Skip to content
This repository was archived by the owner on Oct 14, 2020. It is now read-only.

Add ncrack scanner implementation #88

Merged
merged 14 commits into from
Sep 18, 2020
Merged

Add ncrack scanner implementation #88

merged 14 commits into from
Sep 18, 2020

Conversation

SebieF
Copy link
Contributor

@SebieF SebieF commented Sep 11, 2020

  • Added ncrack Authentication Scanner and integration test

Missing:

  • Option to mount user and password files into scan (dependent on change in operator)
  • Example for wordpress or MySQL

@SebieF SebieF added the enhancement New feature or request label Sep 11, 2020
@SebieF SebieF requested a review from nigthknight September 11, 2020 13:46
@SebieF SebieF self-assigned this Sep 11, 2020
nigthknight
nigthknight reviewed Sep 16, 2020
View reviewed changes
scanners/ncrack/.helmignore Outdated

parser/
scanner/
examples/
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

This file should end with a newline as recommended by GitHub

scanners/ncrack/examples/dummy-ssh/scan.yaml Outdated
- -v
- --user=root,admin
- --pass=THEPASSWORDYOUCREATED,12345
- ssh://dummy-ssh
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

This file should end with a newline as recommended by GitHub

scanners/ncrack/parser/.dockerignore Outdated
@@ -0,0 +1 @@
node_modules/
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

This file should end with a newline as recommended by GitHub

scanners/ncrack/parser/.gitignore Outdated
@@ -0,0 +1 @@
node_modules/
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

This file should end with a newline as recommended by GitHub

scanners/ncrack/parser/__testFiles__/ncrack_two_services_no_results.xml
<address addr="45.33.32.156" addrtype="ipv4"/>
<port protocol="tcp" portid="80" name="http"></port>
</service>
</ncrackrun>
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

This file should end with a newline as recommended by GitHub

scanners/ncrack/values.yaml Outdated

scannerJob:
resources: {}
# scannerJob:
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Is there a reason these lines have to be commented out?

Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

This is done in all scanners and recommended by helm.
Basically don't impose resource restrictions by default but give users the ability to configure them on their own.

tests/integration/scanner/ncrack.test.js Outdated
);
},
3 * 60 * 1000
);
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

This file should end with a newline as recommended by GitHub

scanners/ncrack/parser/parser.test.js Outdated
},
]
`);
});
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

This file should end with a newline as recommended by GitHub

scanners/ncrack/parser/package.json
"description": "Parses result files for the type: 'ncrack-xml'",
"main": "",
"scripts": {},
"keywords": [],
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Should we define some useful keywords?

scanners/ncrack/parser/parser.js
protocol: protocol,
service: portName,
username,
password,
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I'm not sure if we should include the password.

Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I think this needs to be in here because otherwise you can't really confirm that it was properly identified.
But its probably a good idea to write this in the docs for ncrack that users need to consider this.

@nigthknight nigthknight self-requested a review September 18, 2020 12:11
@SebieF SebieF merged commit 6ac36be into master Sep 18, 2020
@J12934 J12934 deleted the ncrack branch September 18, 2020 13:52
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Reviewers
2 more reviewers

@J12934 J12934 J12934 left review comments

@nigthknight nigthknight nigthknight approved these changes

Reviewers whose approvals may not affect merge requirements
Assignees

@SebieF SebieF

Labels
enhancement New feature or request
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@SebieF @nigthknight @J12934