Fork: 0
0xRoM / DirtyScripts
Transfer to URL with SHA Find file
Newer
Older
DirtyScripts / ReportToolz / repgen.php
root on 13 May 2020 9 KB minor fixes and initial floss script
Raw Blame History 
  1. #!/usr/bin/php
  2. <?php
  3. //error_reporting(0);
  4. include('config.php');
  5.  
  6. /***
  7.  * Main program - Don't edit below
  8.  */
  9. echo "_____ _____ _____ Gen\n||_// ||==  ||_// \n|| \\  ||___ ||    \n\n";
  10.  
  11. foreach (glob("classes/*.php") as $filename)
  12.     include $filename;
  13.  
  14. $definitions = new \Clapp\CommandLineArgumentDefinition(
  15.     array(
  16.         "help|h"            => "Shows help message",
  17.         "path|p=s"          => "/path/to/configs/", // should contain config.json and all vuln.json files
  18.     )
  19. );
  20.  
  21. $filter = new \Clapp\CommandArgumentFilter($definitions, $argv);
  22.  
  23. if ($filter->getParam('h') === true || $argc < 2) {
  24.     fwrite(STDERR, $definitions->getUsage());
  25.     exit(0);
  26. } 
  27.  
  28. // see if doc exists 
  29. if ($filter->getParam("path") == false)
  30. 	die("[-] no path set\n");
  31.  
  32. echo "[!] path: ".$filter->getParam("path")."\n";
  33. if(!is_dir($filter->getParam("path")))
  34. 	die("[-] no such folder! \n");
  35.  
  36. //get config file
  37. $config = json_decode(file_get_contents($filter->getParam("path")."config.conf")); 
  38.  
  39. // extract doc and get contents
  40. $rand = uniqid();
  41. mkdir("/tmp/$rand");
  42. if(unzipFolder($template, "/tmp/$rand/")) {
  43.     $source = file_get_contents("/tmp/$rand/content.xml");
  44.     echo "[+] doc extracted\n";
  45. } else {
  46. 	die("[-] unable to extract doc\n");
  47. }
  48. $source = file_get_contents("/tmp/$rand/content.xml");
  49. 	
  50. // add CHECK section into report if needed
  51. if(isset($config->checkRef) && trim($config->checkRef) <> ""){
  52.     $check_img = '<draw:frame draw:style-name="fr9" draw:name="FPCheckLogo" text:anchor-type="frame" svg:x="0cm" svg:y="5.879cm" svg:width="6.83cm" svg:height="2.628cm" draw:z-index="40">
  53.             <draw:image xlink:href="Pictures/10000000000004A3000001C98E2CC6AE1D6F811E.jpg" xlink:type="simple" xlink:show="embed" xlink:actuate="onLoad" loext:mime-type="image/jpeg"/>
  54.         </draw:frame>';
  55.     $check_section = '<text:p text:style-name="P26"/>
  56.         <text:p text:style-name="P26"/>
  57.         <text:p text:style-name="P26"/>
  58.         <text:p text:style-name="P26"/>
  59.         <text:p text:style-name="P26">
  60.             CHECK Ref: {checkRef}
  61.         </text:p>';
  62.     $source = str_replace('{check_img}', $check_img, $source);
  63.     $source = str_replace('{check_section}', $check_section, $source);
  64.     echo "[+] Added CHECK section\n";
  65. }else{
  66.     $check_section = '<text:p text:style-name="P26">
  67.             <text:bookmark-start text:name="__RefHeading___Toc72207_536000782"/>
  68.             <text:bookmark-end text:name="__RefHeading___Toc72207_536000782"/>
  69.         </text:p>';
  70.     $source = str_replace('{check_img}', "", $source);
  71.     $source = str_replace('{check_section}', $check_section, $source);
  72. }
  73.  
  74. // add config into template
  75. foreach ($config as $key => $value) {
  76. 	$source = str_replace('{'.$key.'}', $value, $source);
  77. }
  78. file_put_contents("/tmp/$rand/content.xml", $source);
  79. echo "[+] added config values\n";
  80.  
  81. // get all vulns
  82. $vuln = array();
  83. $files = glob($filter->getParam("path")."*.json");
  84. foreach($files as $finding){
  85.     $vuln[] = $found = json_decode(file_get_contents($finding), true);
  86. }
  87.  
