digital-forensics-labs/SecGen
1
0
Fork 0
mirror of https://github.com/cliffe/SecGen.git synced 2026-02-21 11:18:06 +00:00
Code Issues Packages Projects Releases Wiki Activity
Files
f8ba19ad7534219f7ebbadd0edcc7fc2257cfda7
SecGen/lib/objects/module.rb
Z. Cliffe Schreuders f8ba19ad75 datastores for storing and reusing calculated values
2017-01-07 21:21:17 +00:00

168 lines
5.8 KiB
Ruby
Raw Blame History

require_relative '../helpers/constants.rb'
require 'digest/md5'
require 'securerandom'
class Module
#Vulnerability attributes hash
attr_accessor :module_path # vulnerabilities/unix/ftp/vsftp_234_backdoor
attr_accessor :module_type # vulnerability|service|utility
attr_accessor :attributes # attributes are hashes that contain arrays of values
# Each attribute is stored in a hash containing an array of values (because elements such as author can repeat).
# Module *selectors*, store filters in the attributes hash.
# XML validity ensures valid and complete information.
attr_accessor :write_to_module_with_id # the module instance that this module writes to
attr_accessor :write_to_datastore # the datastore to store the result to
attr_accessor :write_output_variable # the variable/fact written to
attr_accessor :output # the result of local processing
attr_accessor :unique_id # the unique id for this module *instance*
attr_accessor :received_inputs # any locally calculated inputs fed into this module instance
attr_accessor :received_datastores # any datastores to be fed into this module instance
attr_accessor :conflicts
attr_accessor :requires
attr_accessor :puppet_file
attr_accessor :puppet_other_path
attr_accessor :local_calc_file
attr_accessor :default_inputs_selectors # hash of into => module_selector
attr_accessor :default_inputs_literals # hash of into => literal values
# @param [Object] module_type: such as 'vulnerability', 'base', 'service', 'network'
def initialize(module_type)
self.module_type = module_type
self.conflicts = []
self.requires = []
self.attributes = {}
self.output = []
self.write_to_module_with_id = write_output_variable = ''
self.received_inputs = {}
self.received_datastores = {}
self.default_inputs_selectors = {}
self.default_inputs_literals = {}
# self.attributes['module_type'] = module_type # add as an attribute for filtering
end
def inspect
"SECGEN_MODULE(type:#{module_type} path:#{module_path} attr:#{attributes.inspect} to:#{write_to_module_with_id}.#{write_output_variable} id:#{unique_id} received_inputs:#{received_inputs} default_inputs_selectors: #{default_inputs_selectors} default_inputs_literals: #{default_inputs_literals})"
end
# @return [Object] a string for console output
def to_s
(<<-END)
#{module_type}: #{module_path}
attributes: #{attributes.inspect}
conflicts: #{conflicts.inspect}
requires: #{requires.inspect}
puppet file: #{puppet_file}
puppet path: #{puppet_other_path}
END
end
# @return [Object] a string for Vagrant/Ruby file comments
def to_s_comment
out = input = ''
if received_inputs != {}
input = "\n # received_inputs: #{self.received_inputs}"
end
if write_to_module_with_id != ''
out = "\n # writes out ('#{self.output}') to #{self.write_to_module_with_id} -> #{self.write_output_variable}"
end
(<<-END)
# #{module_type}: #{module_path}
# id: #{unique_id}
# attributes: #{attributes.inspect}
# conflicts: #{conflicts.inspect}
# requires: #{requires.inspect}#{input}#{out}
END
end
# @return [Object] the leaf directory (last part of the module path)
def module_path_end
match = module_path.match(/.*?([^\/]*)$/i)
match.captures[0]
end
# @return [Object] the module path with _ rather than / for use as a variable name
def module_path_name
module_path_name = module_path.clone
module_path_name.gsub!('/','_')
end
# @return [Object] a list of attributes that can be used to re-select the same modules
def attributes_for_scenario_output
attr_flattened = {}
attributes.each do |key, array|
unless "#{key}" == 'module_type' || "#{key}" == 'conflict'
# creates a valid regexp that can match the original module
attr_flattened["#{key}"] = Regexp.escape(array.join('~~~')).gsub(/\n\w*/, '.*').gsub(/\\ /, ' ').gsub(/~~~/, '|')
end
end
attr_flattened
end
# A one directional test for conflicts
# Returns whether this module specifies it conflicts with the other_module.
# Each conflict can have multiple conditions which must all be met for this
# to be considered a conflict. However, only one conflict needs to be satisfied.
# @param [Object] other_module to compare with
# @return [Object] boolean
def conflicts_with(other_module)
# for each conflict
self.conflicts.each do |conflict|
if other_module.matches_attributes_requirement(conflict)
return true
end
end
false
end
def matches_attributes_requirement(required)
all_conditions_met = true
required.keys.each do |require_key|
key_matched = false
if self.attributes["#{require_key}"] != nil
# for each corresponding value in the previously selected module
self.attributes["#{require_key}"].each do |value|
# for each value in the required list
required["#{require_key}"].each do |required_value|
required_value = prepare_required_value(require_key, required_value)
if Regexp.new(required_value).match(value)
key_matched = true
end
end
end
end
# any failure to match
unless key_matched
return false
end
end
all_conditions_met
end
def prepare_required_value(required_key, value)
if required_key == 'module_path'
# allow omission of 'modules/' e.g. <module_path>services/platform/module_name</module_path>
if value.partition('/').first != 'modules'
value = 'modules/' + value
end
# wrap value with ^ and $ to limit start/end of string.
value = "^#{value}$"
elsif required_key == 'privilege'
value = "^#{value}$"
end
value
end
def printable_name
"#{self.attributes['name'].first} (#{self.module_path})"
end
end
Reference in New Issue View Git Blame Copy Permalink