Skip to content
This repository has been archived by the owner on Nov 29, 2021. It is now read-only.

Extend osp to accept target options. #194

Merged
merged 8 commits into from
Jan 18, 2020
Merged

Extend osp to accept target options. #194

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
8 commits
Select commit Hold shift + click to select a range
741fab7
Extend osp to accept target options.
jjnicola Jan 16, 2020
bc0dd18
Add support for options to target list
jjnicola Jan 16, 2020
1a522bc
Add method to get target options
jjnicola Jan 16, 2020
e8e99ee
Add method wrapper to get target options
jjnicola Jan 16, 2020
554faea
Update tests
jjnicola Jan 16, 2020
35fa8cb
Update documentation
jjnicola Jan 17, 2020
4164bf2
Update changelog
jjnicola Jan 17, 2020
c92058b
Add test for target options
jjnicola Jan 17, 2020
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
1 change: 1 addition & 0 deletions CHANGELOG.md
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -9,6 +9,7 @@ The format is based on [Keep a Changelog](https://keepachangelog.com/en/1.0.0/).
### Added
- Add solution method to solution of vt object. [#166](https://github.com/greenbone/ospd/pull/166)
- Add wait_for_children(). [#167](https://github.com/greenbone/ospd/pull/167)
- Extend osp to accept target options. [#194](https://github.com/greenbone/ospd/pull/194)

### Changes
- Modify __init__() method and use new syntax for super(). [#186](https://github.com/greenbone/ospd/pull/186)
Expand Down
7 changes: 7 additions & 0 deletions doc/OSP.xml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -179,6 +179,7 @@ Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
<e>credentials</e>
<e>exclude_hosts</e>
<e>finished_hosts</e>
<e>alive_test</e>
</pattern>
<ele>
<name>hosts</name>
Expand Down Expand Up @@ -209,12 +210,18 @@ Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
</summary>
<type>string</type>
</ele>
<ele>
<name>alive_test</name>
<summary>Alive test type to be performed against the target.</summary>
<type>string</type>
</ele>
<example>
<summary>Target without credentials.</summary>
<e>
<target>
<hosts>example.org</hosts>
<ports>T:22,U:5060</ports>
<alive_test>0</alive_test>
</target>
</e>
</example>
Expand Down
16 changes: 13 additions & 3 deletions ospd/misc.py
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -268,11 +268,11 @@ def create_scan(
scan_info = self.data_manager.dict() # type: Dict
scan_info['results'] = list()
scan_info['finished_hosts'] = dict(
[[target, []] for target, _, _, _, _ in targets]
[[target, []] for target, _, _, _, _, _ in targets]
)
scan_info['progress'] = 0
scan_info['target_progress'] = dict(
[[target, {}] for target, _, _, _, _ in targets]
[[target, {}] for target, _, _, _, _, _ in targets]
)
scan_info['targets'] = targets
scan_info['vts'] = vts
Expand Down Expand Up @@ -371,7 +371,7 @@ def get_target_list(self, scan_id: str) -> List:
""" Get a scan's target list. """

target_list = []
for target, _, _, _, _ in self.scans_table[scan_id]['targets']:
for target, _, _, _, _, _ in self.scans_table[scan_id]['targets']:
target_list.append(target)
return target_list

Expand Down Expand Up @@ -413,6 +413,16 @@ def get_credentials(self, scan_id: str, target: str):
if target == item[0]:
return item[2]

def get_target_options(self, scan_id: str, target: str):
""" Get a scan's target option dictionary.
It return dictionary with the corresponding options for
a given target.
"""
if target:
for item in self.scans_table[scan_id]['targets']:
if target == item[0]:
return item[5]

def get_vts(self, scan_id: str):
""" Get a scan's vts list. """

Expand Down
31 changes: 24 additions & 7 deletions ospd/ospd.py
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -526,6 +526,7 @@ def process_targets_element(cls, scanner_target) -> List:
<hosts>localhosts</hosts>
<exclude_hosts>localhost1</exclude_hosts>
<ports>80,443</ports>
<alive_test></alive_test>
</target>
<target>
<hosts>192.168.0.0/24</hosts>
Expand All @@ -543,14 +544,15 @@ def process_targets_element(cls, scanner_target) -> List:
</target>
</targets>

@return: A list of [hosts, port, {credentials}, exclude_hosts] list.
@return: A list of [hosts, port, {credentials}, exclude_hosts, options] list.
Example form:
[['localhosts', '80,43', '', 'localhosts1'],
[['localhosts', '80,43', '', 'localhosts1',
{'alive_test': 'ALIVE_TEST_CONSIDER_ALIVE'}],
['192.168.0.0/24', '22', {'smb': {'type': type,
'port': port,
'username': username,
'password': pass,
}}], '']
}}, '', {}]]
"""

