Skip to content
This repository has been archived by the owner on Nov 29, 2021. It is now read-only.

Commit

Permalink
Merge pull request #194 from jjnicola/alive-test
Browse files Browse the repository at this point in the history 
Extend osp to accept target options.
  • Loading branch information
@bjoernricks
bjoernricks committed Jan 18, 2020
2 parents 6c0c15f + c92058b commit f710afc
Show file tree
Hide file tree
Showing 6 changed files with 69 additions and 14 deletions.
1 change: 1 addition & 0 deletions CHANGELOG.md
View file
Original file line number Diff line number Diff line change
Expand Up @@ -9,6 +9,7 @@ The format is based on [Keep a Changelog](https://keepachangelog.com/en/1.0.0/).
### Added
- Add solution method to solution of vt object. [#166](https://github.com/greenbone/ospd/pull/166)
- Add wait_for_children(). [#167](https://github.com/greenbone/ospd/pull/167)
- Extend osp to accept target options. [#194](https://github.com/greenbone/ospd/pull/194)

### Changes
- Modify __init__() method and use new syntax for super(). [#186](https://github.com/greenbone/ospd/pull/186)
Expand Down
7 changes: 7 additions & 0 deletions doc/OSP.xml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -179,6 +179,7 @@ Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
<e>credentials</e>
<e>exclude_hosts</e>
<e>finished_hosts</e>
<e>alive_test</e>
</pattern>
<ele>
<name>hosts</name>
Expand Down Expand Up @@ -209,12 +210,18 @@ Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
</summary>
<type>string</type>
</ele>
<ele>
<name>alive_test</name>
<summary>Alive test type to be performed against the target.</summary>
<type>string</type>
</ele>
<example>
<summary>Target without credentials.</summary>
<e>
<target>
<hosts>example.org</hosts>
<ports>T:22,U:5060</ports>
<alive_test>0</alive_test>
</target>
</e>
</example>
Expand Down
16 changes: 13 additions & 3 deletions ospd/misc.py
View file
Original file line number Diff line number Diff line change
Expand Up @@ -268,11 +268,11 @@ def create_scan(
scan_info = self.data_manager.dict() # type: Dict
scan_info['results'] = list()
scan_info['finished_hosts'] = dict(
[[target, []] for target, _, _, _, _ in targets]
[[target, []] for target, _, _, _, _, _ in targets]
)
scan_info['progress'] = 0
scan_info['target_progress'] = dict(
[[target, {}] for target, _, _, _, _ in targets]
[[target, {}] for target, _, _, _, _, _ in targets]
)
scan_info['targets'] = targets
scan_info['vts'] = vts
Expand Down Expand Up @@ -371,7 +371,7 @@ def get_target_list(self, scan_id: str) -> List:
""" Get a scan's target list. """

target_list = []
for target, _, _, _, _ in self.scans_table[scan_id]['targets']:
for target, _, _, _, _, _ in self.scans_table[scan_id]['targets']:
target_list.append(target)
return target_list

Expand Down Expand Up @@ -413,6 +413,16 @@ def get_credentials(self, scan_id: str, target: str):
if target == item[0]:
return item[2]

def get_target_options(self, scan_id: str, target: str):
""" Get a scan's target option dictionary.
It return dictionary with the corresponding options for
a given target.
"""
if target:
for item in self.scans_table[scan_id]['targets']:
if target == item[0]:
return item[5]

def get_vts(self, scan_id: str):
""" Get a scan's vts list. """

Expand Down
31 changes: 24 additions & 7 deletions ospd/ospd.py
View file
Original file line number Diff line number Diff line change
Expand Up @@ -526,6 +526,7 @@ def process_targets_element(cls, scanner_target) -> List:
<hosts>localhosts</hosts>
<exclude_hosts>localhost1</exclude_hosts>
<ports>80,443</ports>
<alive_test></alive_test>
</target>
<target>
<hosts>192.168.0.0/24</hosts>
Expand All @@ -543,14 +544,15 @@ def process_targets_element(cls, scanner_target) -> List:
</target>
</targets>
@return: A list of [hosts, port, {credentials}, exclude_hosts] list.
@return: A list of [hosts, port, {credentials}, exclude_hosts, options] list.
Example form:
[['localhosts', '80,43', '', 'localhosts1'],
[['localhosts', '80,43', '', 'localhosts1',
{'alive_test': 'ALIVE_TEST_CONSIDER_ALIVE'}],
['192.168.0.0/24', '22', {'smb': {'type': type,
'port': port,
'username': username,
'password': pass,
}}], '']
}}, '', {}]]
"""

target_list = []
Expand All @@ -559,6 +561,7 @@ def process_targets_element(cls, scanner_target) -> List:
finished_hosts = ''
ports = ''
credentials = {} # type: Dict
options = {}
for child in target:
if child.tag == 'hosts':
hosts = child.text
Expand All @@ -570,9 +573,18 @@ def process_targets_element(cls, scanner_target) -> List:
ports = child.text
if child.tag == 'credentials':
credentials = cls.process_credentials_elements(child)
if child.tag == 'alive_test':
options['alive_test'] = child.text
if hosts:
target_list.append(
[hosts, ports, credentials, exclude_hosts, finished_hosts]
[
hosts,
ports,
credentials,
exclude_hosts,
finished_hosts,
options,
]
)
else:
raise OspdCommandError('No target to scan', 'start_scan')
Expand All @@ -598,7 +610,7 @@ def handle_start_scan_command(self, scan_et) -> str:
else:
scan_targets = []
for single_target in target_str_to_list(target_str):
scan_targets.append([single_target, ports_str, '', '', ''])
scan_targets.append([single_target, ports_str, '', '', '', ''])

