Skip to main content

Tools to speak with GVM over GMP or OSP

Project description

Greenbone Logo

Greenbone Vulnerability Management Tools

GitHub releases PyPI release Scrutinizer Code Quality code test coverage CircleCI

The Greenbone Vulnerability Management Tools or gvm-tools in short are a collection of tools that help with remote controlling a Greenbone Security Manager (GSM) appliance and its underlying Greenbone Vulnerability Manager (GVM). The tools essentially aid accessing the communication protocols GMP (Greenbone Management Protocol) and OSP (Open Scanner Protocol).

This module is comprised of interactive and non-interactive clients. The programming language Python is supported directly for interactive scripting. But it is also possible to issue remote GMP/OSP commands without programming in Python.

Table of Contents

Installation

Requirements

Python 3.5 and later is supported.

Install using pip

You can install the latest stable release of gvm-tools from the Python Package Index using pip:

pip install gvm-tools

alternatively download or clone this repository and install the latest development version:

pip install .

Usage

There are several clients to communicate via GMP/OSP.

All clients have the ability to build a connection in various ways:

* Unix Socket
* TLS Connection
* SSH Connection

gvm-cli

This little tool sends plain GMP/OSP commands and prints the result to the standard output. When the program is used without any parameters, it asks for an XML command and for the user credentials.

Example program use

Returns the current version.

gvm-cli socket --xml "<get_version/>"

Returns the current version using a TLS connection with certificates.

gvm-cli tls --hostname 192.168.0.10 --port 1234 --certfile '/tmp/certs/cert.pem' --keyfile '/tmp/certs/key.pem' --cafile '/tmp/certs/cert.pem' --xml "<get_version/>"

Return all tasks.

gvm-cli socket --xml "<commands><authenticate><credentials><username>myuser</username><password>mypass</password></credentials></authenticate><get_tasks/></commands>"

Reads a file with GMP commands and return the result.

gvm-cli socket --gmp-username foo --gmp-password bar < myfile.gmp

Note that gvm-cli will by default raise an exception when a command is rejected by the server. If this kind of error handling is not desired, the unparsed XML response can be requested using the --raw parameter:

gvm-cli socket --raw --xml "<authenticate/>"

gvm-pyshell

This tool has a lot more features than the simple gvm-cli client. You have the possibility to create your own custom scripts with commands from the python-gvm library and from python3 itself. The scripts can be pre-loaded in the program through an additional argument.

Example program use

Open script.gmp over TLS connection.

gvm-pyshell tls --hostname=127.0.0.1 script.gmp

Connect with given credentials and as unix socket. Opens an interactive shell.

gvm-pyshell socket --gmp-username=user --gmp-password=pass -i

Connect through SSH connection. Opens an interactive shell.

gvm-pyshell ssh --hostname=127.0.0.1 -i

Example script

# Retrieve current GMP version
version = gmp.get_version()

# Prints the XML in beautiful form
from gvmtools.helper import pretty_print
pretty_print(version)

# Retrieve all tasks
tasks = gmp.get_tasks()

# Get names of tasks
task_names = tasks.xpath('task/name/text()')
pretty_print(task_names)

More example scripts

There is a growing collection of gmp-scripts in the "scripts/" folder. Some of them might be exactly what you need and all of them help writing your own gmp scripts.

Support

For any question on the usage of gvm-tools or gmp scripts please use the Greenbone Community Portal. If you found a problem with the software, please create an issue on GitHub.

Maintainer

This project is maintained by Greenbone Networks GmbH.

Contributing

Your contributions are highly appreciated. Please create a pull request on GitHub. For bigger changes, please discuss it first in the issues.

For development you should use pipenv to keep you python packages separated in different environments. First install pipenv via pip

pip install --user pipenv

Afterwards run

pipenv install --dev

in the checkout directory of gvm-tools (the directory containing the Pipfile) to install all dependencies including the packages only required for development.

License

Copyright (C) 2017-2018 Greenbone Networks GmbH

Licensed under the GNU General Public License v3.0 or later.

Project details


Download files

Download the file for your platform. If you're not sure which to choose, learn more about installing packages.

Source Distribution

gvm-tools-2.0.0b1.tar.gz (31.9 kB view details)

Uploaded Source

Built Distribution

gvm_tools-2.0.0b1-py3-none-any.whl (25.3 kB view details)

Uploaded Python 3

File details

Details for the file gvm-tools-2.0.0b1.tar.gz.

File metadata

  • Download URL: gvm-tools-2.0.0b1.tar.gz
  • Upload date:
  • Size: 31.9 kB
  • Tags: Source
  • Uploaded using Trusted Publishing? No
  • Uploaded via: twine/1.12.1 pkginfo/1.4.2 requests/2.18.4 setuptools/40.5.0 requests-toolbelt/0.8.0 tqdm/4.28.1 CPython/3.6.6

File hashes

Hashes for gvm-tools-2.0.0b1.tar.gz
Algorithm Hash digest
SHA256 a7e5d6ae38fe4ccbf5457a49a8859f307af0d46659ef0c9dd753897fc9f981e8
MD5 74c0b17617f20e8c2a276cb78350f776
BLAKE2b-256 87df84d8bfb6a7f4c01a9e7fdcde3d48edf72242e422f8fd58c63e7492c7d5f4

See more details on using hashes here.

File details

Details for the file gvm_tools-2.0.0b1-py3-none-any.whl.

File metadata

  • Download URL: gvm_tools-2.0.0b1-py3-none-any.whl
  • Upload date:
  • Size: 25.3 kB
  • Tags: Python 3
  • Uploaded using Trusted Publishing? No
  • Uploaded via: twine/1.12.1 pkginfo/1.4.2 requests/2.18.4 setuptools/40.5.0 requests-toolbelt/0.8.0 tqdm/4.28.1 CPython/3.6.6

File hashes

Hashes for gvm_tools-2.0.0b1-py3-none-any.whl
Algorithm Hash digest
SHA256 5533ee2b042c74531f21de66211e6790cd937198bd27f22d51a9db887b05da2f
MD5 026dcbaa6d54cdaf580cb97a3130bdfe
BLAKE2b-256 70f0b64613f452b5b08088dba3b5913535d725b79a1ea33765a5d76238fa77fc

See more details on using hashes here.

Supported by

AWS AWS Cloud computing and Security Sponsor Datadog Datadog Monitoring Fastly Fastly CDN Google Google Download Analytics Microsoft Microsoft PSF Sponsor Pingdom Pingdom Monitoring Sentry Sentry Error logging StatusPage StatusPage Status page