Class: NessusREST::Client

Inherits:

Object

• Object
• NessusREST::Client

Defined in:

lib/nessus_rest.rb

Overview

Client class implementation of Nessus (6+) JSON REST protocol. Class which uses standard JSON lib to parse nessus JSON REST replies.

Typical Usage:

require 'nessus_rest'

n=NessusREST::Client.new ({:url=>'https://localhost:8834', :username=>'user', :password=> 'password'})
qs=n.scan_quick_template('basic','name-of-scan','localhost')
scanid=qs['scan']['id']
n.scan_wait4finish(scanid)
n.report_download_file(scanid,'csv','myscanreport.csv')

Instance Attribute Summary

• #autologin ⇒ Object

  Returns the value of attribute autologin.

• #defsleep ⇒ Object

  Returns the value of attribute defsleep.

• #httpretry ⇒ Object

  Returns the value of attribute httpretry.

• #httpsleep ⇒ Object

  Returns the value of attribute httpsleep.

• #quick_defaults ⇒ Object

  Returns the value of attribute quick_defaults.

• #ssl_use ⇒ Object

  Returns the value of attribute ssl_use.

• #ssl_verify ⇒ Object

  Returns the value of attribute ssl_verify.

• #x_cookie ⇒ Object readonly

  Returns the value of attribute x_cookie.

Instance Method Summary

• #authenticate(username, password) ⇒ Object (also: #login)

  Tries to authenticate to the Nessus REST JSON interface.

• #authenticated ⇒ Object

  checks if we’re logged in correctly.

• #editor_templates(type, uuid) ⇒ Object

  Get template by type and uuid.

• #get_server_properties ⇒ Object (also: #server_properties)

  try to get server properties.

• #host_detail(scan_id, host_id) ⇒ Object

  Get host details from the scan.

• #http_delete(opts = {}) ⇒ Object

  Perform HTTP delete method with uri, data and fields.

• #http_get(opts = {}) ⇒ Object

  Perform HTTP get method with uri and fields.

• #http_post(opts = {}) ⇒ Object

  Perform HTTP post method with uri, data, body and fields.

• #http_put(opts = {}) ⇒ Object

  Perform HTTP put method with uri, data and fields.

• #init_quick_defaults ⇒ Object

  initialize quick scan defaults: these will be used when not specifying defaults.

• #initialize(params = {}) {|@connection| ... } ⇒ Client constructor

  initialize object: try to connect to Nessus Scanner using URL, user and password (or any other defaults).

• #is_admin ⇒ Object

  check if logged in user is administrator.

• #list_families ⇒ Object

  Get List of Families.

• #list_folders ⇒ Object

  Get List of Folders.

• #list_plugins(family_id) ⇒ Object

  Get List of Plugins.

• #list_policies ⇒ Object

  Get List of Policies.

• #list_scanners ⇒ Object

  Get List of Scanners.

• #list_templates(type) ⇒ Object

  Get List of Templates.

• #list_users ⇒ Object

  Get List of Users.

• #parse_json(body) ⇒ Object

  Perform JSON parsing of body.

• #plugin_details(plugin_id) ⇒ Object
• #policy_delete(policy_id) ⇒ Object
• #report_download(scan_id, file_id) ⇒ Object
• #report_download_file(scan_id, format, outputfn) ⇒ Object
• #report_download_quick(scan_id, format) ⇒ Object
• #scan_create(uuid, settings) ⇒ Object
• #scan_delete(scan_id) ⇒ Object

  delete scan with scan_id.

• #scan_details(scan_id) ⇒ Object
• #scan_export(scan_id, format) ⇒ Object
• #scan_export_status(scan_id, file_id) ⇒ Object
• #scan_finished?(scan_id) ⇒ Boolean
• #scan_launch(scan_id) ⇒ Object
• #scan_list ⇒ Object (also: #list_scans)

  Get List of Scans.

• #scan_pause(scan_id) ⇒ Object
• #scan_quick_policy(policyname, name, targets) ⇒ Object

  Performs scan with scan policy provided (uuid of policy or policy name).

• #scan_quick_template(templatename, name, targets) ⇒ Object

  Performs scan with templatename provided (name, title or uuid of scan).

