misc_rbtools/classes/cve_info.rb

class CveReport
  attr_accessor :filename, :file
    # 1st way:
    # expects a hash with the following key:values # {:filename => "nvdcve-1.0-2002.json.gz",
    # :json => {"CVE_data_type"=>"CVE",
    #           "CVE_Items"= etc...etc...etc...}
    # 2nd way: 
    # a json gz compressed file of cve metadata downloaded from nvd
    # TO ADD: 1st way. 

    def initialize(filename) 
      @filename = filename 
      @file = from_file
    end

    def cve_ids
        # return a list of cve data from the given filename in an array.
        file["CVE_Items"].map do |item|
          item["cve"]["CVE_data_meta"]["ID"]
        end
    end

    def cve_id?(cve_id)
      cve_ids.include?(cve_id)
    end

    def cve(cve_id)
      find(cve_id)
    end

    def cves
      file["CVE_Items"].map do |cve|
        cve
      end
    end

    def from_file
        Zlib::GzipReader.open(filename) do |gz|
            JSON.parse(gz.read)
        end
    end

    def find(cve_id)
      result = cves.select do |cve|
        cve["cve"]["CVE_data_meta"]["ID"] == cve_id
      end
      if result.count == 1
        result.first
      else 
        "Could not find valid CVE for: #{cve}"
      end
    end

    def description(cve_id)
      cve = find(cve_id)
      cve['cve']['description']['description_data'].first['value']
    end

    def description_hash(cve_id)
      description_value = description(cve_id)
      { :cve_id => cve_id, :description => description_value }
    end

    def reference_data(cve_id)
      cve = find(cve_id)
      cve['cve']['references']['reference_data']
    end
end
added more to nvd downloader and made a cve reporter that will query it 2019-05-12 23:56:12 -05:00			`class CveReport`
added some one time import stuff to nvd downloader and have cve_info searching through gzipped files now for cve id 2019-06-12 01:20:44 -05:00			`attr_accessor :filename, :file`
			`# 1st way:`
			`# expects a hash with the following key:values # {:filename => "nvdcve-1.0-2002.json.gz",`
			`# :json => {"CVE_data_type"=>"CVE",`
			`# "CVE_Items"= etc...etc...etc...}`
			`# 2nd way:`
			`# a json gz compressed file of cve metadata downloaded from nvd`
			`# TO ADD: 1st way.`
added more to nvd downloader and made a cve reporter that will query it 2019-05-12 23:56:12 -05:00
added some one time import stuff to nvd downloader and have cve_info searching through gzipped files now for cve id 2019-06-12 01:20:44 -05:00			`def initialize(filename)`
			`@filename = filename`
			`@file = from_file`
			`end`

			`def cve_ids`
added more to nvd downloader and made a cve reporter that will query it 2019-05-12 23:56:12 -05:00			`# return a list of cve data from the given filename in an array.`
added some one time import stuff to nvd downloader and have cve_info searching through gzipped files now for cve id 2019-06-12 01:20:44 -05:00			`file["CVE_Items"].map do \|item\|`
			`item["cve"]["CVE_data_meta"]["ID"]`
			`end`
			`end`

			`def cve_id?(cve_id)`
			`cve_ids.include?(cve_id)`
			`end`

			`def cve(cve_id)`
			`find(cve_id)`
			`end`

			`def cves`
			`file["CVE_Items"].map do \|cve\|`
			`cve`
			`end`
added more to nvd downloader and made a cve reporter that will query it 2019-05-12 23:56:12 -05:00			`end`

added some one time import stuff to nvd downloader and have cve_info searching through gzipped files now for cve id 2019-06-12 01:20:44 -05:00			`def from_file`
			`Zlib::GzipReader.open(filename) do \|gz\|`
			`JSON.parse(gz.read)`
			`end`
added more to nvd downloader and made a cve reporter that will query it 2019-05-12 23:56:12 -05:00			`end`

			`def find(cve_id)`
added some more methods to parse cves 2019-06-12 21:54:14 -05:00			`result = cves.select do \|cve\|`
added some one time import stuff to nvd downloader and have cve_info searching through gzipped files now for cve id 2019-06-12 01:20:44 -05:00			`cve["cve"]["CVE_data_meta"]["ID"] == cve_id`
			`end`
added some more methods to parse cves 2019-06-12 21:54:14 -05:00			`if result.count == 1`
			`result.first`
			`else`
			`"Could not find valid CVE for: #{cve}"`
			`end`
			`end`

			`def description(cve_id)`
			`cve = find(cve_id)`
			`cve['cve']['description']['description_data'].first['value']`
			`end`

			`def description_hash(cve_id)`
			`description_value = description(cve_id)`
			`{ :cve_id => cve_id, :description => description_value }`
			`end`

			`def reference_data(cve_id)`
			`cve = find(cve_id)`
			`cve['cve']['references']['reference_data']`
starting to script out a way to download nvd data 2019-05-11 17:33:04 -05:00			`end`
big commit with lots of tools and cve data too 2019-07-22 01:49:12 -05:00			`end`