Class: Risu::Models::Report

Inherits:

ActiveRecord::Base

• Object
• ActiveRecord::Base
• Risu::Models::Report

Defined in:

lib/risu/models/report.rb

Overview

Report Model

Class Attribute Summary

• .author ⇒ Object

  Returns the value of attribute author.

• .classification ⇒ Object

  Returns the value of attribute classification.

• .company ⇒ Object

  Returns the value of attribute company.

• .extra ⇒ Object

  Returns the value of attribute extra.

• .location ⇒ Object

  Returns the value of attribute location.

• .network ⇒ Object

  Returns the value of attribute network.

• .owner ⇒ Object

  Returns the value of attribute owner.

• .title ⇒ Object

  Returns the value of attribute title.

Class Method Summary

• .scan_date ⇒ Object
• .scanner_nessus_ratings_text ⇒ Object

Class Attribute Details

.author ⇒ Object

Returns the value of attribute author.

# File 'lib/risu/models/report.rb', line 32

def author
  @author
end

.classification ⇒ Object

Returns the value of attribute classification.

# File 'lib/risu/models/report.rb', line 32

def classification
  @classification
end

.company ⇒ Object

Returns the value of attribute company.

# File 'lib/risu/models/report.rb', line 32

def company
  @company
end

.extra ⇒ Object

Returns the value of attribute extra.

# File 'lib/risu/models/report.rb', line 32

def extra
  @extra
end

.location ⇒ Object

Returns the value of attribute location.

# File 'lib/risu/models/report.rb', line 32

def location
  @location
end

.network ⇒ Object

Returns the value of attribute network.

# File 'lib/risu/models/report.rb', line 32

def network
  @network
end

.owner ⇒ Object

Returns the value of attribute owner.

# File 'lib/risu/models/report.rb', line 32

def owner
  @owner
end

.title ⇒ Object

Returns the value of attribute title.

# File 'lib/risu/models/report.rb', line 32

def title
  @title
end

Class Method Details

.scan_date ⇒ Object

# File 'lib/risu/models/report.rb', line 37

def scan_date
	Host.where("start IS NOT NULL").first[:start]
end

.scanner_nessus_ratings_text ⇒ Object

# File 'lib/risu/models/report.rb', line 44

def scanner_nessus_ratings_text
	text = "The vulnerability scanner used by #{Report.company} rates the findings as follows: Critical, High, Medium, Low and Informational. Critical findings represent a security hole, this is the highest rating a risk can get.  These generally represent vulnerabilities that can lead to full system compromise due to missing security patches. Critical findings should be re-mediated first as they generally leave the network wide open. High findings are slightly less severe than Critical findings but the severity depends on the calculated CVSS base score. Medium findings are considered a security warning; these are not as severe as high but should be evaluated on a risk-by-risk basis. These are typically configuration errors that can lead to information disclosures such as usernames, passwords, and configuration settings. Low findings are identified as security notes; these provide information the scanner discovered during the scanning process. The information includes items such as hostname, domain name, and MAC address. Open Port findings represent the open ports on each system that the scanner found during the scan process. These should be evaluated against firewall settings to test the firewall configurations.\n\n"
	text << "After the scanner is complete, the scanner evaluates each finding and bases it on the Common Vulnerability Scoring System (CVSS) score assigned to each finding. Any findings with a CVSS base score of 10 are upgraded to a Critical finding. These represent vulnerabilities that are trivial to gain administrator access to the system, with little to no effort. For more information on the CVSS scoring system please visit: http://nvd.nist.gov/cvss.cfm.\n\n"

	return text
end