target_list = []
Expand All @@ -559,6 +561,7 @@ def process_targets_element(cls, scanner_target) -> List:
finished_hosts = ''
ports = ''
credentials = {} # type: Dict
options = {}
for child in target:
if child.tag == 'hosts':
hosts = child.text
Expand All @@ -570,9 +573,18 @@ def process_targets_element(cls, scanner_target) -> List:
ports = child.text
if child.tag == 'credentials':
credentials = cls.process_credentials_elements(child)
if child.tag == 'alive_test':
options['alive_test'] = child.text
if hosts:
target_list.append(
[hosts, ports, credentials, exclude_hosts, finished_hosts]
[
hosts,
ports,
credentials,
exclude_hosts,
finished_hosts,
options,
]
)
else:
raise OspdCommandError('No target to scan', 'start_scan')
Expand All @@ -598,7 +610,7 @@ def handle_start_scan_command(self, scan_et) -> str:
else:
scan_targets = []
for single_target in target_str_to_list(target_str):
scan_targets.append([single_target, ports_str, '', '', ''])
scan_targets.append([single_target, ports_str, '', '', '', ''])

scan_id = scan_et.attrib.get('scan_id')
if scan_id is not None and scan_id != '' and not valid_uuid(scan_id):
Expand Down Expand Up @@ -874,7 +886,7 @@ def calculate_progress(self, scan_id: str) -> float:
def process_exclude_hosts(self, scan_id: str, target_list: List) -> None:
""" Process the exclude hosts before launching the scans."""

for target, _, _, exclude_hosts, _ in target_list:
for target, _, _, exclude_hosts, _, _ in target_list:
exc_hosts_list = ''
if not exclude_hosts:
continue
Expand All @@ -888,7 +900,7 @@ def process_finished_hosts(self, scan_id: str, target_list: List) -> None:
Set finished hosts as finished with 100% to calculate
the scan progress."""

for target, _, _, _, finished_hosts in target_list:
for target, _, _, _, finished_hosts, _ in target_list:
exc_hosts_list = ''
if not finished_hosts:
continue
Expand Down Expand Up @@ -1857,6 +1869,11 @@ def get_scan_credentials(self, scan_id: str, target: str = '') -> Dict:
the credential list for the given target. """
return self.scan_collection.get_credentials(scan_id, target)

def get_scan_target_options(self, scan_id: str, target: str = '') -> Dict:
""" Gives a scan's target option dict. If a target is passed gives
the credential list for the given target. """
return self.scan_collection.get_target_options(scan_id, target)

def get_scan_vts(self, scan_id: str) -> Dict:
""" Gives a scan's vts list. """
return self.scan_collection.get_vts(scan_id)
Expand Down
20 changes: 20 additions & 0 deletions tests/test_scan_and_result.py
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -952,6 +952,7 @@ def test_scan_multi_target(self):
'<targets><target>'
'<hosts>localhosts</hosts>'
'<ports>80,443</ports>'
'<alive_test>0</alive_test>'
'</target>'
'<target><hosts>192.168.0.0/24</hosts>'
'<ports>22</ports></target></targets>'
Expand Down Expand Up @@ -1021,6 +1022,25 @@ def test_scan_get_target(self):
scan_res = response.find('scan')
self.assertEqual(scan_res.get('target'), 'localhosts,192.168.0.0/24')

def test_scan_get_target_options(self):
daemon = DummyWrapper([])
response = secET.fromstring(
daemon.handle_command(
'<start_scan>'
'<scanner_params /><vts><vt id="1.2.3.4" />'
'</vts>'
'<targets>'
'<target><hosts>192.168.0.1</hosts>'
'<ports>22</ports><alive_test>0</alive_test></target>'
'</targets>'
'</start_scan>'
)
)
scan_id = response.findtext('id')
time.sleep(1)
target_options = daemon.get_scan_target_options(scan_id, '192.168.0.1')
self.assertEqual(target_options, {'alive_test': '0'})

def test_scan_get_finished_hosts(self):
daemon = DummyWrapper([])
response = secET.fromstring(
Expand Down
8 changes: 4 additions & 4 deletions tests/test_ssh_daemon.py
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -89,7 +89,7 @@ def test_run_command(self):
daemon = DummyWrapper(niceness=10)
scanid = daemon.create_scan(
None,
[['host.example.com', '80, 443', '', '', '']],
[['host.example.com', '80, 443', '', '', '', '']],
dict(port=5, ssh_timeout=15, username_password='dummy:pw'),
'',
)
Expand All @@ -105,7 +105,7 @@ def test_run_command_legacy_credential(self):
daemon = DummyWrapper(niceness=10)
scanid = daemon.create_scan(
None,
[['host.example.com', '80, 443', '', '', '']],
[['host.example.com', '80, 443', '', '', '', '']],
dict(port=5, ssh_timeout=15, username='dummy', password='pw'),
'',
)
Expand All @@ -132,7 +132,7 @@ def test_run_command_new_credential(self):

scanid = daemon.create_scan(
None,
[['host.example.com', '80, 443', cred_dict, '', '']],
[['host.example.com', '80, 443', cred_dict, '', '', '']],
dict(port=5, ssh_timeout=15),
'',
)
Expand All @@ -147,7 +147,7 @@ def test_run_command_no_credential(self):
daemon = DummyWrapper(niceness=10)
scanid = daemon.create_scan(
None,
[['host.example.com', '80, 443', '', '', '']],
[['host.example.com', '80, 443', '', '', '', '']],
dict(port=5, ssh_timeout=15),
'',
)
Expand Down