity metric", - "order": 1 - }, - "access_vector": { - "type": "string", - "title": "Access Vector", - "description": "CVSSv2 access vector metric", - "order": 2 - }, - "authentication": { - "type": "string", - "title": "Authentication", - "description": "CVSSv2 authentication metric", - "order": 3 - }, - "availability_impact": { - "type": "string", - "title": "Availability Impact", - "description": "CVSSv2 availability impact metric", - "order": 4 - }, - "confidentiality_impact": { - "type": "string", - "title": "Confidentiality Impact", - "description": "CVSSv2 confidentiality impact metric", - "order": 5 - }, - "exploit_score": { - "type": "number", - "title": "Exploit Score", - "description": "CVSSv2 combined exploit metric score (Access Complexity/Access Vector/Authentication)", - "order": 6 - }, - "impact_score": { - "type": "number", - "title": "Impact Score", - "description": "CVSSv2 combined impact metric score (Confidentiality/Integrity/Availability)", - "order": 7 - }, - "integrity_impact": { - "type": "string", - "title": "Integrity Impact", - "description": "CVSSv2 integrity impact metric", - "order": 8 - }, - "score": { - "type": "number", - "title": "Score", - "description": "CVSSv2 score", - "order": 9 - }, - "vector": { - "type": "string", - "title": "Vector", - "description": "CVSSv2 combined vector string", - "order": 10 - } - } - }, - "cvss_v3": { - "type": "object", - "title": "cvss_v3", - "properties": { - "attack_complexity": { - "type": "string", - "title": "Attack Complexity", - "description": "CVSSv3 attack complexity metric", - "order": 1 - }, - "attack_vector": { - "type": "string", - "title": "Attack Vector", - "description": "CVSSv3 attack vector metric", - "order": 2 - }, - "availability_impact": { - "type": "string", - "title": "Availability Impact", - "description": "CVSSv3 availability impact metric", - "order": 3 - }, - "confidentiality_impact": { - "type": "string", - "title": "Confidentiality Impact", - "description": "CVSSv3 confidentiality impact metric", - "order": 4 - }, - "exploit_score": { - "type": "number", - "title": "Exploit Score", - "description": "CVSSv3 combined exploit metric score (Attack Complexity/Attack Vector/Privilege Required/Scope/User Interaction)", - "order": 5 - }, - "impact_score": { - "type": "number", - "title": "Impact Score", - "description": "CVSSv3 combined impact metric score (Confidentiality/Integrity/Availability)", - "order": 6 - }, - "integrity_impact": { - "type": "string", - "title": "Integrity Impact", - "description": "CVSSv3 integrity impact metric", - "order": 7 - }, - "privilege_required": { - "type": "string", - "title": "Privilege Required", - "description": "CVSSv3 privilege required metric", - "order": 8 - }, - "scope": { - "type": "string", - "title": "Scope", - "description": "CVSSv3 scope metric", - "order": 9 - }, - "score": { - "type": "number", - "title": "Score", - "description": "CVSSv3 score", - "order": 10 - }, - "user_interaction": { - "type": "string", - "title": "User Interaction", - "description": "CVSSv3 user interaction metric", - "order": 11 - }, - "vector": { - "type": "string", - "title": "Vector", - "description": "CVSSv3 combined vector string", - "order": 12 - } - } - }, - "exploit": { - "type": "object", - "title": "exploit", - "properties": { - "description": { - "type": "string", - "title": "Description", - "description": "A verbose description of the exploit", - "order": 1 - }, - "id": { - "type": "string", - "title": "ID", - "description": "The