Class: Risu::Parsers::Nessus::PostProcess::RiskScore

Inherits:

Base::PostProcessBase

• Object
• Base::PostProcessBase
• Risu::Parsers::Nessus::PostProcess::RiskScore

Defined in:

lib/risu/parsers/nessus/postprocess/risk_score.rb

Instance Attribute Summary

Attributes inherited from Base::PostProcessBase

#info

Instance Method Summary

• #calculate_host_risk_score ⇒ Object
• #calculate_item_risk_score ⇒ Object

  Calculates the RiskScore for a Item which is == to the Plugin’s RiskScore.

• #calculate_plugin_risk_score ⇒ Object
• #initialize ⇒ RiskScore constructor

  A new instance of RiskScore.

• #run ⇒ Object

Methods inherited from Base::PostProcessBase

#<=>, #==, #calculate_severity, #create_item, #create_plugin, #has_findings, #has_host_findings, inherited

Constructor Details

#initialize ⇒ RiskScore

Returns a new instance of RiskScore.

# File 'lib/risu/parsers/nessus/postprocess/risk_score.rb', line 29

def initialize
	@info =
	{
		:description => "RiskScore Calculator",
		:plugin_id => 0
	}						
end

Instance Method Details

#calculate_host_risk_score ⇒ Object

# File 'lib/risu/parsers/nessus/postprocess/risk_score.rb', line 76

def calculate_host_risk_score
	Host.all.each do |host|
		risk_score = 0.0

		host.items.to_a.each do |item|
			risk_score = risk_score + item.risk_score
		end

		#@TODO weighting goes here

		host.risk_score = risk_score
		host.save
	end
end

#calculate_item_risk_score ⇒ Object

Calculates the RiskScore for a Item which is == to the Plugin’s RiskScore

# File 'lib/risu/parsers/nessus/postprocess/risk_score.rb', line 40

def calculate_item_risk_score
	Item.all.each do |item|
		plugin = Plugin.where(:id => item.plugin_id).first

		risk_score = 0.0
		cvss_base_score = plugin.cvss_base_score.to_f || 1.0
		vuln_publication_date = plugin.vuln_publication_date

		vuln_pub_days = 1
		vuln_pub_days = (DateTime.now.to_date - vuln_publication_date.to_date).to_i if vuln_publication_date != nil

		exploitable = plugin.exploit_available
		exploitable_factor = 1

		if exploitable == "true"
			exploitable_factor = 0.6
		end

		risk_score = (cvss_base_score * vuln_pub_days * 0.8) * exploitable_factor

		item.risk_score = risk_score
		item.save
	end
end

#calculate_plugin_risk_score ⇒ Object

# File 'lib/risu/parsers/nessus/postprocess/risk_score.rb', line 66

def calculate_plugin_risk_score
	Plugin.all.each do |plugin|
		items = Item.where(:plugin_id => plugin.id).to_a

		plugin.risk_score = items.first.risk_score * items.count
		plugin.save
	end
end

#run ⇒ Object

# File 'lib/risu/parsers/nessus/postprocess/risk_score.rb', line 92

def run
	calculate_item_risk_score()
	calculate_plugin_risk_score()
	calculate_host_risk_score()
end