Skip to main content

Tools to control a GSM/GVM over GMP or OSP

Project description

Greenbone Logo

Greenbone Vulnerability Management Tools

GitHub releases PyPI release code test coverage Build and test

The Greenbone Vulnerability Management Tools gvm-tools are a collection of tools that help with remote controlling a Greenbone Enterprise Appliance and Greenbone Community Edition installations. The tools aid in accessing the communication protocols GMP (Greenbone Management Protocol) and OSP (Open Scanner Protocol).

This module is comprised of interactive and non-interactive clients. The programming language Python is supported directly for interactive scripting. But it is also possible to issue remote GMP/OSP commands without programming in Python.

Table of Contents

Documentation

The documentation for gvm-tools can be found at https://greenbone.github.io/gvm-tools/. Please refer to the documentation for more details as this README just gives a short overview.

Installation

See the documentation for all supported installation options.

Version

Please consider to always use the newest version of gvm-tools and python-gvm. We frequently update this projects to add features and keep them free from bugs. This is why installing gvm-tools using pip is recommended.

To use gvm-tools with an old GMP version (7, 8, 9) you must use a release version that is <21.06, combined with an python-gvm version <21.05. In the 21.06 release the support of these older versions has been dropped.

Requirements

Python 3.7 and later is supported.

Install using pip

You can install the latest stable release of gvm-tools from the Python Package Index using pip:

python3 -m pip install --user gvm-tools

Usage

There are several clients to communicate via GMP/OSP.

All clients have the ability to build a connection in various ways:

  • Unix Socket
  • TLS Connection
  • SSH Connection

gvm-cli

This tool sends plain GMP/OSP commands and prints the result to the standard output.

Examples

Return the current protocol version used by the server:

gvm-cli socket --xml "<get_version/>"

Return all tasks visible to the GMP user with the provided credentials:

gvm-cli --gmp-username foo --gmp-password bar socket --xml "<get_tasks/>"

Read a file with GMP commands and return the result:

gvm-cli --gmp-username foo --gmp-password bar socket myfile.xml

Note that gvm-cli will by default print an error message and exit with a non-zero exit code when a command is rejected by the server. If this kind of error handling is not desired, the unparsed XML response can be requested using the --raw parameter:

gvm-cli socket --raw --xml "<authenticate/>"

gvm-script

This tool has a lot more features than the simple gvm-cli client. You have the possibility to create your own custom gmp or osp scripts with commands from the python-gvm library and from Python 3 itself.

Example script

# Retrieve current GMP version
version = gmp.get_version()

# Prints the XML in beautiful form
from gvmtools.helper import pretty_print
pretty_print(version)

# Retrieve all tasks
tasks = gmp.get_tasks()

# Get names of tasks
task_names = tasks.xpath('task/name/text()')
pretty_print(task_names)

More example scripts

There is a growing collection of gmp-scripts in the "scripts/" folder. Some of them might be exactly what you need and all of them help writing your own gmp scripts.

gvm-pyshell

This tool is for running gmp or osp scripts interactively. It provides the same API as gvm-script using the python-gvm library.

Example program use

Connect with given credentials via a unix domain socket and open an interactive shell:

gvm-pyshell --gmp-username user --gmp-password pass socket

Connect through SSH connection and open the interactive shell:

gvm-pyshell --hostname 127.0.0.1 ssh

Support

For any question on the usage of gvm-tools or gmp scripts please use the Greenbone Community Portal. If you found a problem with the software, please create an issue on GitHub.

Maintainer

This project is maintained by Greenbone AG.

Contributing

Your contributions are highly appreciated. Please create a pull request on GitHub. For bigger changes, please discuss it first in the issues.

For development you should use poetry to keep you python packages separated in different environments. First install poetry via pip

python3 -m pip install --user poetry

Afterwards run

poetry install

in the checkout directory of gvm-tools (the directory containing the pyproject.toml file) to install all dependencies including the packages only required for development.

Afterwards active the git hooks for auto-formatting and linting via autohooks.

poetry run autohooks activate --force

License

Copyright (C) 2017-2022 Greenbone AG

Licensed under the GNU General Public License v3.0 or later.

Project details


Download files

Download the file for your platform. If you're not sure which to choose, learn more about installing packages.

Source Distribution

gvm_tools-23.4.0.tar.gz (99.6 kB view details)

Uploaded Source

Built Distribution

gvm_tools-23.4.0-py3-none-any.whl (30.0 kB view details)

Uploaded Python 3

File details

Details for the file gvm_tools-23.4.0.tar.gz.

File metadata

  • Download URL: gvm_tools-23.4.0.tar.gz
  • Upload date:
  • Size: 99.6 kB
  • Tags: Source
  • Uploaded using Trusted Publishing? No
  • Uploaded via: poetry/1.4.2 CPython/3.10.11 Linux/5.15.0-1035-azure

File hashes

Hashes for gvm_tools-23.4.0.tar.gz
Algorithm Hash digest
SHA256 af349fc347d61d583f7d36d16fc9db97dc46d82b2dcc92c20674e7c339b840ca
MD5 64a183d4e6dee26b44368c4bc6732a29
BLAKE2b-256 adbec94477dbe66be01d0f06b365392430f159a28574663bf4d1037a76d6e410

See more details on using hashes here.

File details

Details for the file gvm_tools-23.4.0-py3-none-any.whl.

File metadata

  • Download URL: gvm_tools-23.4.0-py3-none-any.whl
  • Upload date:
  • Size: 30.0 kB
  • Tags: Python 3
  • Uploaded using Trusted Publishing? No
  • Uploaded via: poetry/1.4.2 CPython/3.10.11 Linux/5.15.0-1035-azure

File hashes

Hashes for gvm_tools-23.4.0-py3-none-any.whl
Algorithm Hash digest
SHA256 5c487a5b24920abddc28b3abf50b182ad62f5a589439835199d099000941ce78
MD5 101865d00a71aadc8bfed90e17c1b07b
BLAKE2b-256 5e7368c01cbd988273b9f8d006ba78f54d09908a81e7457f8f765d9582d65346

See more details on using hashes here.

Supported by

AWS AWS Cloud computing and Security Sponsor Datadog Datadog Monitoring Fastly Fastly CDN Google Google Download Analytics Microsoft Microsoft PSF Sponsor Pingdom Pingdom Monitoring Sentry Sentry Error logging StatusPage StatusPage Status page