Search...

Windows file Checksums: Matches

2013-09-09T00:00:00

ID OPENVAS:136141256231096181
Type openvas
Reporter Copyright (c) 2013 Greenbone Networks GmbH
Modified 2018-07-17T00:00:00

Description

List Windows files with no checksum violation or error

                                        
                                            ###############################################################################
# OpenVAS Vulnerability Test
# $Id: policy_file_checksums_win_ok.nasl 10530 2018-07-17 14:15:42Z asteins $
#
# List Windows File with no checksum violation or error
#
# Authors:
# Christian Kuersteiner &lt;christian.kuersteiner@greenbone.net&gt;
# Thomas Rotter &lt;thomas.rotter@greenbone.net&gt;
#
# Copyright:
# Copyright (c) 2013 Greenbone Networks GmbH, http://www.greenbone.net
#
#
# This program is free software; you can redistribute it and/or modify
# it under the terms of the GNU General Public License version 2
# (or any later version), as published by the Free Software Foundation.
#
# This program is distributed in the hope that it will be useful,
# but WITHOUT ANY WARRANTY; without even the implied warranty of
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
# GNU General Public License for more details.
#
# You should have received a copy of the GNU General Public License
# along with this program; if not, write to the Free Software
# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
###############################################################################

if(description)
{
  script_oid("1.3.6.1.4.1.25623.1.0.96181");
  script_version("$Revision: 10530 $");
  script_name("Windows file Checksums: Matches");
  script_tag(name:"cvss_base", value:"0.0");
  script_tag(name:"cvss_base_vector", value:"AV:N/AC:L/Au:N/C:N/I:N/A:N");
  script_tag(name:"last_modification", value:"$Date: 2018-07-17 16:15:42 +0200 (Tue, 17 Jul 2018) $");
  script_tag(name:"creation_date", value:"2013-09-09 11:07:49 +0200 (Mon, 09 Sep 2013)");
  script_category(ACT_GATHER_INFO);
  script_family("Policy");
  script_copyright("Copyright (c) 2013 Greenbone Networks GmbH");
  script_dependencies("Policy/policy_file_checksums_win.nasl");
  script_mandatory_keys("policy/file_checksums_win/started");

  script_tag(name:"summary", value:"List Windows files with no checksum violation or error");

  script_tag(name:"qod", value:"98"); # direct authenticated file analysis is pretty reliable

  exit(0);
}

md5pass  = get_kb_list( "policy/file_checksums_win/md5_ok_list" );
sha1pass = get_kb_list( "policy/file_checksums_win/sha1_ok_list" );

if( md5pass || sha1pass ) {

  # Sort to not report changes on delta reports if just the order is different
  if( md5pass )  md5pass  = sort( md5pass );
  if( sha1pass ) sha1pass = sort( sha1pass );

  report  = 'The following file checksums match:\n\n';
  report += 'Filename|Result|Errorcode;\n';

  foreach pass( md5pass ) {
    report += pass + '\n';
  }
  foreach pass( sha1pass ) {
    report += pass + '\n';
  }
  log_message( port:0, data:report );
}

exit( 0 );

JSON Vulners Source

Initial Source

{"lastseen": "2018-07-18T19:58:49", "references": [], "pluginID": "136141256231096181", "description": "List Windows files with no checksum violation or error", "edition": 4, "reporter": "Copyright (c) 2013 Greenbone Networks GmbH", "published": "2013-09-09T00:00:00", "title": "Windows file Checksums: Matches", "type": "openvas", "enchantments": {"score": {"value": 0.1, "vector": "NONE", "modified": "2018-07-18T19:58:49", "rev": 2}, "dependencies": {"references": [], "modified": "2018-07-18T19:58:49", "rev": 2}, "vulnersScore": 0.1}, "naslFamily": "Policy", "bulletinFamily": "scanner", "cvelist": [], "modified": "2018-07-17T00:00:00", "id": "OPENVAS:136141256231096181", "href": "http://plugins.openvas.org/nasl.php?oid=136141256231096181", "viewCount": 1, "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n# $Id: policy_file_checksums_win_ok.nasl 10530 2018-07-17 14:15:42Z asteins $\n#\n# List Windows File with no checksum violation or error\n#\n# Authors:\n# Christian Kuersteiner <christian.kuersteiner@greenbone.net>\n# Thomas Rotter <thomas.rotter@greenbone.net>\n#\n# Copyright:\n# Copyright (c) 2013 Greenbone Networks GmbH, http://www.greenbone.net\n#\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.96181\");\n script_version(\"$Revision: 10530 $\");\n script_name(\"Windows file Checksums: Matches\");\n script_tag(name:\"cvss_base\", value:\"0.0\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:N/I:N/A:N\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-07-17 16:15:42 +0200 (Tue, 17 Jul 2018) $\");\n script_tag(name:\"creation_date\", value:\"2013-09-09 11:07:49 +0200 (Mon, 09 Sep 2013)\");\n script_category(ACT_GATHER_INFO);\n script_family(\"Policy\");\n script_copyright(\"Copyright (c) 2013 Greenbone Networks GmbH\");\n script_dependencies(\"Policy/policy_file_checksums_win.nasl\");\n script_mandatory_keys(\"policy/file_checksums_win/started\");\n\n script_tag(name:\"summary\", value:\"List Windows files with no checksum violation or error\");\n\n script_tag(name:\"qod\", value:\"98\"); # direct authenticated file analysis is pretty reliable\n\n exit(0);\n}\n\nmd5pass = get_kb_list( \"policy/file_checksums_win/md5_ok_list\" );\nsha1pass = get_kb_list( \"policy/file_checksums_win/sha1_ok_list\" );\n\nif( md5pass || sha1pass ) {\n\n # Sort to not report changes on delta reports if just the order is different\n if( md5pass ) md5pass = sort( md5pass );\n if( sha1pass ) sha1pass = sort( sha1pass );\n\n report = 'The following file checksums match:\\n\\n';\n report += 'Filename|Result|Errorcode;\\n';\n\n foreach pass( md5pass ) {\n report += pass + '\\n';\n }\n foreach pass( sha1pass ) {\n report += pass + '\\n';\n }\n log_message( port:0, data:report );\n}\n\nexit( 0 );\n", "cvss": {"score": 0.0, "vector": "NONE"}}