identifier of the exploit", - "order": 2 - }, - "name": { - "type": "string", - "title": "Name", - "description": "The name of the exploit", - "order": 3 - }, - "rank": { - "type": "string", - "title": "Rank", - "description": "The exploit rank", - "order": 4 - }, - "skill_level": { - "type": "string", - "title": "Skill level", - "description": "The level of skill required to use the exploit", - "order": 5 - }, - "source": { - "type": "string", - "title": "Source", - "description": "Details about where the exploit is defined", - "order": 6 - } - }, - "required": [ - "description", - "id", - "name", - "rank", - "skill_level", - "source" - ] - }, - "link": { - "type": "object", - "title": "link", - "properties": { - "href": { - "type": "string", - "title": "URL", - "description": "A hypertext reference, which is either a URI (see RFC 3986) or URI template (see RFC 6570)", - "order": 1 - }, - "rel": { - "type": "string", - "title": "Rel", - "description": "Link relation type following RFC 5988", - "order": 2 - } - } - }, - "pci": { - "type": "object", - "title": "pci", - "properties": { - "adjusted_CVSS_score": { - "type": "integer", - "title": "Adjusted CVSS score", - "description": "PCI adjusted CVSS score", - "order": 1 - }, - "adjusted_severity_score": { - "type": "integer", - "title": "Adjusted severity score", - "description": "PCI adjusted severity score", - "order": 2 - }, - "fail": { - "type": "boolean", - "title": "Fail", - "description": "Whether this vulnerability results in a PCI assessment failure", - "order": 3 - }, - "special_notes": { - "type": "string", - "title": "Special Notes", - "description": "PCI special notes", - "order": 4 - }, - "status": { - "type": "string", - "title": "Status", - "description": "PCI status", - "order": 5 - } - } - } - } } } } diff --git a/plugins/rapid7_insightvm_cloud/icon_rapid7_insightvm_cloud/connection/__init__.py b/plugins/rapid7_insightvm_cloud/icon_rapid7_insightvm_cloud/connection/__init__.py index a515dcf6b0..c78d3356be 100755 --- a/plugins/rapid7_insightvm_cloud/icon_rapid7_insightvm_cloud/connection/__init__.py +++ b/plugins/rapid7_insightvm_cloud/icon_rapid7_insightvm_cloud/connection/__init__.py @@ -1,2 +1,2 @@ -# GENERATED BY KOMAND SDK - DO NOT EDIT +# GENERATED BY INSIGHT-PLUGIN - DO NOT EDIT from .connection import Connection diff --git a/plugins/rapid7_insightvm_cloud/icon_rapid7_insightvm_cloud/connection/schema.py b/plugins/rapid7_insightvm_cloud/icon_rapid7_insightvm_cloud/connection/schema.py index 52d9344719..382fa05d50 100755 --- a/plugins/rapid7_insightvm_cloud/icon_rapid7_insightvm_cloud/connection/schema.py +++ b/plugins/rapid7_insightvm_cloud/icon_rapid7_insightvm_cloud/connection/schema.py @@ -1,4 +1,4 @@ -# GENERATED BY KOMAND SDK - DO NOT EDIT +# GENERATED BY INSIGHT-PLUGIN - DO NOT EDIT import insightconnect_plugin_runtime import json @@ -6,10 +6,10 @@ class Input: CREDENTIALS = "credentials" REGION = "region" - + class ConnectionSchema(insightconnect_plugin_runtime.Input): - schema = json.loads(""" + schema = json.loads(r""" { "type": "object", "title": "Variables", @@ -46,18 +46,18 @@ class ConnectionSchema(insightconnect_plugin_runtime.Input): "type": "object", "title": "Credential: Secret Key", "description": "A shared secret key", + "required": [ + "secretKey" + ], "properties": { "secretKey": { "type": "string", "title": "Secret Key", - "displayType": "password", "description": "The shared secret