Add additional documtation and examples

J12934 · jorgestiga · nigthknight · J12934 · commit de441e5b7a90 · 2020-05-18T16:08:47.000+02:00
Co-authored-by: Jorge Estigarribia &lt;jorgestiga@hotmail.com&gt;
Co-authored-by: Yannik Fuhrmeister &lt;12710254+fuhrmeistery@users.noreply.github.com&gt;
diff --git a/integrations/nmap/examples/local-network/findings.yaml b/integrations/nmap/examples/local-network/findings.yaml
@@ -0,0 +1,191 @@
+[
+  {
+    "name": "Host: fritz.box",
+    "category": "Host",
+    "description": "Found a host",
+    "location": "fritz.box",
+    "severity": "INFORMATIONAL",
+    "osi_layer": "NETWORK",
+    "attributes": {
+      "ip_address": "192.168.178.1",
+      "hostname": "fritz.box",
+      "operating_system": null
+    },
+    "id": "e0752104-b144-469c-92b7-1fdbc8fe7bd7"
+  },
+  {
+    "name": "domain",
+    "description": "Port 53 is open using tcp protocol.",
+    "category": "Open Port",
+    "location": "tcp://192.168.178.1:53",
+    "osi_layer": "NETWORK",
+    "severity": "INFORMATIONAL",
+    "attributes": {
+      "port": 53,
+      "state": "open",
+      "ip_address": "192.168.178.1",
+      "mac_address": null,
+      "protocol": "tcp",
+      "hostname": "fritz.box",
+      "method": "table",
+      "operating_system": null,
+      "service": "domain",
+      "serviceProduct": null,
+      "serviceVersion": null,
+      "scripts": null
+    },
+    "id": "fc3477a1-f939-4082-87da-cb9ecd839ba4"
+  },
+  {
+    "name": "http",
+    "description": "Port 80 is open using tcp protocol.",
+    "category": "Open Port",
+    "location": "tcp://192.168.178.1:80",
+    "osi_layer": "NETWORK",
+    "severity": "INFORMATIONAL",
+    "attributes": {
+      "port": 80,
+      "state": "open",
+      "ip_address": "192.168.178.1",
+      "mac_address": null,
+      "protocol": "tcp",
+      "hostname": "fritz.box",
+      "method": "table",
+      "operating_system": null,
+      "service": "http",
+      "serviceProduct": null,
+      "serviceVersion": null,
+      "scripts": null
+    },
+    "id": "e7a47bc6-4a14-4e94-b3c2-04e8ea6bde5e"
+  },
+  {
+    "name": "https",
+    "description": "Port 443 is open using tcp protocol.",
+    "category": "Open Port",
+    "location": "tcp://192.168.178.1:443",
+    "osi_layer": "NETWORK",
+    "severity": "INFORMATIONAL",
+    "attributes": {
+      "port": 443,
+      "state": "open",
+      "ip_address": "192.168.178.1",
+      "mac_address": null,
+      "protocol": "tcp",
+      "hostname": "fritz.box",
+      "method": "table",
+      "operating_system": null,
+      "service": "https",
+      "serviceProduct": null,
+      "serviceVersion": null,
+      "scripts": null
+    },
+    "id": "a7a12bb6-bb33-469e-9f30-2e91b280ffcd"
+  },
+  {
+    "name": "sip",
+    "description": "Port 5060 is open using tcp protocol.",
+    "category": "Open Port",
+    "location": "tcp://192.168.178.1:5060",
+    "osi_layer": "NETWORK",
+    "severity": "INFORMATIONAL",
+    "attributes": {
+      "port": 5060,
+      "state": "open",
+      "ip_address": "192.168.178.1",
+      "mac_address": null,
+      "protocol": "tcp",
+      "hostname": "fritz.box",
+      "method": "table",
+      "operating_system": null,
+      "service": "sip",
+      "serviceProduct": null,
+      "serviceVersion": null,
+      "scripts": null
+    },
+    "id": "ebf2f79e-415c-4837-8a68-d60070b1befa"
+  },
+  {
+    "name": "unknown",
+    "description": "Port 8089 is open using tcp protocol.",
+    "category": "Open Port",
+    "location": "tcp://192.168.178.1:8089",
+    "osi_layer": "NETWORK",
+    "severity": "INFORMATIONAL",
+    "attributes": {
+      "port": 8089,
+      "state": "open",
+      "ip_address": "192.168.178.1",
+      "mac_address": null,
+      "protocol": "tcp",
+      "hostname": "fritz.box",
+      "method": "table",
+      "operating_system": null,
+      "service": "unknown",
+      "serviceProduct": null,
+      "serviceVersion": null,