• #scan_resume(scan_id) ⇒ Object
• #scan_status(scan_id) ⇒ Object
• #scan_stop(scan_id) ⇒ Object
• #scan_wait4finish(scan_id) ⇒ Object
• #server_status ⇒ Object

  Get server status.

• #user_add(username, password, permissions, type) ⇒ Object

  Add user to server.

• #user_chpasswd(user_id, password) ⇒ Object

  change password for user_id.

• #user_delete(user_id) ⇒ Object

  delete user with user_id.

• #user_logout ⇒ Object (also: #logout)

  logout from the server.

Constructor Details

#initialize(params = {}) {|@connection| ... } ⇒ Client

initialize object: try to connect to Nessus Scanner using URL, user and password (or any other defaults)

Usage:

n=NessusREST::Client.new (:url=>'https://localhost:8834', :username=>'user', :password=> 'password')

Yields:

• (@connection)

# File 'lib/nessus_rest.rb', line 82

def initialize(params={})
  # defaults
  @nessusurl = params.fetch(:url,'https://127.0.0.1:8834/')
  @username = params.fetch(:username,'nessus')
  @password = params.fetch(:password,'nessus')
  @ssl_verify = params.fetch(:ssl_verify,false)
  @ssl_use = params.fetch(:ssl_use,true)
  @autologin = params.fetch(:autologin, true)
  @defsleep = params.fetch(:defsleep, 1)
  @httpretry = params.fetch(:httpretry, 3)
  @httpsleep = params.fetch(:httpsleep, 1)

  init_quick_defaults()

  uri = URI.parse(@nessusurl)
  @connection = Net::HTTP.new(uri.host, uri.port)
  @connection.use_ssl = @ssl_use

  if @ssl_verify
    @connection.verify_mode = OpenSSL::SSL::VERIFY_PEER
  else
    @connection.verify_mode = OpenSSL::SSL::VERIFY_NONE
  end
    
  yield @connection if block_given?
    authenticate(@username, @password) if @autologin
end

Instance Attribute Details

#autologin ⇒ Object

Returns the value of attribute autologin.

# File 'lib/nessus_rest.rb', line 55

def autologin
  @autologin
end

#defsleep ⇒ Object

Returns the value of attribute defsleep.

# File 'lib/nessus_rest.rb', line 55

def defsleep
  @defsleep
end

#httpretry ⇒ Object

Returns the value of attribute httpretry.

# File 'lib/nessus_rest.rb', line 55

def httpretry
  @httpretry
end

#httpsleep ⇒ Object

Returns the value of attribute httpsleep.

# File 'lib/nessus_rest.rb', line 55

def httpsleep
  @httpsleep
end

#quick_defaults ⇒ Object

Returns the value of attribute quick_defaults.

# File 'lib/nessus_rest.rb', line 54

def quick_defaults
  @quick_defaults
end

#ssl_use ⇒ Object

Returns the value of attribute ssl_use.

# File 'lib/nessus_rest.rb', line 55

def ssl_use
  @ssl_use
end

#ssl_verify ⇒ Object

Returns the value of attribute ssl_verify.

# File 'lib/nessus_rest.rb', line 55

def ssl_verify
  @ssl_verify
end

#x_cookie ⇒ Object (readonly)

Returns the value of attribute x_cookie.

# File 'lib/nessus_rest.rb', line 56

def x_cookie
  @x_cookie
end

Instance Method Details

#authenticate(username, password) ⇒ Object Also known as: login

Tries to authenticate to the Nessus REST JSON interface

returns: true if logged in, false if not

Usage:

n=NessusREST::Client.new (:url=>'https://localhost:8834', :autologin=>false)
if n.authenticate('user','pass')

puts “Logged in”

else

puts “Error”

end

# File 'lib/nessus_rest.rb', line 122

def authenticate(username, password)
  @username = username
  @password = password
  payload = {
    :username => @username, 
    :password => @password, 
    :json => 1
  }
  res = http_post(:uri=>"/session", :data=>payload)
  if res['token']
    @token = "token=#{res['token']}"
    @x_cookie = {'X-Cookie'=>@token}
    return true
  else
    false
  end
end

