search

potatoqualitee / tentools

💙 tenable.sc / nessus / acas powershell module
BSD 3-Clause "New" or "Revised" License
39 stars 7 forks source link

notes #35

Closed potatoqualitee closed 3 years ago

potatoqualitee commented 3 years ago

moving

potatoqualitee commented 3 years ago

add new org

Invoke-WebRequest -Uri "https://securitycenter/rest/organization" `
    -Method "POST" `
    -ContentType "application/json" `
    -Body "{`"name`":`"netnerds`",`"description`":`"`",`"context`":`"`",`"status`":-1,`"createdTime`":0,`"modifiedTime`":0,`"address`":`"`",`"city`":`"`",`"state`":`"`",`"country`":`"`",`"phone`":`"`",`"fax`":`"`",`"email`":`"`",`"restrictedIPs`":`"`",`"ldaps`":[],`"lces`":[],`"repositories`":[{`"id`":3,`"name`":`"Every IP`",`"description`":`"`",`"context`":`"`",`"status`":null,`"createdTime`":null,`"modifiedTime`":1600260661,`"dataFormat`":`"IPv4`",`"type`":`"Local`",`"trendingDays`":`"30`",`"trendWithRaw`":`"true`",`"ipRange`":`"0.0.0.0/8`",`"organizations`":[],`"correlation`":[]}],`"nessusManagers`":[],`"assets`":[],`"pubSites`":[],`"ipInfoLinks`":[{`"name`":`"SANS`",`"link`":`"https://isc.sans.edu/ipinfo.html?ip=%IP%`"},{`"name`":`"ARIN`",`"link`":`"http://whois.arin.net/rest/ip/%IP%`"}],`"zoneSelection`":`"auto_only`",`"vulnScoreLow`":`"1`",`"vulnScoreMedium`":`"3`",`"vulnScoreHigh`":`"10`",`"vulnScoreCritical`":`"40`",`"zones`":[]}"

add new user

Invoke-WebRequest -Uri "https://securitycenter/rest/organization/3/securityManager" `
    -Method "POST" `
    -ContentType "application/json" `
    -Body "{`"name`":`"`",`"description`":`"`",`"context`":`"`",`"status`":-1,`"createdTime`":0,`"modifiedTime`":0,`"firstname`":`"`",`"lastname`":`"`",`"username`":`"testuser`",`"title`":`"`",`"address`":`"`",`"city`":`"`",`"state`":`"`",`"country`":`"`",`"phone`":`"`",`"email`":`"`",`"fax`":`"`",`"searchString`":`"`",`"roleID`":2,`"failedLogins`":0,`"lastLogin`":0,`"lastLoginIP`":`"`",`"locked`":`"false`",`"lastFailedLogin`":0,`"failedLoginAttempts`":0,`"responsibleAsset`":`"-1`",`"responsibleAssetID`":`"-1`",`"emailInfo`":false,`"emailPassword`":false,`"emailNotice`":`"none`",`"preferences`":[{`"name`":`"timezone`",`"tag`":`"system`",`"value`":`"America/New_York`"},{`"name`":`"cacheEnabled`",`"tag`":`"system`",`"value`":`"false`"},{`"name`":`"srDefaultTimeframe`",`"tag`":`"system`",`"value`":`"7d`"}],`"mustChangePassword`":`"false`",`"password`":`"testpassword`",`"authType`":`"tns`"}"```
potatoqualitee commented 3 years ago

add ldap and test

Invoke-WebRequest -Uri "https://securitycenter/rest/ldap/test" `
-Method "POST" `
-ContentType "application/json" `
-Body "{`"name`":`"ad.local`",`"description`":`"`",`"context`":`"`",`"status`":-1,`"createdTime`":0,`"modifiedTime`":0,`"host`":`"dc.ad.local`",`"port`":`"389`",`"encryption`":`"tls`",`"dn`":`"DC=ad,DC=local`",`"dnsField`":`"dNSHostName`",`"lowercase`":`"false`",`"timeLimit`":`"3600`",`"password`":`"MyPassword`",`"username`":`"ad\\adadmin`",`"attrEmail`":`"`",`"attrName`":`"`",`"attrPhone`":`"`",`"attrUsername`":`"`",`"searchString`":`"`",`"organizations`":[]}"