+      "scripts": null
+    },
+    "id": "cf956977-0aa7-4d90-b993-37e8b35b2265"
+  },
+  {
+    "name": "intermapper",
+    "description": "Port 8181 is open using tcp protocol.",
+    "category": "Open Port",
+    "location": "tcp://192.168.178.1:8181",
+    "osi_layer": "NETWORK",
+    "severity": "INFORMATIONAL",
+    "attributes": {
+      "port": 8181,
+      "state": "open",
+      "ip_address": "192.168.178.1",
+      "mac_address": null,
+      "protocol": "tcp",
+      "hostname": "fritz.box",
+      "method": "table",
+      "operating_system": null,
+      "service": "intermapper",
+      "serviceProduct": null,
+      "serviceVersion": null,
+      "scripts": null
+    },
+    "id": "c3c1f244-1961-4194-8b91-5d117907b854"
+  },
+  {
+    "name": "Host: foobars-iPhone.fritz.box",
+    "category": "Host",
+    "description": "Found a host",
+    "location": "foobars-iPhone.fritz.box",
+    "severity": "INFORMATIONAL",
+    "osi_layer": "NETWORK",
+    "attributes": {
+      "ip_address": "192.168.178.21",
+      "hostname": "foobars-iPhone.fritz.box",
+      "operating_system": null
+    },
+    "id": "53eca5bd-cf96-4aaf-a6ce-55a4ff84a4b3"
+  },
+  {
+    "name": "iphone-sync",
+    "description": "Port 62078 is open using tcp protocol.",
+    "category": "Open Port",
+    "location": "tcp://192.168.178.26:62078",
+    "osi_layer": "NETWORK",
+    "severity": "INFORMATIONAL",
+    "attributes": {
+      "port": 62078,
+      "state": "open",
+      "ip_address": "192.168.178.21",
+      "mac_address": null,
+      "protocol": "tcp",
+      "hostname": "foobars-iPhone.fritz.box",
+      "method": "table",
+      "operating_system": null,
+      "service": "iphone-sync",
+      "serviceProduct": null,
+      "serviceVersion": null,
+      "scripts": null
+    },
+    "id": "23687489-b52a-4fd9-8bae-7a04842b2183"
+  }
+]
diff --git a/integrations/nmap/examples/local-network/scan.yaml b/integrations/nmap/examples/local-network/scan.yaml
@@ -5,4 +5,5 @@ metadata:
 spec:
   scanType: "nmap"
   parameters:
-    - 192.168.0.0/24
+    # Actual IP will depend on you network config. 🤷‍
+    - 192.168.178.0/24
diff --git a/integrations/nmap/examples/localhost/findings.yaml b/integrations/nmap/examples/localhost/findings.yaml
@@ -0,0 +1,16 @@
+[
+  {
+    "name": "Host: localhost",
+    "category": "Host",
+    "description": "Found a host",
+    "location": "localhost",
+    "severity": "INFORMATIONAL",
+    "osi_layer": "NETWORK",
+    "attributes": {
+      "ip_address": "127.0.0.1",
+      "hostname": "localhost",
+      "operating_system": null
+    },
+    "id": "9dced98c-eab8-4918-9f2d-ffb54df8436b"
+  }
+]
diff --git a/integrations/nmap/examples/scan.nmap.org/findings.yaml b/integrations/nmap/examples/scan.nmap.org/findings.yaml
@@ -0,0 +1,177 @@
+[
+  {
+    "name": "ssh",
+    "description": "Port 22 is open using tcp protocol.",
+    "category": "Open Port",
+    "location": "tcp://45.33.32.156:22",
+    "osi_layer": "NETWORK",
+    "severity": "INFORMATIONAL",
+    "attributes": {
+      "port": 22,
+      "state": "open",
+      "ip_address": "45.33.32.156",
+      "mac_address": null,
+      "protocol": "tcp",
+      "hostname": "scanme.nmap.org",
+      "method": "table",
+      "operating_system": null,
+      "service": "ssh",
+      "serviceProduct": null,
+      "serviceVersion": null,
+      "scripts": null
+    },
+    "id": "0903c2b6-b3c3-4fb3-9661-3ce995044fdd"
+  },
+  {
+    "name": "http",
+    "description": "Port 80 is open using tcp protocol.",
+    "category": "Open Port",
+    "location": "tcp://45.33.32.156:80",
+    "osi_layer": "NETWORK",
+    "severity": "INFORMATIONAL",
+    "attributes": {
+      "port": 80,
+      "state": "open",
+      "ip_address": "45.33.32.156",
+      "mac_address": null,
+      "protocol": "tcp",
+      "hostname": "scanme.nmap.org",
+      "method": "table",
+      "operating_system": null,
+      "service": "http",
+      "serviceProduct": null,