#authenticated ⇒ Object

checks if we’re logged in correctly

returns: true if logged in, false if not

Usage:

n=NessusREST::Client.new (:url=>'https://localhost:8834', :username=>'user', :password=> 'password')
if n.authenticated

puts “Logged in”

else

puts “Error”

end

# File 'lib/nessus_rest.rb', line 153

def authenticated
  if (@token && @token.include?('token='))
    return true
  else
    return false
  end
end

#editor_templates(type, uuid) ⇒ Object

Get template by type and uuid. Type can be ‘policy’ or ‘scan’

returns: JSON parsed object with template

Usage:

n=NessusREST::Client.new (:url=>'https://localhost:8834', :username=>'user', :password=> 'password')
pp n.editor_templates('scan',uuid)

# File 'lib/nessus_rest.rb', line 447

def editor_templates (type, uuid)
  res = http_get(:uri=>"/editor/#{type}/templates/#{uuid}", :fields=>x_cookie)
end

#get_server_properties ⇒ Object Also known as: server_properties

try to get server properties

returns: JSON parsed object with server properties

Usage:

n=NessusREST::Client.new (:url=>'https://localhost:8834', :username=>'user', :password=> 'password')
pp n.get_server_properties

# File 'lib/nessus_rest.rb', line 169

def get_server_properties
  http_get(:uri=>"/server/properties", :fields=>x_cookie)
end

#host_detail(scan_id, host_id) ⇒ Object

Get host details from the scan

returns: JSON parsed object with host details

Usage:

n=NessusREST::Client.new (:url=>'https://localhost:8834', :username=>'user', :password=> 'password')
pp n.host_detail(123, 1234)

# File 'lib/nessus_rest.rb', line 542

def host_detail(scan_id, host_id)
  res = http_get(:uri=>"/scans/#{scan_id}/hosts/#{host_id}", :fields=>x_cookie)
end

#http_delete(opts = {}) ⇒ Object

Perform HTTP delete method with uri, data and fields

returns: HTTP result object

Usage:

n=NessusREST::Client.new (:url=>'https://localhost:8834', :username=>'user', :password=> 'password')
res = n.http_delete(:uri=>"/session", :fields=>n.x_cookie)
puts res.code

# File 'lib/nessus_rest.rb', line 627

def http_delete(opts={})
  uri    = opts[:uri]
  fields = opts[:fields] || {}
  res    = nil
  tries  = @httpretry

  req = Net::HTTP::Delete.new(uri)

  fields.each_pair do |name, value|
    req.add_field(name, value)
  end

  begin
  tries -= 1
    res = @connection.request(req)
  rescue Timeout::Error, Errno::EINVAL, Errno::ECONNRESET, EOFError, Net::HTTPBadResponse, Net::HTTPHeaderSyntaxError, Net::ProtocolError => e
  if tries>0
    sleep @httpsleep
    retry
  else
    return res
  end
  rescue URI::InvalidURIError
    return res
  end

  res
end

#http_get(opts = {}) ⇒ Object

Perform HTTP get method with uri and fields

returns: JSON parsed object (if JSON parseable)

Usage:

n=NessusREST::Client.new (:url=>'https://localhost:8834', :username=>'user', :password=> 'password')
pp n.http_get(:uri=>"/users", :fields=>n.x_cookie)

# File 'lib/nessus_rest.rb', line 664

def http_get(opts={})
  uri    = opts[:uri]
  fields = opts[:fields] || {}
  raw_content = opts[:raw_content] || false
  json   = {}
  tries  = @httpretry

  req = Net::HTTP::Get.new(uri)
  fields.each_pair do |name, value|
    req.add_field(name, value)
  end

  begin
    tries -= 1
    res = @connection.request(req)
  rescue Timeout::Error, Errno::EINVAL, Errno::ECONNRESET, EOFError, Net::HTTPBadResponse, Net::HTTPHeaderSyntaxError, Net::ProtocolError => e
    if tries>0
      sleep @httpsleep
      retry
    else
      return json
    end
  rescue URI::InvalidURIError
    return json
  end
  if !raw_content
    parse_json(res.body)
  else
    res.body
  end
end