Invoke-WebRequest -Uri "https://securitycenter/rest/ldap" `
-Method "POST" `
-ContentType "application/json" `
-Body "{`"name`":`"ad.local`",`"description`":`"`",`"context`":`"`",`"status`":-1,`"createdTime`":0,`"modifiedTime`":0,`"host`":`"dc.ad.local`",`"port`":`"389`",`"encryption`":`"tls`",`"dn`":`"DC=ad,DC=local`",`"dnsField`":`"dNSHostName`",`"lowercase`":`"false`",`"timeLimit`":`"3600`",`"password`":`"MyPassword`",`"username`":`"ad\\adadmin`",`"attrEmail`":`"`",`"attrName`":`"`",`"attrPhone`":`"`",`"attrUsername`":`"`",`"searchString`":`"`",`"organizations`":[]}"
            {
                "name": "ad.local",
                "description": "",
                "context": "",
                "status": -1,
                "createdTime": 0,
                "modifiedTime": 0,
                "host": "dc.ad.local",
                "port": "389",
                "encryption": "tls",
                "dn": "DC=ad,DC=local",
                "dnsField": "dNSHostName",
                "lowercase": "false",
                "timeLimit": "3600",
                "password": "MyPassword",
                "username": "ad\\adadmin",
                "attrEmail": "",
                "attrName": "",
                "attrPhone": "",
                "attrUsername": "",
                "searchString": "",
                "organizations": [

                ]
            }
potatoqualitee commented 3 years ago

Repository

Invoke-WebRequest -Uri "https://securitycenter/rest/repository" `
-Method "POST" `
-Body "{`"name`":`"NewOne`",`"description`":`"`",`"context`":`"`",`"status`":-1,`"createdTime`":0,`"modifiedTime`":0,`"dataFormat`":`"IPv4`",`"type`":`"Local`",`"trendingDays`":`"30`",`"trendWithRaw`":`"true`",`"ipRange`":`"192.168.0.1/22, 192.168.0.2/22`",`"organizations`":[],`"correlation`":[]}"
Invoke-WebRequest -Uri "https://securitycenter/rest/repository?fields=name%2Cdescription%2Ctype%2CdataFormat%2CvulnCount%2CremoteID%2CremoteIP%2Crunning%2CenableTrending%2CdownloadFormat%2ClastSyncTime%2ClastVulnUpdate%2CcreatedTime%2CmodifiedTime%2Corganizations%2Ccorrelation%2CnessusSchedule%2CipRange%2CipCount%2CrunningNessus%2ClastGenerateNessusTime%2Crunning%2Ctransfer%2CdeviceCount%2CtypeFields"
potatoqualitee commented 3 years ago

User

Invoke-WebRequest -Uri "https://securitycenter/rest/organization/2/securityManager"

name                :
description         :
context             :
status              : -1
createdTime         : 0
modifiedTime        : 0
firstname           : Test User
lastname            :
username            : testuser1
title               :
address             :
city                :
state               :
country             :
phone               :
email               :
fax                 :
searchString        :
roleID              : 2
failedLogins        : 0
lastLogin           : 0
lastLoginIP         :
locked              : false
lastFailedLogin     : 0
failedLoginAttempts : 0
responsibleAsset    : -1
responsibleAssetID  : -1
emailInfo           : False
emailPassword       : False
emailNotice         : none
preferences         : {@{name=timezone; tag=system; value=America/New_York}, @{name=cacheEnabled; tag=system;
                      value=false}, @{name=srDefaultTimeframe; tag=system; value=7d}}
mustChangePassword  : false
password            : PasswordGoesHere
authType            : tns