+      "serviceVersion": null,
+      "scripts": null
+    },
+    "id": "6235f66d-a851-4e24-8367-6fd528f71795"
+  },
+  {
+    "name": "msrpc",
+    "description": "Port 135 is filtered using tcp protocol.",
+    "category": "Open Port",
+    "location": "tcp://45.33.32.156:135",
+    "osi_layer": "NETWORK",
+    "severity": "INFORMATIONAL",
+    "attributes": {
+      "port": 135,
+      "state": "filtered",
+      "ip_address": "45.33.32.156",
+      "mac_address": null,
+      "protocol": "tcp",
+      "hostname": "scanme.nmap.org",
+      "method": "table",
+      "operating_system": null,
+      "service": "msrpc",
+      "serviceProduct": null,
+      "serviceVersion": null,
+      "scripts": null
+    },
+    "id": "831cd5a2-0860-4f11-9727-771f111a3538"
+  },
+  {
+    "name": "netbios-ssn",
+    "description": "Port 139 is filtered using tcp protocol.",
+    "category": "Open Port",
+    "location": "tcp://45.33.32.156:139",
+    "osi_layer": "NETWORK",
+    "severity": "INFORMATIONAL",
+    "attributes": {
+      "port": 139,
+      "state": "filtered",
+      "ip_address": "45.33.32.156",
+      "mac_address": null,
+      "protocol": "tcp",
+      "hostname": "scanme.nmap.org",
+      "method": "table",
+      "operating_system": null,
+      "service": "netbios-ssn",
+      "serviceProduct": null,
+      "serviceVersion": null,
+      "scripts": null
+    },
+    "id": "eb4cbbda-c303-42c8-851f-6b3759713f85"
+  },
+  {
+    "name": "microsoft-ds",
+    "description": "Port 445 is filtered using tcp protocol.",
+    "category": "Open Port",
+    "location": "tcp://45.33.32.156:445",
+    "osi_layer": "NETWORK",
+    "severity": "INFORMATIONAL",
+    "attributes": {
+      "port": 445,
+      "state": "filtered",
+      "ip_address": "45.33.32.156",
+      "mac_address": null,
+      "protocol": "tcp",
+      "hostname": "scanme.nmap.org",
+      "method": "table",
+      "operating_system": null,
+      "service": "microsoft-ds",
+      "serviceProduct": null,
+      "serviceVersion": null,
+      "scripts": null
+    },
+    "id": "cee96358-93ea-4b1b-ab69-1bc8220015e6"
+  },
+  {
+    "name": "nping-echo",
+    "description": "Port 9929 is open using tcp protocol.",
+    "category": "Open Port",
+    "location": "tcp://45.33.32.156:9929",
+    "osi_layer": "NETWORK",
+    "severity": "INFORMATIONAL",
+    "attributes": {
+      "port": 9929,
+      "state": "open",
+      "ip_address": "45.33.32.156",
+      "mac_address": null,
+      "protocol": "tcp",
+      "hostname": "scanme.nmap.org",
+      "method": "table",
+      "operating_system": null,
+      "service": "nping-echo",
+      "serviceProduct": null,
+      "serviceVersion": null,
+      "scripts": null
+    },
+    "id": "4720cb35-87e3-4346-ab63-6434e1384efe"
+  },
+  {
+    "name": "Elite",
+    "description": "Port 31337 is open using tcp protocol.",
+    "category": "Open Port",
+    "location": "tcp://45.33.32.156:31337",
+    "osi_layer": "NETWORK",
+    "severity": "INFORMATIONAL",
+    "attributes": {
+      "port": 31337,
+      "state": "open",
+      "ip_address": "45.33.32.156",
+      "mac_address": null,
+      "protocol": "tcp",
+      "hostname": "scanme.nmap.org",
+      "method": "table",
+      "operating_system": null,
+      "service": "Elite",
+      "serviceProduct": null,
+      "serviceVersion": null,
+      "scripts": null
+    },
+    "id": "1ceb1c93-e77f-41dc-a3fc-b1d04cec6a5e"
+  },
+  {
+    "name": "Host: scanme.nmap.org",
+    "category": "Host",
+    "description": "Found a host",
+    "location": "scanme.nmap.org",
+    "severity": "INFORMATIONAL",
+    "osi_layer": "NETWORK",
+    "attributes": {
+      "ip_address": "45.33.32.156",
+      "hostname": "scanme.nmap.org",
+      "operating_system": null
+    },
+    "id": "997e572f-13af-483a-aee6-6ce05e931daf"
+  }
+]
diff --git a/integrations/nmap/readme.adoc b/integrations/nmap/readme.adoc
diff --git a/integrations/nmap/readme.md b/integrations/nmap/readme.md
