Skip to content

Instantly share code, notes, and snippets.

@jbarnett-r7

jbarnett-r7/gist:1fbce76f0f722dc6125af0e07291fac0

Created July 27, 2017 16:14
Show Gist options
  • Save jbarnett-r7/1fbce76f0f722dc6125af0e07291fac0 to your computer and use it in GitHub Desktop.
Save jbarnett-r7/1fbce76f0f722dc6125af0e07291fac0 to your computer and use it in GitHub Desktop.
Download ZIP
Inspec Output 2
Raw
gistfile1.txt
Profile: tests from 7zip.rb
Version: (not specified)
Target: winrm://vagrant@http://10.6.0.135:5985/wsman:3389
 ✔ 7zip: Check 7zip
 ✔ File C:\ProgramData\chocolatey\bin\7z.exe should exist
Profile: tests from apache_struts.rb
Version: (not specified)
Target: winrm://vagrant@http://10.6.0.135:5985/wsman:3389
 ∅ apache-struts: Check if apache struts is running (3 failed)
 × File C:\Program Files\Apache Software Foundation\tomcat\apache-tomcat-8.5.12\conf\tomcat-users.xml should exist
expected File C:\Program Files\Apache Software Foundation\tomcat\apache-tomcat-8.5.12\conf\tomcat-users.xml to exist
 × File C:\Program Files\Apache Software Foundation\tomcat\apache-tomcat-8.5.12\conf\server.xml should exist
expected File C:\Program Files\Apache Software Foundation\tomcat\apache-tomcat-8.5.12\conf\server.xml to exist
 × File C:\Program Files\Apache Software Foundation\tomcat\apache-tomcat-8.5.12\webapps\struts2-rest-showcase.war should exist
expected File C:\Program Files\Apache Software Foundation\tomcat\apache-tomcat-8.5.12\webapps\struts2-rest-showcase.war to exist
 ✔ Port 8282 should be listening
Profile: tests from axis2.rb
Version: (not specified)
Target: winrm://vagrant@http://10.6.0.135:5985/wsman:3389
 ∅ axis2: Axis 2 (1 failed)
 ✔ File C:\axis2 should not exist
 × File C:\Program Files\Apache Software Foundation\tomcat\apache-tomcat-8.5.12\webapps\axis2 should exist
expected File C:\Program Files\Apache Software Foundation\tomcat\apache-tomcat-8.5.12\webapps\axis2 to exist
 ✔ Port 8282 should be listening
Profile: tests from backdoors.rb
Version: (not specified)
Target: winrm://vagrant@http://10.6.0.135:5985/wsman:3389
 ∅ backdoors: Backdoors (1 failed)
 × File C:\inetpub\wwwroot\caidao.asp should exist
expected File C:\inetpub\wwwroot\caidao.asp to exist
 ✔ File C:\wamp\www\mma.php should exist
 ✔ File C:\wamp\www\meterpreter.php should exist
Profile: tests from boxstarter.rb
Version: (not specified)
Target: winrm://vagrant@http://10.6.0.135:5985/wsman:3389
 ✔ boxstarter: Check BoxStarter
 ✔ File C:\Users\vagrant\AppData\Roaming\Boxstarter should exist
 ✔ File C:\Users\vagrant\AppData\Roaming\Boxstarter\BoxstarterShell.ps1 should exist
Profile: tests from choco.rb
Version: (not specified)
Target: winrm://vagrant@http://10.6.0.135:5985/wsman:3389
 ✔ choco: Check chocolatey
 ✔ Command choco --version exit_status should eq 0
Profile: tests from create_users.rb
Version: (not specified)
Target: winrm://vagrant@http://10.6.0.135:5985/wsman:3389
 ✔ check-accounts: Check user accounts
 ✔ User anakin_skywalker should exist
 ✔ User anakin_skywalker groups should eq ["Network Configuration Operators", "Users"]
 ✔ User artoo_detoo should exist
 ✔ User artoo_detoo groups should eq ["Distributed COM Users", "Users"]
 ✔ User ben_kenobi should exist
 ✔ User ben_kenobi groups should eq ["Guests", "Users"]
 ✔ User boba_fett should exist
 ✔ User boba_fett groups should eq ["Power Users", "Users"]
 ✔ User c_three_pio should exist
 ✔ User c_three_pio groups should eq ["Event Log Readers", "Users"]
 ✔ User chewbacca should exist
 ✔ User chewbacca groups should eq ["Replicator", "Users"]
 ✔ User darth_vader should exist
 ✔ User darth_vader groups should eq ["IIS_IUSRS", "Users"]
 ✔ User greedo should exist
 ✔ User greedo groups should eq ["Remote Desktop Users", "Users"]
 ✔ User han_solo should exist
 ✔ User han_solo groups should eq ["Cryptographic Operators", "Users"]
 ✔ User jabba_hutt should exist
 ✔ User jabba_hutt groups should eq ["Print Operators", "Users"]