#http_post(opts = {}) ⇒ Object

Perform HTTP post method with uri, data, body and fields

returns: JSON parsed object (if JSON parseable)

Usage:

n=NessusREST::Client.new (:url=>'https://localhost:8834', :username=>'user', :password=> 'password')
pp n.http_post(:uri=>"/scans/#{scan_id}/launch", :fields=>n.x_cookie)

# File 'lib/nessus_rest.rb', line 704

def http_post(opts={})
  uri    = opts[:uri]
  data   = opts[:data]
  fields = opts[:fields] || {}
  body   = opts[:body]
  ctype  = opts[:ctype]
  json   = {}
  tries  = @httpretry

  req = Net::HTTP::Post.new(uri)
  req.set_form_data(data) unless (data.nil? || data.empty?)
  req.body = body unless (body.nil? || body.empty?)
  req['Content-Type'] = ctype unless (ctype.nil? || ctype.empty?)
  fields.each_pair do |name, value|
    req.add_field(name, value)
  end

  begin
  tries -= 1
    res = @connection.request(req)
  rescue Timeout::Error, Errno::EINVAL, Errno::ECONNRESET, EOFError, Net::HTTPBadResponse, Net::HTTPHeaderSyntaxError, Net::ProtocolError => e
  if tries>0
      sleep @httpsleep
    retry
  else
    return json
  end
  rescue URI::InvalidURIError
    return json
  end

  parse_json(res.body)
end

#http_put(opts = {}) ⇒ Object

Perform HTTP put method with uri, data and fields

returns: HTTP result object

Usage:

n=NessusREST::Client.new (:url=>'https://localhost:8834', :username=>'user', :password=> 'password')
payload = {
  :password => password, 
  :json => 1
}
res = n.http_put(:uri=>"/users/#{user_id}/chpasswd", :data=>payload, :fields=>n.x_cookie)
puts res.code

# File 'lib/nessus_rest.rb', line 588

def http_put(opts={})
  uri    = opts[:uri]
  data   = opts[:data]
  fields = opts[:fields] || {}
  res    = nil
  tries  = @httpretry

  req = Net::HTTP::Put.new(uri)
  req.set_form_data(data) unless (data.nil? || data.empty?)
  fields.each_pair do |name, value|
    req.add_field(name, value)
  end

  begin
  tries -= 1
    res = @connection.request(req)
  rescue Timeout::Error, Errno::EINVAL, Errno::ECONNRESET, EOFError, Net::HTTPBadResponse, Net::HTTPHeaderSyntaxError, Net::ProtocolError => e
  if tries>0
    sleep @httpsleep
    retry
  else
    return res
  end
  rescue URI::InvalidURIError
    return res
  end

  res
end

#init_quick_defaults ⇒ Object

initialize quick scan defaults: these will be used when not specifying defaults

Usage:

n.init_quick_defaults()

# File 'lib/nessus_rest.rb', line 68

def init_quick_defaults
  @quick_defaults=Hash.new
  @quick_defaults['enabled']=false
  @quick_defaults['launch']='ONETIME'
  @quick_defaults['launch_now']=true
  @quick_defaults['description']='Created with nessus_rest'
end

#is_admin ⇒ Object

check if logged in user is administrator

returns: boolean value depending if user is administrator or not

Usage:

n=NessusREST::Client.new (:url=>'https://localhost:8834', :username=>'user', :password=> 'password')
if n.is_admin

puts “Administrator”

else

puts “NOT administrator”

end

# File 'lib/nessus_rest.rb', line 340

def is_admin
  res = http_get(:uri=>"/session", :fields=>x_cookie)
  if res['permissions'] == 128
    return true
  else
    return false
  end
end

#list_families ⇒ Object

Get List of Families

returns: JSON parsed object with list of families

Usage:

n=NessusREST::Client.new (:url=>'https://localhost:8834', :username=>'user', :password=> 'password')
pp n.list_families

# File 'lib/nessus_rest.rb', line 296

def list_families
  http_get(:uri=>"/plugins/families", :fields=>x_cookie)
end

#list_folders ⇒ Object

Get List of Folders

returns: JSON parsed object with list of folders

Usage:

n=NessusREST::Client.new (:url=>'https://localhost:8834', :username=>'user', :password=> 'password')
pp n.list_folders

