digital-forensics-labs/SecGen
1
0
Fork 0
mirror of https://github.com/cliffe/SecGen.git synced 2026-02-21 19:28:02 +00:00
Code Issues Packages Projects Releases Wiki Activity
Files
6ee15955c4ffd44e129bccdc11b778dec3c7cd2d
SecGen/lib/systemreader.rb
Connor Wilson e61374b620 Merge remote-tracking branch 'upstream/master'
2016-03-29 19:19:38 +01:00

79 lines
2.8 KiB
Ruby
Raw Blame History

require_relative 'configuration.rb'
require_relative 'managers/network_manager'
require_relative 'managers/service_manager'
require_relative 'managers/base_manager'
require_relative 'helpers/vulnerability_processor'
require_relative 'objects/base_box'
require_relative 'objects/network'
require_relative 'objects/service'
require_relative 'objects/system'
require_relative 'objects/vulnerability'
require 'nokogiri'
class SystemReader
# initializes systems xml from BOXES_XML const
def initialize()
@vulnerability_processor = VulnerabilityProcessor.new
end
# uses nokogiri to extract all system information from scenario.xml will add it to the system class after
# checking if the vulnerabilities / networks exist from system.rb
def parse_systems
systems = []
doc = Nokogiri::XML(File.read(SCENARIO_XML))
doc.xpath("//systems/system").each do |system|
id = system["id"]
os = system["os"]
basebox = system["basebox"]
url = system["url"]
vulns = []
networks = []
services = []
system.css('vulnerabilities vulnerability').each do |v|
vulnerability = Vulnerability.new
# assign the value if the value is not nil (i.e. it's been specified in scenario.xml)
vulnerability.type = v['type'] if v['type']
vulnerability.privilege = v['privilege'] if v['privilege']
vulnerability.cve = v['cve'] if v['cve']
vulnerability.access = v['access'] if v['access']
vulnerability.difficulty = v['difficulty'] if v['difficulty']
vulnerability.cvss_rating = v['cvss_rating'] if v['cvss_rating']
vulnerability.vector_string = v['vector_string'] if v['vector_string']
vulns << vulnerability
end
system.css('services service').each do |v|
service = Service.new
service.name = v['name']
service.details = v['details']
service.type = v['type']
services << service
end
system.css('networks network').each do |n|
network = Network.new
network.name = n['name']
networks << network
end
puts "Processing system: " + id
# vulns / networks are passed through to their manager and the program will create valid vulnerabilities / networks
# depending on what the user has specified these two will return valid vulns to be used in vagrant file creation.
new_vulns = @vulnerability_processor.process(vulns)
#puts new_vulns.inspect
new_networks = NetworkManager.process(networks, Configuration.networks)
# pass in the already selected set of vulnerabilities, and additional secure services to find
new_services = ServiceManager.process(services, Configuration.services, new_vulns)
s = System.new(id, os, basebox, url, new_vulns, new_networks, new_services)
if s.is_valid_base == false
BaseManager.generate_base(s,Configuration.bases)
end
systems << s
end
return systems
end
end
Reference in New Issue View Git Blame Copy Permalink