 ✔ User jarjar_binks should exist
 ✔ User jarjar_binks groups should eq ["Performance Log Users", "Users"]
 ✔ User kylo_ren should exist
 ✔ User kylo_ren groups should eq ["Users"]
 ✔ User lando_calrissian should exist
 ✔ User lando_calrissian groups should eq ["Performance Monitor Users", "Users"]
 ✔ User leia_organa should exist
 ✔ User leia_organa groups should eq ["Backup Operators", "Users"]
 ✔ User luke_skywalker should exist
 ✔ User luke_skywalker groups should eq ["Certificate Service DCOM Access", "Users"]
 ✔ User sshd should exist
 ✔ User sshd groups should eq ["Users"]
 ✔ User sshd_server should exist
 ✔ User sshd_server groups should eq ["Administrators", "Users"]
 ✔ User vagrant should exist
 ✔ User vagrant groups should eq ["Administrators", "Users"]
 ✔ reg-user-add: Check user registry entries
 ✔ Registry Key HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\SpecialAccounts\UserList anakin_skywalker should eq 0
 ✔ Registry Key HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\SpecialAccounts\UserList artoo_detoo should eq 0
 ✔ Registry Key HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\SpecialAccounts\UserList ben_kenobi should eq 0
 ✔ Registry Key HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\SpecialAccounts\UserList boba_fett should eq 0
 ✔ Registry Key HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\SpecialAccounts\UserList c_three_pio should eq 0
 ✔ Registry Key HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\SpecialAccounts\UserList chewbacca should eq 0
 ✔ Registry Key HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\SpecialAccounts\UserList darth_vader should eq 0
 ✔ Registry Key HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\SpecialAccounts\UserList greedo should eq 0
 ✔ Registry Key HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\SpecialAccounts\UserList han_solo should eq 0
 ✔ Registry Key HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\SpecialAccounts\UserList jabba_hutt should eq 0
 ✔ Registry Key HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\SpecialAccounts\UserList jarjar_binks should eq 0
 ✔ Registry Key HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\SpecialAccounts\UserList kylo_ren should eq 0
 ✔ Registry Key HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\SpecialAccounts\UserList lando_calrissian should eq 0
 ✔ Registry Key HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\SpecialAccounts\UserList leia_organa should eq 0
 ✔ Registry Key HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\SpecialAccounts\UserList luke_skywalker should eq 0
Profile: tests from devkit.rb
Version: (not specified)
Target: winrm://vagrant@http://10.6.0.135:5985/wsman:3389
 ✔ devkit: Rails Server - DevKit
 ✔ File C:\Program Files\Rails_Server should exist
 ✔ File C:\Program Files\Rails_Server\devkit should exist
 ✔ Port 3000 should be listening
Profile: tests from disable_auto_logon.rb
Version: (not specified)
Target: winrm://vagrant@http://10.6.0.135:5985/wsman:3389
 ✔ disable-auto-logon: Disable Auto Logon
 ✔ Command reg query "HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon" /v AutoAdminLogon stdout should match "AutoAdminLogon REG_SZ 0"
Profile: tests from disable_firewall.rb
Version: (not specified)
Target: winrm://vagrant@http://10.6.0.135:5985/wsman:3389
 ∅ disable-firewall: Diable firewall (expected "\r\nDomain Profile Settings: \r\n-------------------------------------------------------------------...----------------------------------------\r\nState ON\r\nOk.\r\n\r\n" not to match "ON"
Diff:
@@ -1,2 +1,15 @@
-ON
+
+Domain Profile Settings:
+----------------------------------------------------------------------
+State ON
+
+Private Profile Settings:
+----------------------------------------------------------------------
+State ON
+
+Public Profile Settings:
+----------------------------------------------------------------------
+State ON
+Ok.
