Skip to content

Commit

Permalink
Update conmon.sh: Improved directory setup, scan processing, and repo…
Browse files Browse the repository at this point in the history 
…rting output.
  • Loading branch information
@wz-gsa
wz-gsa committed Sep 27, 2024
1 parent 092b670 commit 63bd468
Showing 1 changed file with 131 additions and 54 deletions.
185 changes: 131 additions & 54 deletions conmon/bin/conmon.sh
View file
Original file line number Diff line number Diff line change
@@ -1,32 +1,38 @@
#!/bin/bash

# conmon.sh
# conmon.sh - Continuous Monitoring Script
# Sets up directories, handles Nessus scan processing, and generates reports

# Define root directories
GFSROOT="/Volumes/GoogleDrive/My Drive/18F_ISSO/FedRAMP JAB - cloud.gov - 3PAO Access"
SCANROOT="${GFSROOT}/ZAP and Nessus results"
CMROOT="$HOME/Documents/ConMon"
LOG_FILE="$CMROOT/conmon.log"

# Enable logging to a log file
exec > >(tee -a $LOG_FILE) 2>&1

# Fail function for error handling
cmfail() {
echo "FAIL: $*"
echo -e "\e[31mFAIL:\e[0m $*" >&2
return 1
}

# Setup directories based on date
setup_dirs() {
local year="$1"
local mo="$2"
local dy="$3"

if [[ -z "$year" || -z "$mo" || -z "$dy" ]]; then
cmfail "Call 'setup_dirs YYYY MM DD'"
cmfail "Usage: setup_dirs YYYY MM DD"
return 1
fi

MonthDir="$CMROOT/$year/$mo"
mkdir -p "$MonthDir" || cmfail "Failed to create directory: $MonthDir"

# Ensure the directory exists
mkdir -p "$MonthDir"

echo "Directory created: $MonthDir"
echo -e "\e[32mDirectory created:\e[0m $MonthDir"
echo "Please move all Nessus scan files into this directory."

export MonthDir
Expand All @@ -36,35 +42,35 @@ setup_dirs() {
export CMDY="$dy"
}

# Collect Nessus scan files from the relevant subfolders
collect_nessus_scans() {
# Initialize nessus_scans array
nessus_scans=()

# Verify that MonthDir is set
if [[ -z "$MonthDir" ]]; then
cmfail "MonthDir is not set. Please run setup_dirs YYYY MM DD"
return 1
fi

# Find Nessus files in MonthDir
# Find all Nessus files in the relevant subfolders (Production, Tooling, RDS)
if [[ -d "$MonthDir" ]]; then
while IFS= read -r -d '' file; do
nessus_scans+=("$file")
done < <(find "$MonthDir" -maxdepth 1 -type f -iname "*.nessus" -print0)
done < <(find "$MonthDir" -type f \( -iname "*.nessus" -o -iname "*.xml" \) -print0)
else
cmfail "MonthDir does not exist: $MonthDir"
return 1
fi
}

# Generate Nessus reports (Log4J, Daemons, Summary, CSV)
nessus_log4j() {
collect_nessus_scans
collect_nessus_scans || return 1

if [[ ${#nessus_scans[@]} -eq 0 ]]; then
echo "No Nessus scan files found. Please ensure the files are in the MonthDir."
echo -e "\e[31mNo Nessus scan files found. Please ensure the files are in the MonthDir.\e[0m"
return 1
fi

# Filter files for Production and Tooling scans
local filtered_scans=()
for file in "${nessus_scans[@]}"; do
if [[ "$(basename "$file")" =~ ^(Production|Tooling).*\.nessus$ ]]; then
Expand All @@ -73,24 +79,37 @@ nessus_log4j() {
done

if [[ ${#filtered_scans[@]} -eq 0 ]]; then
echo "No Production or Tooling Nessus scan files found."
echo -e "\e[31mNo Production or Tooling Nessus scan files found.\e[0m"
return 1
fi

printf "======\nFULL REPORT\n=====\n"
parse-nessus-xml.py -l "${filtered_scans[@]}"
printf "\n\n======\nSUMMARY FOR CONMON\n=====\n"
parse-nessus-xml.py -l "${filtered_scans[@]}" | grep -E '(UNSAFE|plugin)'
local report_dir="$CMROOT/$CMYEAR/$CMMO/reports"
mkdir -p "$report_dir" || cmfail "Failed to create report directory: $report_dir"