key", - "format": "password" + "format": "password", + "displayType": "password" } - }, - "required": [ - "secretKey" - ] + } } } } diff --git a/plugins/rapid7_insightvm_cloud/icon_rapid7_insightvm_cloud/tasks/__init__.py b/plugins/rapid7_insightvm_cloud/icon_rapid7_insightvm_cloud/tasks/__init__.py new file mode 100644 index 0000000000..7020c9a4ad --- /dev/null +++ b/plugins/rapid7_insightvm_cloud/icon_rapid7_insightvm_cloud/tasks/__init__.py @@ -0,0 +1,2 @@ +# GENERATED BY INSIGHT-PLUGIN - DO NOT EDIT + diff --git a/plugins/rapid7_insightvm_cloud/icon_rapid7_insightvm_cloud/triggers/__init__.py b/plugins/rapid7_insightvm_cloud/icon_rapid7_insightvm_cloud/triggers/__init__.py index bace8db897..7020c9a4ad 100755 --- a/plugins/rapid7_insightvm_cloud/icon_rapid7_insightvm_cloud/triggers/__init__.py +++ b/plugins/rapid7_insightvm_cloud/icon_rapid7_insightvm_cloud/triggers/__init__.py @@ -1 +1,2 @@ -# GENERATED BY KOMAND SDK - DO NOT EDIT +# GENERATED BY INSIGHT-PLUGIN - DO NOT EDIT + diff --git a/plugins/rapid7_insightvm_cloud/plugin.spec.yaml b/plugins/rapid7_insightvm_cloud/plugin.spec.yaml index e60ae2d9b2..6350e8a58e 100644 --- a/plugins/rapid7_insightvm_cloud/plugin.spec.yaml +++ b/plugins/rapid7_insightvm_cloud/plugin.spec.yaml @@ -4,10 +4,10 @@ products: [insightconnect] name: rapid7_insightvm_cloud title: Rapid7 InsightVM Cloud description: InsightVM is a powerful vulnerability management tool which finds, prioritizes, and remediates vulnerabilities. This plugin uses the InsightVM Cloud Integrations API to view assets and start scans -version: 4.0.0 +version: 5.0.0 vendor: rapid7 support: rapid7 -supported_versions: ["InsightVM Cloud Integration API v4", "2022-08-10"] +supported_versions: ["InsightVM Cloud Integration API v4", "2023-11-24"] status: [] cloud_ready: true resources: @@ -940,7 +940,7 @@ types: malware_kits: title: Malware Kits description: List of malware kits related to the vulnerability - type: '[]string' + type: '[]object' required: false pci: title: PCI @@ -1202,12 +1202,6 @@ actions: type: object required: false example: "{'risk-score': 'asc', 'criticality-tag': 'desc'}" - asset_criteria: - title: Asset Criteria - description: Filters to apply to the asset search such as IPv4 or IPv6 addresses and hostnames - type: string - example: "asset.ipv4 = 2001:db8:1:1:1:1:1:1 || asset.name STARTS WITH 'example'" - required: false vuln_criteria: title: Vulnerability Criteria description: Vulnerability criteria to filter by diff --git a/plugins/rapid7_insightvm_cloud/setup.py b/plugins/rapid7_insightvm_cloud/setup.py index b8538a0365..001c277f8d 100755 --- a/plugins/rapid7_insightvm_cloud/setup.py +++ b/plugins/rapid7_insightvm_cloud/setup.py @@ -1,9 +1,9 @@ -# GENERATED BY KOMAND SDK - DO NOT EDIT +# GENERATED BY INSIGHT-PLUGIN - DO NOT EDIT from setuptools import setup, find_packages setup(name="rapid7_insightvm_cloud-rapid7-plugin", - version="4.0.0", + version="5.0.0", description="InsightVM is a powerful vulnerability management tool which finds, prioritizes, and remediates vulnerabilities. This plugin uses the InsightVM Cloud Integrations API to view assets and start scans", author="rapid7", author_email="", diff --git a/plugins/rapid7_insightvm_cloud/unit_test/test_asset_search.py b/plugins/rapid7_insightvm_cloud/unit_test/test_asset_search.py index 9a5ba495d0..017290f232 100644 --- a/plugins/rapid7_insightvm_cloud/unit_test/test_asset_search.py +++ b/plugins/rapid7_insightvm_cloud/unit_test/test_asset_search.py @@ -6,12 +6,13 @@ sys.path.append(os.path.abspath("../")) from unittest import TestCase +from jsonschema import validate from icon_rapid7_insightvm_cloud.actions.asset_search import AssetSearch -from icon_rapid7_insightvm_cloud.actions.asset_search.schema import Input +from icon_rapid7_insightvm_cloud.actions.asset_search.schema import Input, AssetSearchOutput from icon_rapid7_insightvm_cloud.connection.schema import Input as ConnectionInput from unittest.mock import patch -from unit_test.utils import Utils -from unit_test.mock import ( +from utils import Utils +from mock import ( mock_request, ) @@ -46,6 +47,7 @@ def test_asset_search_all_inputs(self, _mock_req): ) expected = Utils.read_file_to_dict("expected_responses/asset_search.json.resp") self.assertEqual(expected, actual) + validate(actual, AssetSearchOutput.schema) # test finding event via all inputs @patch("requests.request", side_effect=mock_request) @@ -53,6 +55,7 @@ def test_asset_search_no_input(self, _mock_req): actual = self.action.run() expected = Utils.read_file_to_dict("expected_responses/asset_search.json.resp") self.assertEqual(expected, actual) + validate(actual, AssetSearchOutput.schema) # test finding event via all inputs @patch("requests.request", side_effect=mock_request) diff --git a/plugins/rapid7_insightvm_cloud/unit_test/test_get_asset.py b/plugins/rapid7_insightvm_cloud/unit_test/test_get_asset.py index 5f0de325d2..62856f0aee 100644 --- a/plugins/rapid7_insightvm_cloud/unit_test/test_get_asset.py +++ b/plugins/rapid7_insightvm_cloud/unit_test/test_get_asset.py @@ -6,12 +6,13 @@ sys.path.append(os.path.abspath("../")) from unittest import TestCase +from jsonschema import validate from icon_rapid7_insightvm_cloud.actions.get_asset import GetAsset -from icon_rapid7_insightvm_cloud.actions.get_asset.schema import Input +from icon_rapid7_insightvm_cloud.actions.get_asset.schema import Input, GetAssetOutput from icon_rapid7_insightvm_cloud.connection.schema import Input as ConnectionInput from unittest.mock import patch -from unit_test.utils import Utils -from unit_test.mock import ( +from utils import Utils +from mock import ( mock_request, ) @@ -37,6 +38,7 @@ def test_get_asset_include_vulns_false(self, _mock_req): ) expected = Utils.read_file_to_dict("expected_responses/get_asset.json.resp") self.assertEqual(expected, actual) + validate(actual, GetAssetOutput.schema) # test finding event via all inputs @patch("requests.request", side_effect=mock_request) @@ -46,6 +48,7 @@ def test_get_asset_include_vulns_true(self, _mock_req): ) expected = Utils.read_file_to_dict("expected_responses/get_asset_include_vulns.json.resp") self.assertEqual(expected, actual) + validate(actual, GetAssetOutput.schema) # test finding event via all inputs @patch("requests.request", side_effect=mock_request) diff --git a/plugins/rapid7_insightvm_cloud/unit_test/test_get_scan.py b/plugins/rapid7_insightvm_cloud/unit_test/test_get_scan.py index 151157c4ae..b6b952a098 100644 --- a/plugins/rapid7_insightvm_cloud/unit_test/test_get_scan.py +++ b/plugins/rapid7_insightvm_cloud/unit_test/test_get_scan.py @@ -6,12 +6,13 @@ sys.path.append(os.path.abspath("../")) from unittest import TestCase +from jsonschema import validate from icon_rapid7_insightvm_cloud.actions.get_scan import GetScan -from icon_rapid7_insightvm_cloud.actions.get_scan.schema import Input +from icon_rapid7_insightvm_cloud.actions.get_scan.schema import Input, GetScanOutput from icon_rapid7_insightvm_cloud.connection.schema import Input as ConnectionInput from unittest.mock import patch -from unit_test.utils import Utils -from unit_test.mock import ( +from utils import Utils +from mock import ( mock_request, ) @@ -33,6 +34,7 @@ def test_get_scan(self, _mock_req): actual = self.action.run({Input.SCAN_ID: self.params.get("scan_id")}) expected = Utils.read_file_to_dict("expected_responses/get_scan.json.resp") self.assertEqual(expected, actual) + validate(actual, GetScanOutput.schema) # test finding event via all inputs @patch("requests.request", side_effect=mock_request) diff --git a/plugins/rapid7_insightvm_cloud/unit_test/test_start_scan.py b/plugins/rapid7_insightvm_cloud/unit_test/test_start_scan.py index 45b570df8a..81150f3c60 100644 --- a/plugins/rapid7_insightvm_cloud/unit_test/test_start_scan.py +++ b/plugins/rapid7_insightvm_cloud/unit_test/test_start_scan.py @@ -6,12 +6,13 @@ sys.path.append(os.path.abspath("../")) from unittest import TestCase +from jsonschema import validate from icon_rapid7_insightvm_cloud.connection.schema import Input as ConnectionInput from icon_rapid7_insightvm_cloud.actions.start_scan import StartScan -from icon_rapid7_insightvm_cloud.actions.start_scan.schema import Input +from icon_rapid7_insightvm_cloud.actions.start_scan.schema import Input, StartScanOutput from unittest.mock import patch -from unit_test.utils import Utils -from unit_test.mock import ( +from utils import Utils +from mock import ( mock_request, ) @@ -49,6 +50,7 @@ def test_start_scan(self, _mock_req): ) expected = Utils.read_file_to_dict("expected_responses/start_scan.json.resp") self.assertEqual(expected, actual) + validate(actual, StartScanOutput.schema) @patch("requests.request", side_effect=mock_request) def test_start_scan_invalid_asset_ids(self, _mock_req): diff --git a/plugins/rapid7_insightvm_cloud/unit_test/test_stop_scan.py b/plugins/rapid7_insightvm_cloud/unit_test/test_stop_scan.py index 09101165b0..fa22c25510 100644 --- a/plugins/rapid7_insightvm_cloud/unit_test/test_stop_scan.py +++ b/plugins/rapid7_insightvm_cloud/unit_test/test_stop_scan.py @@ -6,13 +6,14 @@ sys.path.append(os.path.abspath("../")) from unittest import TestCase +from jsonschema import validate from icon_rapid7_insightvm_cloud.connection.schema import Input as ConnectionInput from icon_rapid7_insightvm_cloud.actions.stop_scan import StopScan -from icon_rapid7_insightvm_cloud.actions.stop_scan.schema import Input +from icon_rapid7_insightvm_cloud.actions.stop_scan.schema import Input, StopScanOutput from unittest.mock import patch -from unit_test.utils import Utils -from unit_test.mock import ( +from utils import Utils +from mock import ( mock_request, ) @@ -34,6 +35,7 @@ def test_stop_scan(self, _mock_req): actual = self.action.run({Input.ID: self.params.get("scan_id")}) expected = Utils.read_file_to_dict("expected_responses/stop_scan.json.resp") self.assertEqual(expected, actual) + validate(actual, StopScanOutput.schema) # test finding event via all inputs @patch("requests.request", side_effect=mock_request) @@ -41,6 +43,7 @@ def test_stop_scan_invalid_scan_id(self, _mock_req): actual = self.action.run({Input.ID: self.params.get("scan_id_invalid")}) expected = Utils.read_file_to_dict("expected_responses/stop_scan_invalid_scan_id.json.resp") self.assertEqual(expected, actual) + validate(actual, StopScanOutput.schema) @patch("requests.request", side_effect=mock_request) def test_stop_scan_invalid_secret_key(self, _mock_req): diff --git a/plugins/rapid7_insightvm_cloud/unit_test/test_vuln_search.py b/plugins/rapid7_insightvm_cloud/unit_test/test_vuln_search.py index 8b34af01f1..14aff51fd0 100644 --- a/plugins/rapid7_insightvm_cloud/unit_test/test_vuln_search.py +++ b/plugins/rapid7_insightvm_cloud/unit_test/test_vuln_search.py @@ -6,12 +6,13 @@ sys.path.append(os.path.abspath("../")) from unittest import TestCase +from jsonschema import validate from icon_rapid7_insightvm_cloud.actions.vuln_search import VulnSearch -from icon_rapid7_insightvm_cloud.actions.vuln_search.schema import Input +from icon_rapid7_insightvm_cloud.actions.vuln_search.schema import Input, VulnSearchOutput from icon_rapid7_insightvm_cloud.connection.schema import Input as ConnectionInput from unittest.mock import patch -from unit_test.utils import Utils -from unit_test.mock import ( +from utils import Utils +from mock import ( mock_request, ) @@ -20,8 +21,6 @@ class TestVulnSearch(TestCase): @classmethod def setUpClass(self) -> None: self.params = { - "asset_criteria": "last_scan_end > 2000-01-01T00:00:00.000Z", - "asset_criteria_invalid": "invalid asset criteria", "size": 10, "sort_criteria": {"risk-score": "asc", "criticality-tag": "desc"}, "vuln_criteria": "severity IN ['Critical', 'Severe']", @@ -36,7 +35,6 @@ def setUp(self) -> None: def test_vuln_search_all_inputs(self, _mock_req): actual = self.action.run( { - Input.ASSET_CRITERIA: self.params.get("asset_criteria"), Input.SIZE: self.params.get("size"), Input.SORT_CRITERIA: self.params.get("sort_criteria"), Input.VULN_CRITERIA: self.params.get("vuln_criteria"), @@ -44,6 +42,7 @@ def test_vuln_search_all_inputs(self, _mock_req): ) expected = Utils.read_file_to_dict("expected_responses/vuln_search.json.resp") self.assertEqual(expected, actual) + validate(actual, VulnSearchOutput.schema) # test finding event with no inputs @patch("requests.request", side_effect=mock_request) @@ -51,25 +50,7 @@ def test_vuln_search_no_input(self, _mock_req): actual = self.action.run() expected = Utils.read_file_to_dict("expected_responses/vuln_search.json.resp") self.assertEqual(expected, actual) - - # test finding event with bad asset criteria - @patch("requests.request", side_effect=mock_request) - def test_vuln_invalid_asset_criteria(self, _mock_req): - with self.assertRaises(PluginException) as context: - self.action.run( - { - Input.ASSET_CRITERIA: self.params.get("asset_criteria_invalid"), - Input.SIZE: self.params.get("size"), - Input.SORT_CRITERIA: self.params.get("sort_criteria"), - Input.VULN_CRITERIA: self.params.get("vuln_criteria"), - } - ) - cause = "The server is unable to process the request." - assistance = "Verify your plugin input is correct and not malformed and try again. If the issue persists, please contact support." - data = Utils.read_file_to_dict("expected_responses/asset_search_invalid_asset_criteria.json.resp") - self.assertEqual(cause, context.exception.cause) - self.assertEqual(assistance, context.exception.assistance) - self.assertEqual(str(data), context.exception.data) + validate(actual, VulnSearchOutput.schema) # test finding event with bad vuln criteria @patch("requests.request", side_effect=mock_request) @@ -77,7 +58,6 @@ def test_asset_vuln_criteria_invalid(self, _mock_req): with self.assertRaises(PluginException) as context: self.action.run( { - Input.ASSET_CRITERIA: self.params.get("asset_criteria"), Input.SIZE: self.params.get("size"), Input.SORT_CRITERIA: self.params.get("sort_criteria"), Input.VULN_CRITERIA: self.params.get("vuln_criteria_invalid"),