# File 'lib/nessus_rest.rb', line 272

def list_folders
  http_get(:uri=>"/folders", :fields=>x_cookie)
end

#list_plugins(family_id) ⇒ Object

Get List of Plugins

returns: JSON parsed object with list of plugins

Usage:

n=NessusREST::Client.new (:url=>'https://localhost:8834', :username=>'user', :password=> 'password')
pp n.list_plugins

# File 'lib/nessus_rest.rb', line 308

def list_plugins(family_id)
  http_get(:uri=>"/plugins/families/#{family_id}", :fields=>x_cookie)
end

#list_policies ⇒ Object

Get List of Policies

returns: JSON parsed object with list of policies

Usage:

n=NessusREST::Client.new (:url=>'https://localhost:8834', :username=>'user', :password=> 'password')
pp n.list_policies

# File 'lib/nessus_rest.rb', line 248

def list_policies
  http_get(:uri=>"/policies", :fields=>x_cookie)
end

#list_scanners ⇒ Object

Get List of Scanners

returns: JSON parsed object with list of scanners

Usage:

n=NessusREST::Client.new (:url=>'https://localhost:8834', :username=>'user', :password=> 'password')
pp n.list_scanners

# File 'lib/nessus_rest.rb', line 284

def list_scanners
  http_get(:uri=>"/scanners", :fields=>x_cookie)
end

#list_templates(type) ⇒ Object

Get List of Templates

returns: JSON parsed object with list of templates

Usage:

n=NessusREST::Client.new (:url=>'https://localhost:8834', :username=>'user', :password=> 'password')
pp n.list_templates

# File 'lib/nessus_rest.rb', line 320

def list_templates(type)
  res = http_get(:uri=>"/editor/#{type}/templates", :fields=>x_cookie)
end

#list_users ⇒ Object

Get List of Users

returns: JSON parsed object with list of users

Usage:

n=NessusREST::Client.new (:url=>'https://localhost:8834', :username=>'user', :password=> 'password')
pp n.list_users

# File 'lib/nessus_rest.rb', line 260

def list_users
  http_get(:uri=>"/users", :fields=>x_cookie)
end

#parse_json(body) ⇒ Object

Perform JSON parsing of body

returns: JSON parsed object (if JSON parseable)

# File 'lib/nessus_rest.rb', line 742

def parse_json(body)
  buf = {}

  begin
    buf = JSON.parse(body)
  rescue JSON::ParserError
  end

  buf
end

#plugin_details(plugin_id) ⇒ Object

# File 'lib/nessus_rest.rb', line 324

def plugin_details(plugin_id)
  http_get(:uri=>"/plugins/plugin/#{plugin_id}", :fields=>x_cookie)
end

#policy_delete(policy_id) ⇒ Object

# File 'lib/nessus_rest.rb', line 434

def policy_delete(policy_id)
  res = http_delete(:uri=>"/policies/#{policy_id}", :fields=>x_cookie)
  return res.code
end

#report_download(scan_id, file_id) ⇒ Object

# File 'lib/nessus_rest.rb', line 546

def report_download(scan_id, file_id)
  res = http_get(:uri=>"/scans/#{scan_id}/export/#{file_id}/download", :raw_content=> true, :fields=>x_cookie)
end

#report_download_file(scan_id, format, outputfn) ⇒ Object

# File 'lib/nessus_rest.rb', line 564

def report_download_file(scan_id, format, outputfn)
  report_content=report_download_quick(scan_id, format)
  File.open(outputfn, 'w') do |f| 
    f.write(report_content)
  end
end

#report_download_quick(scan_id, format) ⇒ Object

# File 'lib/nessus_rest.rb', line 550

def report_download_quick(scan_id, format) 
  se=scan_export(scan_id,format)
  # ready, loading
  while (status = scan_export_status(scan_id,se['file'])['status']) != "ready" do
    # puts status
    if status.nil? or status == '' then
      return nil
    end
    sleep @defsleep
  end
  rf=report_download(scan_id,se['file'])
  return rf
end