+
)
 × Command netsh advfirewall show allprofiles state stdout should not match "ON"
expected "\r\nDomain Profile Settings: \r\n-------------------------------------------------------------------...----------------------------------------\r\nState ON\r\nOk.\r\n\r\n" not to match "ON"
Diff:
@@ -1,2 +1,15 @@
-ON
+
+Domain Profile Settings:
+----------------------------------------------------------------------
+State ON
+
+Private Profile Settings:
+----------------------------------------------------------------------
+State ON
+
+Public Profile Settings:
+----------------------------------------------------------------------
+State ON
+Ok.
+

Profile: tests from elasticsearch.rb
Version: (not specified)
Target: winrm://vagrant@http://10.6.0.135:5985/wsman:3389
 ✔ elasticsearch: ElasticSearch
 ✔ File C:\Program Files\elasticsearch-1.1.1 should exist
 ✔ Service elasticsearch-service-x64 should be installed
 ✔ Service elasticsearch-service-x64 should be enabled
 ✔ Service elasticsearch-service-x64 should be running
 ✔ Port 9200 should be listening
Profile: tests from enable_rdp.rb
Version: (not specified)
Target: winrm://vagrant@http://10.6.0.135:5985/wsman:3389
 ✔ enable-rdp: Enable RDP
 ✔ Command netsh advfirewall firewall show rule name="Open Port 3389" stdout should match "Enabled: Yes"
 ✔ Registry Key HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Terminal Server fDenyTSConnections should eq 0
 ✔ Port 3389 should be listening
Profile: tests from firewall.rb
Version: (not specified)
Target: winrm://vagrant@http://10.6.0.135:5985/wsman:3389
 ✔ firewall: Configure Firewall
 ✔ Command netsh advfirewall firewall show rule name="Open Port 8484 for Jenkins" stdout should match "Enabled: Yes"
 ✔ Command netsh advfirewall firewall show rule name="Open Port 8282 for Apache Struts" stdout should match "Enabled: Yes"
 ✔ Command netsh advfirewall firewall show rule name="Open Port 80 for IIS" stdout should match "Enabled: Yes"
 ✔ Command netsh advfirewall firewall show rule name="Open Port 4848 for GlassFish" stdout should match "Enabled: Yes"
 ✔ Command netsh advfirewall firewall show rule name="Open Port 8080 for GlassFish" stdout should match "Enabled: Yes"
 ✔ Command netsh advfirewall firewall show rule name="Open Port 8585 for Wordpress and phpMyAdmin" stdout should match "Enabled: Yes"
 ✔ Command netsh advfirewall firewall show rule name="Java 1.6 java.exe" stdout should match "Enabled: Yes"
 ✔ Command netsh advfirewall firewall show rule name="Open Port 3000 for Rails Server" stdout should match "Enabled: Yes"
 ✔ Command netsh advfirewall firewall show rule name="Open Port 8020 for ManageEngine Desktop Central" stdout should match "Enabled: Yes"
 ✔ Command netsh advfirewall firewall show rule name="Open Port 8383 for ManageEngine Desktop Central" stdout should match "Enabled: Yes"
 ✔ Command netsh advfirewall firewall show rule name="Open Port 8022 for ManageEngine Desktop Central" stdout should match "Enabled: Yes"
 ✔ Command netsh advfirewall firewall show rule name="Open Port 9200 for ElasticSearch" stdout should match "Enabled: Yes"
 ✔ Command netsh advfirewall firewall show rule name="Open Port 161 for SNMP" stdout should match "Enabled: Yes"