  88. echo "[+] sorting vulns by CVSS\n";
  89. usort($vuln, 'order_by_cvss');
  90. function order_by_cvss($a, $b) {
  91.     return $b['cvss_score'] > $a['cvss_score'] ? 1 : -1;
  92. }
  93.  
  94. if(empty($vuln))
  95.     echo "[-] no vulns found!\n";
  96.  
  97. // create vulns for odf
  98. $templateOrig = file_get_contents($vulnTemplate);
  99. $Serious = $High = $Medium = $Low = $Info = ""; 
  100. foreach ($vuln as $singlevuln) {
  101. 	$templateSource = $templateOrig;
  102. 	$togo = $singlevuln['risk'];
  103. 	foreach ($singlevuln as $key => $value){
  104.         $value = str_replace("<", "&lt;", $value);
  105.         $value = str_replace(">", "&gt;", $value);
  106. 		$value = str_replace("\n", "</text:p><text:p text:style-name=\"Text_20_body\">", $value);
  107. 		$templateSource = str_replace('{'.$key.'}', $value, $templateSource);
  108.         if($key == "risk"){
  109.             switch ($togo) {
  110.                 case 'Serious':
  111.                     $templateSource = str_replace('{risk_img}', '100000000000001C0000001C2B2344F988E3C014.png', $templateSource);
  112.                     break;
  113.                 case 'High':
  114.                     $templateSource = str_replace('{risk_img}', '100000000000001C0000001C478E326DAB1B0673.gif', $templateSource);
  115.                     break;
  116.                 case 'Medium':
  117.                     $templateSource = str_replace('{risk_img}', '100000000000001C0000001C08AD11DB0A5D02CD.png', $templateSource);
  118.                     break;
  119.                 case 'Low':
  120.                     $templateSource = str_replace('{risk_img}', '100000000000001C0000001C6CC3BB57AA64608B.gif', $templateSource);
  121.                     break;
  122.                 case 'Info':
  123.                     $templateSource = str_replace('{risk_img}', '100000000000001C0000001C7365C375D1750C0F.gif', $templateSource);
  124.                     break;
  125.             }
  126.         }
  127. 	}
  128.     
  129. 	$$togo .= $templateSource;
  130. 	echo "[+] added $togo: ".$singlevuln['title']."\n";
  131. }
  132.  
  133. // squash vulns into one bbig xml
  134. $value = "";
  135. if(!empty($Serious)){
  136. 	$value .= '<text:list text:continue-numbering="true" text:style-name="Outline">
  137.     <text:list-item>
  138.         <text:list>
  139.             <text:list-item>
  140.                 <text:h text:outline-level="2">Serious Risk Vulnerabilities</text:h>
  141.             </text:list-item>
  142.         </text:list>
  143.     </text:list-item>
  144. </text:list>';
  145. 	$value .= $Serious;
  146. }
  147.  
  148. if(!empty($High)){
  149. 	$value .= '<text:list text:continue-numbering="true" text:style-name="Outline">
  150.     <text:list-item>
  151.         <text:list>
  152.             <text:list-item>
  153.                 <text:h text:outline-level="2">High Risk Vulnerabilities</text:h>
  154.             </text:list-item>
  155.         </text:list>
  156.     </text:list-item>
  157. </text:list>';
  158. 	$value .= $High;
  159. }
  160. if(!empty($Medium)){
  161. 	$value .= '<text:list text:continue-numbering="true" text:style-name="Outline">
  162.     <text:list-item>
  163.         <text:list>
  164.             <text:list-item>
  165.                 <text:h text:outline-level="2">Medium Risk Vulnerabilities</text:h>
  166.             </text:list-item>
  167.         </text:list>
  168.     </text:list-item>
  169. </text:list>';
  170. 	$value .= $Medium;
  171. }
  172. if(!empty($Low)){
  173. 	$value .= '<text:list text:continue-numbering="true" text:style-name="Outline">
  174.     <text:list-item>
  175.         <text:list>
  176.             <text:list-item>
  177.                 <text:h text:outline-level="2">Low Risk Vulnerabilities</text:h>
  178.             </text:list-item>
  179.         </text:list>
  180.     </text:list-item>
  181. </text:list>';
  182. 	$value .= $Low;
  183. }
  184. if(!empty($Info)){
  185.     $value .= '<text:list text:continue-numbering="true" text:style-name="Outline">
  186.     <text:list-item>
  187.         <text:list>
  188.             <text:list-item>
  189.                 <text:h text:outline-level="2">Informational Risk Vulnerabilities</text:h>
  190.             </text:list-item>
  191.         </text:list>
  192.     </text:list-item>
  193. </text:list>';
  194.     $value .= $Info;
  195. }
  196. // add to template
  197. $source = file_get_contents("/tmp/$rand/content.xml");
  198. $source = str_replace('{vuln}', $value, $source);
  199. file_put_contents("/tmp/$rand/content.xml", $source);
  200.  
