digital-forensics-labs/SecGen
1
0
Fork 0
mirror of https://github.com/cliffe/SecGen.git synced 2026-02-22 11:48:17 +00:00
Code Issues Packages Projects Releases Wiki Activity
Files
77cf34e769eeeffa0058fbff55bdaa4599f0cfb4
SecGen/lib/objects/module.rb
Z. Cliffe Schreuders b5b19fe1c5 Major overhaul of code base!
2016-06-09 00:03:04 +01:00

110 lines
3.7 KiB
Ruby
Raw Blame History

require_relative '../helpers/constants.rb'
class Module
#Vulnerability attributes hash
attr_accessor :module_path # vulnerabilities/unix/ftp/vsftp_234_backdoor
attr_accessor :module_type # vulnerability|service
attr_accessor :attributes # attributes are hashes that contain arrays of values
# Each attribute is stored in a hash containing an array of values (because elements such as author can repeat).
# For module *selectors*, filters are stored directly in the attributes hash rather than as an array of values.
# XML validity ensures valid and complete information.
attr_accessor :conflicts
attr_accessor :puppet_file
attr_accessor :puppet_other_path
# @param [Object] module_type: such as 'vulnerability', 'base', 'service', 'network'
def initialize(module_type)
self.module_type = module_type
self.conflicts = []
self.attributes = {}
self.attributes[:module_type] = module_type # add as an attribute for filtering
end
# @return [Object] a string for console output
def to_s
(<<-END)
#{module_type}: #{module_path}
attributes: #{attributes.inspect}
conflicts: #{conflicts.inspect}
puppet file: #{puppet_file}
puppet path: #{puppet_other_path}
END
end
# @return [Object] a string for Vagrant/Ruby file comments
def to_s_comment
(<<-END)
# #{module_type}: #{module_path}
# attributes: #{attributes.inspect}
# conflicts: #{conflicts.inspect}
END
end
# @return [Object] the leaf directory (last part of the module path)
def module_path_end
match = module_path.match(/.*?([^\/]*)$/i)
match.captures[0]
end
# @return [Object] the module path with _ rather than / for use as a variable name
def module_path_name
module_path_name = module_path.clone
module_path_name.gsub!('/','_')
end
# @return [Object] a list of attributes that can be used to re-select the same modules
def attributes_for_scenario_output
attr_flattened = {}
attributes.each do |key, array|
unless "#{key}" == 'module_type' || "#{key}" == 'conflict'
# creates a valid regexp that can match the original module
attr_flattened["#{key}"] = Regexp.escape(array.join('~~~')).gsub(/\n\w*/, '.*').gsub(/\\ /, ' ').gsub(/~~~/, '|')
end
end
attr_flattened
end
# A one directional test for conflicts
# Returns whether this module specifies it conflicts with the other_module.
# Each conflict can have multiple conditions which must all be met for this
# to be considered a conflict. However, only one conflict needs to be satisfied.
# @param [Object] other_module to compare with
# @return [Object] boolean
def conflicts_with(other_module)
# for each conflict
self.conflicts.each do |conflict|
all_conflict_conditions_met = true
# for each conflict hash key for a single conflict
conflict.keys.each do |conflict_key|
key_matched = false
# all_conflict_conditions_met = true
# does that conflict with selected modules?
if other_module.attributes["#{conflict_key}"] != nil
# for each corresponding value in the previously selected module
other_module.attributes["#{conflict_key}"].each do |value|
# for each value in the conflict list
conflict["#{conflict_key}"].each do |conflict_value|
if Regexp.new(conflict_value).match(value)
key_matched = true
end
end
end
end
# any failure to match a conflict
unless key_matched
all_conflict_conditions_met = false
end
end
if all_conflict_conditions_met
return true
end
end
false
end
end
Reference in New Issue View Git Blame Copy Permalink