In [48]:
#Import yaml and various ways to load in the data from the yaml file

import yaml
from yaml.loader import SafeLoader, BaseLoader, FullLoader, UnsafeLoader

In [49]:
#Load in data from yaml file using a safe load

filepath = 'NetworkAttackSimulator/nasim/scenarios/benchmark/tiny.yaml'
with open(filepath, "r") as stream:
    try:
        curr_data = (yaml.safe_load(stream))
    except yaml.YAMLError as exc:
        print(exc)

In [50]:
#Print out representation of yaml data
print(curr_data)

{'subnets': [1, 1, 1], 'topology': [[1, 1, 0, 0], [1, 1, 1, 1], [0, 1, 1, 1], [0, 1, 1, 1]], 'sensitive_hosts': {'(2, 0)': 100, '(3, 0)': 100}, 'os': ['linux'], 'services': ['ssh'], 'processes': ['tomcat'], 'exploits': {'e_ssh': {'service': 'ssh', 'os': 'linux', 'prob': 0.8, 'cost': 1, 'access': 'user'}}, 'privilege_escalation': {'pe_tomcat': {'process': 'tomcat', 'os': 'linux', 'prob': 1.0, 'cost': 1, 'access': 'root'}}, 'service_scan_cost': 1, 'os_scan_cost': 1, 'subnet_scan_cost': 1, 'process_scan_cost': 1, 'host_configurations': {'(1, 0)': {'os': 'linux', 'services': ['ssh'], 'processes': ['tomcat'], 'firewall': {'(3, 0)': ['ssh']}}, '(2, 0)': {'os': 'linux', 'services': ['ssh'], 'processes': ['tomcat'], 'firewall': {'(1, 0)': ['ssh']}}, '(3, 0)': {'os': 'linux', 'services': ['ssh'], 'processes': ['tomcat']}}, 'firewall': {'(0, 1)': ['ssh'], '(1, 0)': [], '(1, 2)': [], '(2, 1)': ['ssh'], '(1, 3)': ['ssh'], '(3, 1)': ['ssh'], '(2, 3)': ['ssh'], '(3, 2)': ['ssh']}, 'step_limit': 1000

Adding Functions

In [51]:
def add_new_subnet(numOfHosts):
    curr_data['subnets'].append(numOfHosts)

def add_new_topology(newTopology):
    curr_data['topology'].append(newTopology)
    
def add_new_os(os):
    if (len(curr_data['os'])) >= 1:
        curr_data['os'].append(os)
    else:
        curr_data['os'] = [os]

def add_new_process(process):
    if (len(curr_data['processes'])) >= 1:
        curr_data['processes'].append(process)
    else:
        curr_data['proceeses'] = [process]
    
def add_new_service(service):
    if (len(curr_data['services'])) >= 1:
        curr_data['services'].append(service)
    else:
        curr_data['services'] = [service]
    
def add_new_exploit(service, os, prob, cost, access):
    curr_data['exploits']['e_' + service] = {'service': service, 'os': os, 'prob': prob, 'cost': cost, 'access': access}
    
def add_new_privilege(process, os, prob, cost, access):
    curr_data['privilege_escalation']['pe_' + process] = {'process': process, 'os': os, 'prob': prob, 'cost': cost, 'access': access}
    
def add_new_firewall(x, y, services):
    location = '(' + str(x) + ', ' + str(y) + ')'
    curr_data['firewall'][location] = services
    
def add_new_sensitive_host(x, y, value):
    location = '(' + str(x) + ', ' + str(y) + ')'
    curr_data['sensitive_hosts'][location] = value
    
def add_new_host_config(x, y, os, services, processes):
    location = '(' + str(x) + ', ' + str(y) + ')'
    curr_data['host_configurations'][location] = {'os': os, 'services': services, 'processes': processes}
    
def add_new_scan_cost(keyword, cost):
    curr_data[keyword + '_scan_cost'] = cost

Removing Functions

In [52]:
def remove_subnet(subnetIndex):
    del curr_data['subnets'][subnetIndex]
    
def remove_topology(topologyIndex):
    del curr_data['topology'][topologyIndex]
    
def remove_os(os):
    if os in curr_data['os']:
        curr_data['os'].remove(os)
        
def remove_process(process):
    if process in curr_data['processes']:
        curr_data['processes'].remove(process)
        
def remove_service(service):
    if service in curr_data['services']:
        curr_data['os'].remove(service)
        
def remove_exploit(exploitName):
    del curr_data['exploits'][exploitName]
    
def remove_privilege(privilegeName):
    del curr_data['privilege_escalation'][privilegeName]
    
def remove_firewall(x, y):
    location = '(' + str(x) + ', ' + str(y) + ')'
    del curr_data['firewall'][location]
    
def remove_sensitive_host(x, y):
    location = '(' + str(x) + ', ' + str(y) + ')'
    del curr_data['sensitive_hosts'][location]
    
def remove_host_config(x, y):
    location = '(' + str(x) + ', ' + str(y) + ')'
    del curr_data['host_configurations'][location]
    
def remove_scan_cost(keyword):
    del curr_data[keyword + '_scan_cost']

Modifying Step Limit

In [53]:
def set_step_limit(stepLimit):
    curr_data['step_limit'] = stepLimit

Writing Modifications to YAML

In [54]:
#Update a YAML file with modifications that have been added or removed. 
#In this case a new file(for testing) is created to contain the updated YAML data.

testfile = 'data.yaml'

def writeToYAML():
    with open(testfile, 'w') as f:
        data = yaml.dump(curr_data, f, sort_keys=False, default_flow_style=False)

Testing

In [55]:
print(curr_data['exploits'])

{'e_ssh': {'service': 'ssh', 'os': 'linux', 'prob': 0.8, 'cost': 1, 'access': 'user'}}


In [56]:
add_new_exploit('http', 'windows', 0.4, 1, 'system')

In [57]:
print(curr_data['exploits'])

{'e_ssh': {'service': 'ssh', 'os': 'linux', 'prob': 0.8, 'cost': 1, 'access': 'user'}, 'e_http': {'service': 'http', 'os': 'windows', 'prob': 0.4, 'cost': 1, 'access': 'system'}}


In [58]:
remove_exploit('e_ssh')

In [59]:
print(curr_data['exploits'])

{'e_http': {'service': 'http', 'os': 'windows', 'prob': 0.4, 'cost': 1, 'access': 'system'}}


In [60]:
print(curr_data['os'])

['linux']


In [61]:
add_new_os('windows')

In [62]:
print(curr_data['os'])

['linux', 'windows']


In [63]:
remove_os('linux')

In [64]:
print(curr_data['os'])

['windows']


In [65]:
print(curr_data['subnets'])

[1, 1, 1]


In [66]:
add_new_subnet(5)

In [67]:
print(curr_data['subnets'])

[1, 1, 1, 5]


In [68]:
remove_subnet(2)

In [69]:
print(curr_data['subnets'])

[1, 1, 5]


In [70]:
writeToYAML()

In [71]:
"""
Observing Change:
Firewall - Transition Probabilities 
Subnet, Topology - State Space
Exploits, Privilege Escalation - Action Space
"""

'\nChange:\nFirewall - Transition Probabilities \nSubnet, Topology - State Space\nExploits, Privilege Escalation - Action Space\n'