<a href="https://colab.research.google.com/github/dario-cruz/CyberSec-Python-Notebooks/blob/main/Algorithm_for_file_updates_in_Python.ipynb" target="_parent"><img src="https://colab.research.google.com/assets/colab-badge.svg" alt="Open In Colab"/></a>

# Updating Files in Python
## Scenario
You are a security professional working at a health care company. As part of your job, you're required to regularly update a file that identifies the employees who can access restricted content. The contents of the file are based on who is working with personal patient records. Employees are restricted access based on their IP address. There is an allow list for IP addresses permitted to sign into the restricted subnetwork. There's also a remove list that identifies which employees you must remove from this allow list.

Your task is to create an algorithm that uses Python code to check whether the allow list contains any IP addresses identified on the remove list. If so, you should remove those IP addresses from the file containing the allow list.



## Importing of the file.
Lets use the `with` and `open()` functions to open the file that we need so that we can work with the data lateron.

*Note that I have uploaded the target allowed_list.txt file to the runtime instance in google colab. The text file is completely empty and we will generate some IP address data later for use in the project.*

In [18]:
# Import the allowed_list file.
# Not that the file is empty.
imported_file = 'allowed_list.txt'
with open(imported_file, 'r') as file:
  allowed_list_imported = file.read()

# Convert allowed_list_imported to an array.
allowed_list_imported = allowed_list_imported.split()

# Print it out for confirmation. Should be empty.
print(allowed_list_imported)

[]


In [19]:
# Generate some usable data.
import random
# Create function to create random IP addresses.
def generate_ip():
  octet_one = random.randrange(2, 254, 1)
  octet_two = random.randrange(2, 254, 1)

  octet_one = str(octet_one)
  octet_two = str(octet_two)

  ip_address = '10.10.' + octet_one + "." + octet_two
  return ip_address

# Variable for the number of IP's we want.
ip_count = 0

while ip_count <= 20:
  # Increment the counter
  ip_count = ip_count + 1
  # Generate new IP
  new_ip = generate_ip()
  # Print it out for confirmation
  print(new_ip)
  # Append it to the imported file.
  allowed_list_imported.append(new_ip)

print(allowed_list_imported)

10.10.186.131
10.10.135.177
10.10.109.36
10.10.56.52
10.10.220.135
10.10.229.233
10.10.234.122
10.10.9.31
10.10.241.208
10.10.25.215
10.10.186.177
10.10.3.106
10.10.180.11
10.10.235.115
10.10.35.88
10.10.172.192
10.10.72.90
10.10.89.13
10.10.223.171
10.10.240.152
10.10.177.19
['10.10.186.131', '10.10.135.177', '10.10.109.36', '10.10.56.52', '10.10.220.135', '10.10.229.233', '10.10.234.122', '10.10.9.31', '10.10.241.208', '10.10.25.215', '10.10.186.177', '10.10.3.106', '10.10.180.11', '10.10.235.115', '10.10.35.88', '10.10.172.192', '10.10.72.90', '10.10.89.13', '10.10.223.171', '10.10.240.152', '10.10.177.19']


So now that we have our data to work with, we need to be able to filter it.

Lets make a list of IP addresses that should not have access in out scenario.

In [22]:
# Create list of IP's that should not be allowed.
# I selected a random assortment of 5 IP addresses that I know are on the list.
deny_list = ['10.10.9.31', '10.10.35.88', '10.10.89.13', '10.10.56.52', '10.10.177.19']

# Dispaly all of the data.
print('This is the deny list')
print(deny_list)
print('This is the allowed list')
print(allowed_list_imported)

This is the deny list
['10.10.9.31', '10.10.35.88', '10.10.89.13', '10.10.56.52', '10.10.177.19']
This is the allowed list
['10.10.186.131', '10.10.135.177', '10.10.109.36', '10.10.56.52', '10.10.220.135', '10.10.229.233', '10.10.234.122', '10.10.9.31', '10.10.241.208', '10.10.25.215', '10.10.186.177', '10.10.3.106', '10.10.180.11', '10.10.235.115', '10.10.35.88', '10.10.172.192', '10.10.72.90', '10.10.89.13', '10.10.223.171', '10.10.240.152', '10.10.177.19']


## It's filtering time.
Okay so now that we have both our allowed list of IP's and out deny list of IP's, we need to update the allowed list to remove any entries that match up with the deny list.

We will accomplish this task with a for loop that will iterate over our allow list and if any IP's match content in the deny list, we will use the `.remove()` method to delete the entry, affectively keeping our PII/SPII secure.

In [23]:
# Create the for loop to iterate over all of the data in the list.
for ip in allowed_list_imported:
  # If the IP matchees any data in the deny list remove it.
  if ip in deny_list:
    allowed_list_imported.remove(ip)

# Print out our new and up to date allowed list.
print(allowed_list_imported)

['10.10.186.131', '10.10.135.177', '10.10.109.36', '10.10.220.135', '10.10.229.233', '10.10.234.122', '10.10.241.208', '10.10.25.215', '10.10.186.177', '10.10.3.106', '10.10.180.11', '10.10.235.115', '10.10.172.192', '10.10.72.90', '10.10.223.171', '10.10.240.152']


## Store the contents in the allowed_list.txt file.
So now we have our imported array/list updated inside of python. We need to export that data back to the file via the write option in the `open()` function.

### Conversion
The write methods of the open command only accept strings as arguments so we need to make use of the `.join()` method to create the needed data type.

In [27]:
# Convert the list to the string data type in preperaion for exporting.
allowed_list_imported = "\n".join(allowed_list_imported)
print(allowed_list_imported)

10.10.186.131
10.10.135.177
10.10.109.36
10.10.220.135
10.10.229.233
10.10.234.122
10.10.241.208
10.10.25.215
10.10.186.177
10.10.3.106
10.10.180.11
10.10.235.115
10.10.172.192
10.10.72.90
10.10.223.171
10.10.240.152


In [28]:
# Open the allowed_list file form the imported_file variable.
with open(imported_file, 'w') as file:
  # Write the contents of the list to the allowed_list.txt.
  # This will whipe and add the list data. We can use append functionality
  # later to update/add more IPs.
  file.write(allowed_list_imported)