echo -e "\e[34m======= LOG4J REPORT =======\e[0m"
parse-nessus-xml.py -l "${filtered_scans[@]}" -o "$report_dir"

echo -e "\e[34m======= DAEMON REPORT =======\e[0m"
parse-nessus-xml.py -d "${filtered_scans[@]}" -o "$report_dir"

echo -e "\e[34m======= SUMMARY FOR CONMON =======\e[0m"
parse-nessus-xml.py -s "${filtered_scans[@]}" -o "$report_dir"

echo -e "\e[34m======= CSV REPORT =======\e[0m"
parse-nessus-xml.py -c "${filtered_scans[@]}" -o "$report_dir"

echo -e "\e[32mAll reports have been generated and saved to $report_dir\e[0m"
}

# Generate Daemon Report Separately
nessus_daemons() {
collect_nessus_scans
collect_nessus_scans || return 1

if [[ ${#nessus_scans[@]} -eq 0 ]]; then
echo "No Nessus scan files found. Please ensure the files are in the MonthDir."
echo -e "\e[31mNo Nessus scan files found. Please ensure the files are in the MonthDir.\e[0m"
return 1
fi

# Filter files for Production and Tooling scans
local filtered_scans=()
for file in "${nessus_scans[@]}"; do
if [[ "$(basename "$file")" =~ ^(Production|Tooling).*\.nessus$ ]]; then
Expand All @@ -99,78 +118,94 @@ nessus_daemons() {
done

if [[ ${#filtered_scans[@]} -eq 0 ]]; then
echo "No Production or Tooling Nessus scan files found."
echo -e "\e[31mNo Production or Tooling Nessus scan files found.\e[0m"
return 1
fi

parse-nessus-xml.py -d "${filtered_scans[@]}"
local report_dir="$CMROOT/$CMYEAR/$CMMO/reports"
mkdir -p "$report_dir" || cmfail "Failed to create report directory: $report_dir"

echo -e "\e[34m======= DAEMON REPORT =======\e[0m"
parse-nessus-xml.py -d "${filtered_scans[@]}" -o "$report_dir"

echo -e "\e[32mDaemon report has been generated and saved to $report_dir/daemon_report.txt\e[0m"
}

# Generate CSV Report Separately
nessus_csv() {
if [[ -z "$CMMO" ]]; then
cmfail "CMMO is not set. Please run setup_dirs YYYY MM DD"
return 1
fi

collect_nessus_scans
collect_nessus_scans || return 1

if [[ ${#nessus_scans[@]} -eq 0 ]]; then
echo "No Nessus scan files found. Please ensure the files are in the MonthDir."
echo -e "\e[31mNo Nessus scan files found. Please ensure the files are in the MonthDir.\e[0m"
return 1
fi

# Process all Nessus scans for the CSV
local this="$CMROOT/$CMYEAR/$CMMO.nessus.csv"
parse-nessus-xml.py -m 9 -c "${nessus_scans[@]}" 2>/dev/null | tail -n +2 > "$this"
echo "$this ready"
local report_dir="$CMROOT/$CMYEAR/$CMMO/reports"
mkdir -p "$report_dir" || cmfail "Failed to create report directory: $report_dir"

parse-nessus-xml.py -c "${nessus_scans[@]}" -o "$report_dir"

echo -e "\e[32mCSV report has been generated and saved to $report_dir\e[0m"
}

# Prepare Nessus Summary Report
prep_nessus() {
set -x
if [[ -z "$CMMO" ]]; then
cmfail "CMMO is not set. Please run setup_dirs YYYY MM DD"
return 1
fi

collect_nessus_scans
collect_nessus_scans || return 1

if [[ ${#nessus_scans[@]} -eq 0 ]]; then
echo "No Nessus scan files found. Please ensure the files are in the MonthDir."
echo -e "\e[31mNo Nessus scan files found. Please ensure the files are in the MonthDir.\e[0m"
return 1
fi

local this="$CMROOT/$CMYEAR/$CMMO.nessus_summary.txt"
local last
local report_dir="$CMROOT/$CMYEAR/$CMMO/reports"
mkdir -p "$report_dir" || cmfail "Failed to create report directory: $report_dir"

local this_summary="$report_dir/${CMMO}_nessus_summary.txt"
local last_summary
if [[ "$CMMO" == "01" ]]; then
local last_mo="12"
local last_yr=$(( CMYEAR - 1 ))
last="$CMROOT/$last_yr/$last_mo.nessus_summary.txt"
last_summary="$CMROOT/$last_yr/$last_mo/reports/${last_mo}_nessus_summary.txt"
else
local this_mo="${CMMO#0}"
local last_mo
printf -v last_mo "%02d" $(( this_mo - 1 ))
last="$CMROOT/$CMYEAR/$last_mo.nessus_summary.txt"
last_summary="$CMROOT/$CMYEAR/$last_mo/reports/${last_mo}_nessus_summary.txt"
fi