#scan_create(uuid, settings) ⇒ Object

# File 'lib/nessus_rest.rb', line 361

def scan_create(uuid, settings)
  payload = {
  :uuid => uuid, 
  :settings => settings,
  :json => 1
  }.to_json
  http_post(:uri=>"/scans", :body=>payload, :fields=>x_cookie, :ctype=>'application/json')
end

#scan_delete(scan_id) ⇒ Object

delete scan with scan_id

returns: boolean (true if deleted)

Usage:

n=NessusREST::Client.new (:url=>'https://localhost:8834', :username=>'user', :password=> 'password')
puts n.scan_delete(1)

# File 'lib/nessus_rest.rb', line 426

def scan_delete(scan_id)
  res = http_delete(:uri=>"/scans/#{scan_id}", :fields=>x_cookie)
  if res.code == 200 then
    return true
  end
  return false
end

#scan_details(scan_id) ⇒ Object

# File 'lib/nessus_rest.rb', line 387

def scan_details(scan_id)
  http_get(:uri=>"/scans/#{scan_id}", :fields=>x_cookie)
end

#scan_export(scan_id, format) ⇒ Object

# File 'lib/nessus_rest.rb', line 403

def scan_export(scan_id, format)
  payload = {
    :format => format
  }.to_json
  http_post(:uri=>"/scans/#{scan_id}/export", :body=>payload, :ctype=>'application/json', :fields=>x_cookie)
end

#scan_export_status(scan_id, file_id) ⇒ Object

# File 'lib/nessus_rest.rb', line 410

def scan_export_status(scan_id, file_id)
  request = Net::HTTP::Get.new("/scans/#{scan_id}/export/#{file_id}/status")
  request.add_field("X-Cookie", @token)
  res = @connection.request(request)
  res = JSON.parse(res.body)
  return res
end

#scan_finished?(scan_id) ⇒ Boolean

# File 'lib/nessus_rest.rb', line 519

def scan_finished?(scan_id)
  ss=scan_status(scan_id)
  if ss == 'completed' then
    return true
  end
  return false
end

#scan_launch(scan_id) ⇒ Object

# File 'lib/nessus_rest.rb', line 370

def scan_launch(scan_id)
  http_post(:uri=>"/scans/#{scan_id}/launch", :fields=>x_cookie)
end

#scan_list ⇒ Object Also known as: list_scans

Get List of Scans

returns: JSON parsed object with list of scans

Usage:

n=NessusREST::Client.new (:url=>'https://localhost:8834', :username=>'user', :password=> 'password')
pp n.scan_list

# File 'lib/nessus_rest.rb', line 382

def scan_list
  http_get(:uri=>"/scans", :fields=>x_cookie)
end

#scan_pause(scan_id) ⇒ Object

# File 'lib/nessus_rest.rb', line 391

def scan_pause(scan_id)
  http_post(:uri=>"/scans/#{scan_id}/pause", :fields=>x_cookie)
end

#scan_quick_policy(policyname, name, targets) ⇒ Object

Performs scan with scan policy provided (uuid of policy or policy name). Name is your scan name and targets are targets for scan

returns: JSON parsed object with scan info

Usage:

require 'nessus_rest'

n=NessusREST::Client.new ({:url=>'https://localhost:8834', :username=>'user', :password=> 'password'})
qs=n.scan_quick_policy('myscanpolicy','name-of-scan','localhost')
scanid=qs['scan']['id']
n.scan_wait4finish(scanid)
n.report_download_file(scanid,'nessus','myscanreport.nessus')

# File 'lib/nessus_rest.rb', line 496

def scan_quick_policy (policyname, name, targets)
  templates=list_policies['policies'].select do |pol|
    pol['template_uuid'] == policyname or pol['name'] == policyname
  end
  if templates.nil? then
  return nil
  end
  tuuid=templates.first['template_uuid']
  et=Hash.new
  et.merge!(@quick_defaults)
  et['name']=name
  et['text_targets']=targets
  sc=scan_create(tuuid,et)
end