 ✔ Command netsh advfirewall firewall show rule name="Closed port 445 for SMB" stdout should match "Enabled: Yes"
 ✔ Command netsh advfirewall firewall show rule name="Closed port 139 for NetBIOS" stdout should match "Enabled: Yes"
 ✔ Command netsh advfirewall firewall show rule name="Closed port 135 for NetBIOS" stdout should match "Enabled: Yes"
 ✔ Command netsh advfirewall firewall show rule name="Closed Port 3389 for Remote Desktop" stdout should match "Enabled: Yes"
 ✔ Command netsh advfirewall firewall show rule name="Closed Port 3306 for MySQL" stdout should match "Enabled: Yes"
Profile: tests from flag_check.rb
Version: (not specified)
Target: winrm://vagrant@http://10.6.0.135:5985/wsman:3389
 ∅ flags-check: Check flag locations (4 failed)
 × File C:\inetpub\wwwroot\six_of_diamonds.zip should exist
expected File C:\inetpub\wwwroot\six_of_diamonds.zip to exist
 ✔ File C:\WINDOWS\System32\jack_of_clubs.png should exist
 ✔ File C:\Windows\three_of_spades.png should exist
 ✔ File C:\Windows\System32\kingofclubs.exe should exist
 ✔ File C:\Users\Public\Music\four_of_clubs.wav should exist
 × File C:\inetpub\wwwroot\index.html should exist
expected File C:\inetpub\wwwroot\index.html to exist
 × File C:\inetpub\wwwroot\hahaha.jpg should exist
expected File C:\inetpub\wwwroot\hahaha.jpg to exist
 ✔ File C:\inetpub\wwwroot\iisstart.htm should not exist
 × File C:\inetpub\wwwroot\seven_of_hearts.html should exist
expected File C:\inetpub\wwwroot\seven_of_hearts.html to exist
 ✔ File C:\Users\Public\Documents\jack_of_hearts.docx should exist
 ✔ File C:\Users\Public\Documents\seven_of_spades.pdf should exist
 ✔ File C:\Users\Public\Pictures\ace_of_hearts.jpg should exist
 ✔ File C:\Users\Public\Pictures\ten_of_diamonds.png should exist
 ✔ File C:\jack_of_diamonds.png should exist
Profile: tests from ftp_site.rb
Version: (not specified)
Target: winrm://vagrant@http://10.6.0.135:5985/wsman:3389
 ∅ setup-ftp-site: Setup FTP Site (1 failed)
 ✔ File C:\Windows\System32\inetsrv\config\applicationHost.config should exist
 × Port 21 should be listening
expected `Port 21.listening?` to return true, got false
Profile: tests from glassfish.rb
Version: (not specified)
Target: winrm://vagrant@http://10.6.0.135:5985/wsman:3389
 ✔ glassfish: Check GlassFish
 ✔ File C:\glassfish should exist
 ✔ File C:\glassfish\glassfish4\glassfish\domains\domain1\config\admin-keyfile should exist
 ✔ File C:\glassfish\glassfish4\glassfish\domains\domain1\config\domain.xml should exist
 ✔ Service domain1 should be installed
 ✔ Service domain1 should be enabled
 ✔ Service domain1 should be running
 ✔ Port 4848 should be listening
 ✔ Port 8080 should be listening
 ✔ Port 8181 should be listening
Profile: tests from iis.rb
Version: (not specified)
Target: winrm://vagrant@http://10.6.0.135:5985/wsman:3389
 ✔ iis: IIS HTTP
 ✔ Port 3389 should be listening
Profile: tests from java.rb
Version: (not specified)
Target: winrm://vagrant@http://10.6.0.135:5985/wsman:3389
 ∅ java: Check Java installation (2 failed)
 × File C:\Program Files\Java\jre1.8.0_131\bin\java.exe should exist
expected File C:\Program Files\Java\jre1.8.0_131\bin\java.exe to exist
 × File C:\Program Files\Java\jdk1.8.0_131\bin\java.exe should exist