# Process all Nessus scans for the summary
parse-nessus-xml.py -m 9 -s "${nessus_scans[@]}" |
grep -Ev '(SUMMARY|CSV)' | grep -v '^33851,' | # 33851 is unmanaged daemons
grep -E '.' | sed 's/\t/../' > "$this"
# Generate current summary report using parse-nessus-xml.py
parse-nessus-xml.py -s "${nessus_scans[@]}" -o "$report_dir"

local work="$CMROOT/$CMYEAR/$CMMO.nessus_work.txt"
local work="$report_dir/${CMMO}_nessus_work.txt"
{
echo "LAST MONTH (fixed)"
echo " THIS MONTH (new)"
echo " BOTH (persisting)"
if [[ -f "$last" ]]; then
comm -3 "$last" "$this"
if [[ -f "$last_summary" ]]; then
# Compare this month's and last month's summaries
comm -3 <(sort "$last_summary") <(sort "$this_summary")
else
echo "No previous month's summary available."
cat "$this"
cat "$this_summary"
fi
} > "$work"

set +x
echo "$work ready"
echo -e "\e[32mNessus summary work file is ready at $work\e[0m"
}

# Prepare ZAP Summary Report
prep_zap() {
if [[ -z "$CMMO" ]]; then
cmfail "CMMO is not set. Please run setup_dirs YYYY MM DD"
Expand All @@ -180,26 +215,68 @@ prep_zap() {
cmfail "Year rollover not yet implemented"
return 1
fi
local this="$CMROOT/$CMYEAR/$CMMO.zap_summary.txt"
local report_dir="$CMROOT/$CMYEAR/$CMMO/reports"
mkdir -p "$report_dir" || cmfail "Failed to create report directory: $report_dir"

local this_summary="$report_dir/${CMMO}_zap_summary.txt"
local this_mo="${CMMO#0}"
local last_mo
printf -v last_mo "%02d" $(( this_mo - 1 ))
local last="$CMROOT/$CMYEAR/$last_mo.zap_summary.txt"
local last_summary="$CMROOT/$CMYEAR/$last_mo/reports/${last_mo}_zap_summary.txt"

# Generate current ZAP summary
parse-owasp-zap-xml.py "$MonthDir"/*-ZAP-*.xml |
sed 's/\t/../' | uniq > "$this"
sed 's/\t/../' | uniq > "$this_summary"

local work="$CMROOT/$CMYEAR/$CMMO.zap_work.txt"
local work="$report_dir/${CMMO}_zap_work.txt"
{
echo "LAST MONTH (fixed)"
echo " THIS MONTH (new)"
echo " BOTH (persisting)"
if [[ -f "$last" ]]; then
comm -3 "$last" "$this"
if [[ -f "$last_summary" ]]; then
comm -3 <(sort "$last_summary") <(sort "$this_summary")
else
echo "No previous month's summary available."
cat "$this"
echo "No previous month's ZAP summary available."
cat "$this_summary"
fi
} > "$work"
echo "$work ready"
echo -e "\e[32mZAP summary work file is ready at $work\e[0m"
}

# Display usage information
usage() {
echo "Usage: $0 <command> [arguments]"
echo "Commands:"
echo " setup_dirs YYYY MM DD Set up directories for the specified date."
echo " nessus_log4j Generate Log4J, Daemons, Summary, and CSV reports."
echo " nessus_daemons Generate Daemons report."
echo " nessus_csv Generate CSV report."
echo " prep_nessus Prepare Nessus summary report."
echo " prep_zap Prepare ZAP summary report."
exit 1
}

# Main script execution
case "$1" in
setup_dirs)
setup_dirs "$2" "$3" "$4" || exit 1
;;
nessus_log4j)
nessus_log4j || exit 1
;;
nessus_daemons)
nessus_daemons || exit 1
;;
nessus_csv)
nessus_csv || exit 1
;;
prep_nessus)
prep_nessus || exit 1
;;
prep_zap)
prep_zap || exit 1
;;
*)
usage
;;
esac

0 comments on commit 63bd468

Please sign in to comment.