scan_id = scan_et.attrib.get('scan_id')
if scan_id is not None and scan_id != '' and not valid_uuid(scan_id):
Expand Down Expand Up @@ -874,7 +886,7 @@ def calculate_progress(self, scan_id: str) -> float:
def process_exclude_hosts(self, scan_id: str, target_list: List) -> None:
""" Process the exclude hosts before launching the scans."""

for target, _, _, exclude_hosts, _ in target_list:
for target, _, _, exclude_hosts, _, _ in target_list:
exc_hosts_list = ''
if not exclude_hosts:
continue
Expand All @@ -888,7 +900,7 @@ def process_finished_hosts(self, scan_id: str, target_list: List) -> None:
Set finished hosts as finished with 100% to calculate
the scan progress."""

for target, _, _, _, finished_hosts in target_list:
for target, _, _, _, finished_hosts, _ in target_list:
exc_hosts_list = ''
if not finished_hosts:
continue
Expand Down Expand Up @@ -1857,6 +1869,11 @@ def get_scan_credentials(self, scan_id: str, target: str = '') -> Dict:
the credential list for the given target. """
return self.scan_collection.get_credentials(scan_id, target)

def get_scan_target_options(self, scan_id: str, target: str = '') -> Dict:
""" Gives a scan's target option dict. If a target is passed gives
the credential list for the given target. """
return self.scan_collection.get_target_options(scan_id, target)

def get_scan_vts(self, scan_id: str) -> Dict:
""" Gives a scan's vts list. """
return self.scan_collection.get_vts(scan_id)
Expand Down
20 changes: 20 additions & 0 deletions tests/test_scan_and_result.py
View file
Original file line number Diff line number Diff line change
Expand Up @@ -952,6 +952,7 @@ def test_scan_multi_target(self):
'<targets><target>'
'<hosts>localhosts</hosts>'
'<ports>80,443</ports>'
'<alive_test>0</alive_test>'
'</target>'
'<target><hosts>192.168.0.0/24</hosts>'
'<ports>22</ports></target></targets>'
Expand Down Expand Up @@ -1021,6 +1022,25 @@ def test_scan_get_target(self):
scan_res = response.find('scan')
self.assertEqual(scan_res.get('target'), 'localhosts,192.168.0.0/24')

def test_scan_get_target_options(self):
daemon = DummyWrapper([])
response = secET.fromstring(
daemon.handle_command(
'<start_scan>'
'<scanner_params /><vts><vt id="1.2.3.4" />'
'</vts>'
'<targets>'
'<target><hosts>192.168.0.1</hosts>'
'<ports>22</ports><alive_test>0</alive_test></target>'
'</targets>'
'</start_scan>'
)
)
scan_id = response.findtext('id')
time.sleep(1)
target_options = daemon.get_scan_target_options(scan_id, '192.168.0.1')
self.assertEqual(target_options, {'alive_test': '0'})

def test_scan_get_finished_hosts(self):
daemon = DummyWrapper([])
response = secET.fromstring(
Expand Down
8 changes: 4 additions & 4 deletions tests/test_ssh_daemon.py
View file
Original file line number Diff line number Diff line change
Expand Up @@ -89,7 +89,7 @@ def test_run_command(self):
daemon = DummyWrapper(niceness=10)
scanid = daemon.create_scan(
None,
[['host.example.com', '80, 443', '', '', '']],
[['host.example.com', '80, 443', '', '', '', '']],
dict(port=5, ssh_timeout=15, username_password='dummy:pw'),
'',
)
Expand All @@ -105,7 +105,7 @@ def test_run_command_legacy_credential(self):
daemon = DummyWrapper(niceness=10)
scanid = daemon.create_scan(
None,
[['host.example.com', '80, 443', '', '', '']],
[['host.example.com', '80, 443', '', '', '', '']],
dict(port=5, ssh_timeout=15, username='dummy', password='pw'),
'',
)
Expand All @@ -132,7 +132,7 @@ def test_run_command_new_credential(self):

scanid = daemon.create_scan(
None,
[['host.example.com', '80, 443', cred_dict, '', '']],
[['host.example.com', '80, 443', cred_dict, '', '', '']],
dict(port=5, ssh_timeout=15),
'',
)
Expand All @@ -147,7 +147,7 @@ def test_run_command_no_credential(self):
daemon = DummyWrapper(niceness=10)
scanid = daemon.create_scan(
None,
[['host.example.com', '80, 443', '', '', '']],
[['host.example.com', '80, 443', '', '', '', '']],
dict(port=5, ssh_timeout=15),
'',
)
Expand Down

0 comments on commit f710afc

Please sign in to comment.