expected File C:\Program Files\Java\jdk1.8.0_131\bin\java.exe to exist
 ✔ Command java -showversion exit_status should eq 1
Profile: tests from jenkins.rb
Version: (not specified)
Target: winrm://vagrant@http://10.6.0.135:5985/wsman:3389
 ✔ jenkins: Check jenkins
 ✔ File C:\Program Files\jenkins should exist
 ✔ File C:\Program Files\jenkins\jenkins.war should exist
 ✔ File C:\Program Files\jenkins\jenkins.exe should exist
 ✔ Service jenkins should be installed
 ✔ Service jenkins should be enabled
 ✔ Service jenkins should be running
 ✔ Port 8484 should be listening
Profile: tests from jmx.rb
Version: (not specified)
Target: winrm://vagrant@http://10.6.0.135:5985/wsman:3389
 ✔ jmx: Check JMX installation
 ✔ File C:\Program Files\jmx should exist
 ✔ File C:\Program Files\jmx\Hello.class should exist
 ✔ File C:\Program Files\jmx\HelloMBean.class should exist
 ✔ File C:\Program Files\jmx\SimpleAgent.class should exist
 ✔ File C:\Program Files\jmx\jmx.exe should exist
 ✔ File C:\Program Files\jmx\start_jmx.bat should exist
 ✔ Service jmx should be installed
 ✔ Service jmx should be enabled
 ✔ Service jmx should be running
 ✔ Port 1617 should be listening
Profile: tests from manageengine.rb
Version: (not specified)
Target: winrm://vagrant@http://10.6.0.135:5985/wsman:3389
 ∅ manageengine: ManageEngine (3 failed)
 ✔ Service MEDCServerComponent-Apache should be installed
 ✔ Service MEDCServerComponent-Apache should be enabled
 × Service MEDCServerComponent-Apache should be running
expected that `Service MEDCServerComponent-Apache` is running
 ✔ Service MEDC Server Component - Notification Server should be installed
 ✔ Service MEDC Server Component - Notification Server should be enabled
 × Service MEDC Server Component - Notification Server should be running
expected that `Service MEDC Server Component - Notification Server` is running
 ✔ Service DesktopCentralServer should be installed
 ✔ Service DesktopCentralServer should be enabled
 ✔ Service DesktopCentralServer should be running
 × Port 8020 should be listening
expected `Port 8020.listening?` to return true, got false
Profile: tests from mysql.rb
Version: (not specified)
Target: winrm://vagrant@http://10.6.0.135:5985/wsman:3389
 ✔ mysql: MySQL
 ✔ Service wampmysqld should be installed
 ✔ Service wampmysqld should be enabled
 ✔ Service wampmysqld should be running
 ✔ Port 3306 should be listening
Profile: tests from openjdk6.rb
Version: (not specified)
Target: winrm://vagrant@http://10.6.0.135:5985/wsman:3389
 ∅ openjdk6: Check OpenJDK 6 (1 failed)
 ✔ File C:\openjdk6\openjdk-1.6.0-unofficial-b27-windows-amd64 should exist
 × Command C:\openjdk6\openjdk-1.6.0-unofficial-b27-windows-amd64\jre\bin\java.exe -version stdout should match "openjdk version \"1.6.0-unofficial\""
expected "" to match "openjdk version \"1.6.0-unofficial\""
Profile: tests from password_settings.rb
Version: (not specified)
Target: winrm://vagrant@http://10.6.0.135:5985/wsman:3389
 ∅ password-settings: Password settings (
expected: 1
got: 2
(compared using ==)
)
 × Command secedit /analyze /db %windir%\securitynew.sdb /cfg C:\vagrant\resources\security_settings\secconfig.cfg /areas SECURITYPOLICY exit_status should eq 1
expected: 1
got: 2
(compared using ==)