  201. // create report and tidying
  202. $repOutName = $config->ref.".3 ".$config->client ." ". $config->title1;
  203. zipFolder("/tmp/$rand", $filter->getParam("path").$repOutName.".odt");
  204. echo "[=] generated report: ".$filter->getParam("path").$repOutName.".odt\n";
  205. delTree("/tmp/$rand");
  206. echo "[+] temp files removed\n";
  207.  
  208. function unzipFolder($zipInputFile, $outputFolder) {
  209.     $zip = new ZipArchive;
  210.     $res = $zip->open($zipInputFile);
  211.     if ($res === true) {
  212.         $zip->extractTo($outputFolder);
  213.         $zip->close();
  214.         return true;
  215.     }
  216.     else {
  217.         return false;
  218.     }
  219. }
  220.  
  221. function XML2Array(SimpleXMLElement $parent){
  222.     $array = array();
  223.  
  224.     foreach ($parent as $name => $element) {
  225.         ($node = & $array[$name])
  226.             && (1 === count($node) ? $node = array($node) : 1)
  227.             && $node = & $node[];
  228.  
  229.         $node = $element->count() ? XML2Array($element) : trim($element);
  230.     }
  231.  
  232.     return $array;
  233. }
  234.  
  235. function delTree($dir){ 
  236.     $files = array_diff(scandir($dir), array('.', '..')); 
  237.  
  238.     foreach ($files as $file) { 
  239.         (is_dir("$dir/$file")) ? delTree("$dir/$file") : unlink("$dir/$file"); 
  240.     }
  241.  
  242.     return rmdir($dir); 
  243. } 
  244.  
  245. function zipFolder($inputFolder, $zipOutputFile) {
  246.     if (!extension_loaded('zip') || !file_exists($inputFolder)) {
  247.         return false;
  248.     }
  249.  
  250.     $zip = new ZipArchive();
  251.     if (!$zip->open($zipOutputFile, ZIPARCHIVE::CREATE)) {
  252.         return false;
  253.     }
  254.  
  255.     $inputFolder = str_replace('\\', "/", realpath($inputFolder));
  256.  
  257.     if (is_dir($inputFolder) === true) {
  258.         $files = new RecursiveIteratorIterator(new RecursiveDirectoryIterator($inputFolder), RecursiveIteratorIterator::SELF_FIRST);
  259.  
  260.         foreach ($files as $file) {
  261.             $file = str_replace('\\', "/", $file);
  262.  
  263.             if (in_array(substr($file, strrpos($file, '/')+1), array('.', '..'))) {
  264.                 continue;
  265.             }
  266.  
  267.             $file = realpath($file);
  268.  
  269.             if (is_dir($file) === true) {
  270.                 $dirName = str_replace($inputFolder."/", '', $file."/");
  271.                 $zip->addEmptyDir($dirName);
  272.             }
  273.             else if (is_file($file) === true) {
  274.                 $fileName = str_replace($inputFolder."/", '', $file);
  275.                 $zip->addFromString($fileName, file_get_contents($file));
  276.             }
  277.         }
  278.     }
  279.     else if (is_file($inputFolder) === true) {
  280.         $zip->addFromString(basename($inputFolder), file_get_contents($inputFolder));
  281.     }
  282.  
  283.     return $zip->close();
  284. }
  285.  
  286. ?>
Buy Me A Coffee