#scan_quick_template(templatename, name, targets) ⇒ Object

Performs scan with templatename provided (name, title or uuid of scan). Name is your scan name and targets are targets for scan

returns: JSON parsed object with scan info

Usage:

require 'nessus_rest'

n=NessusREST::Client.new ({:url=>'https://localhost:8834', :username=>'user', :password=> 'password'})
qs=n.scan_quick_template('basic','name-of-scan','localhost')
scanid=qs['scan']['id']
n.scan_wait4finish(scanid)
n.report_download_file(scanid,'csv','myscanreport.csv')

# File 'lib/nessus_rest.rb', line 466

def scan_quick_template (templatename, name, targets)
  templates=list_templates('scan')['templates'].select do |temp| 
    temp['uuid'] == templatename or temp['name'] == templatename or temp['title'] == templatename
  end
  if templates.nil? then
    return nil
  end
  tuuid=templates.first['uuid']
  et=editor_templates('scan',tuuid)
  et.merge!(@quick_defaults)
  et['name']=name
  et['text_targets']=targets
  sc=scan_create(tuuid,et)
end

#scan_resume(scan_id) ⇒ Object

# File 'lib/nessus_rest.rb', line 395

def scan_resume(scan_id)
  http_post(:uri=>"/scans/#{scan_id}/resume", :fields=>x_cookie)
end

#scan_status(scan_id) ⇒ Object

# File 'lib/nessus_rest.rb', line 511

def scan_status(scan_id)
  sd=scan_details(scan_id)
  if not sd['error'].nil?
    return 'error'
  end
  return sd['info']['status']
end

#scan_stop(scan_id) ⇒ Object

# File 'lib/nessus_rest.rb', line 399

def scan_stop(scan_id)
  http_post(:uri=>"/scans/#{scan_id}/stop", :fields=>x_cookie)
end

#scan_wait4finish(scan_id) ⇒ Object

# File 'lib/nessus_rest.rb', line 527

def scan_wait4finish(scan_id)
  while not scan_finished?(scan_id) do
    # puts scan_status(scan_id)
    sleep @defsleep
  end
end

#server_status ⇒ Object

Get server status

returns: JSON parsed object with server status

Usage:

n=NessusREST::Client.new (:url=>'https://localhost:8834', :username=>'user', :password=> 'password')
pp n.server_status

# File 'lib/nessus_rest.rb', line 357

def server_status
  http_get(:uri=>"/server/status", :fields=>x_cookie)
end

#user_add(username, password, permissions, type) ⇒ Object

Add user to server

returns: JSON parsed object

Usage:

n=NessusREST::Client.new (:url=>'https://localhost:8834', :username=>'user', :password=> 'password')
pp n.user_add('user','password','16','local')

Reference: localhost:8834/api#/resources/users/create

# File 'lib/nessus_rest.rb', line 185

def user_add(username, password, permissions, type)
  payload = {
    :username => username, 
    :password => password, 
    :permissions => permissions, 
    :type => type, 
    :json => 1
  }
  http_post(:uri=>"/users", :fields=>x_cookie, :data=>payload)
end

#user_chpasswd(user_id, password) ⇒ Object

change password for user_id

returns: result code

Usage:

n=NessusREST::Client.new (:url=>'https://localhost:8834', :username=>'user', :password=> 'password')
puts n.user_chpasswd(1,'newPassword')

# File 'lib/nessus_rest.rb', line 217

def user_chpasswd(user_id, password)
  payload = {
    :password => password, 
    :json => 1
  }
  res = http_put(:uri=>"/users/#{user_id}/chpasswd", :data=>payload, :fields=>x_cookie)
  return res.code
end

#user_delete(user_id) ⇒ Object

delete user with user_id

returns: result code

Usage:

n=NessusREST::Client.new (:url=>'https://localhost:8834', :username=>'user', :password=> 'password')
puts n.user_delete(1)

# File 'lib/nessus_rest.rb', line 204

def user_delete(user_id)
  res = http_delete(:uri=>"/users/#{user_id}", :fields=>x_cookie)
  return res.code
end

#user_logout ⇒ Object Also known as: logout

logout from the server

returns: result code

Usage:

n=NessusREST::Client.new (:url=>'https://localhost:8834', :username=>'user', :password=> 'password')
puts n.user_logout

# File 'lib/nessus_rest.rb', line 234

def user_logout
  res = http_delete(:uri=>"/session", :fields=>x_cookie)
  return res.code
end