Profile: tests from psexec.rb
Version: (not specified)
Target: winrm://vagrant@http://10.6.0.135:5985/wsman:3389
 ✔ psexec: PxExec
 ✔ Port 139 should be listening
 ✔ Port 445 should be listening
Profile: tests from rails_service.rb
Version: (not specified)
Target: winrm://vagrant@http://10.6.0.135:5985/wsman:3389
 ✔ rails_service: Rails Service
 ✔ File C:\Program Files\Rails_Server\Gemfile should exist
 ✔ File C:\Program Files\Rails_Server\start_rails_server.bat should exist
 ✔ Port 3000 should be listening
 ✔ Windows Task 'rails' should exist
 ✔ Windows Task 'rails' should be enabled
Profile: tests from ruby.rb
Version: (not specified)
Target: winrm://vagrant@http://10.6.0.135:5985/wsman:3389
 ✔ ruby: Ruby
 ✔ File C:\tools\ruby23 should exist
 ✔ Command ruby -v exit_status should eq 0
Profile: tests from snmp.rb
Version: (not specified)
Target: winrm://vagrant@http://10.6.0.135:5985/wsman:3389
 ∅ snmp: Setup SNMP (1 failed)
 ✔ Registry Key HKLM\SYSTEM\ControlSet001\services\SNMP\Parameters EnableAuthenticationTraps should eq 0
 ✔ Registry Key HKLM\SYSTEM\ControlSet001\services\SNMP\Parameters\ValidCommunities public should eq 4
 × Port 161 should be listening
expected `Port 161.listening?` to return true, got false
Profile: tests from tomcat.rb
Version: (not specified)
Target: winrm://vagrant@http://10.6.0.135:5985/wsman:3389
 ✔ tomcat: Check tomcat installation
 ✔ File C:\Program Files\Apache Software Foundation\tomcat should exist
 ✔ Service Tomcat8 should be installed
 ✔ Service Tomcat8 should be enabled
 ✔ Service Tomcat8 should be running
 ✔ Port 8282 should be listening
Profile: tests from wamp.rb
Version: (not specified)
Target: winrm://vagrant@http://10.6.0.135:5985/wsman:3389
 ✔ wamp: Check WAMP installation
 ✔ File C:\wamp\bin\apache\Apache2.2.21\conf\httpd.conf should exist
 ✔ File C:\wamp\alias\phpmyadmin.conf should exist
 ✔ Service wampapache should be installed
 ✔ Service wampapache should be enabled
 ✔ Service wampapache should be running
 ✔ Service wampmysqld should be installed
 ✔ Service wampmysqld should be enabled
 ✔ Service wampmysqld should be running
 ✔ Port 8585 should be listening
 ✔ Port 3306 should be listening
Profile: tests from webdav.rb
Version: (not specified)
Target: winrm://vagrant@http://10.6.0.135:5985/wsman:3389
 ✔ webdav: WebDAV
 ✔ File C:\wamp\www\uploads should exist
 ✔ File C:\wamp\alias\httpd-dav.conf should exist
 ✔ Service wampapache should be installed
 ✔ Service wampapache should be enabled
 ✔ Service wampapache should be running
 ✔ Port 8585 should be listening
Profile: tests from winrm.rb
Version: (not specified)
Target: winrm://vagrant@http://10.6.0.135:5985/wsman:3389
 ✔ winrm: WinRM
 ✔ Port 5985 should be listening
Profile: tests from wordpress.rb
Version: (not specified)
Target: winrm://vagrant@http://10.6.0.135:5985/wsman:3389
 ✔ wordpress: Check WordPress Installation
 ✔ File C:\Program Files\wordpress should exist
 ✔ File C:\Program Files\wordpress\update_ip.ps1 should exist
 ✔ File C:\wamp\www\wordpress should exist
 ✔ Port 8585 should be listening
Profile Summary: 23 successful, 11 failures, 0 skipped
Test Summary: 178 successful, 19 failures, 0 skipped
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment