# Arco-IT GmbH MQP User Interface

## This user interface will allow the user to:

1. Import a data file to be analyzed (CSV)

    1a. Have the user select how many rows they wish to see
    
    1b. Have the user select which rows they would like to omit
2. Approve, Deny Specific Traffic
3. Generate Rules
4. Approve, Deny, or modify generated rules

In [1]:
print("Welcome to the Arco IT GmbH Official User Interface!")
print("--------------------------------------------------------")
print("To proceed, please upload a CSV file using the button provided to you.")
import ipywidgets as widgets
from IPython.display import display
import pandas as pd

#This is where the file upload button will be created
upload = widgets.FileUpload(
    description = 'Upload CSV',
    multiple = False,
    accept = '.csv'
)

#create upper buttons
devices_button = widgets.Button(description = 'Devices')
classifications_button = widgets.Button(description = 'Classifications')
applications_button = widgets.Button(description = 'Applications')
rules_button = widgets.Button(description = 'Rules')

#display buttons - in a horizontal fashion
display(widgets.HBox([widgets.VBox([upload])]))
#                      widgets.VBox([devices_button]),
#                      widgets.VBox([classifications_button]),
#                      widgets.VBox([applications_button]),
#                      widgets.VBox([rules_button])]))


Welcome to the Arco IT GmbH Official User Interface!
--------------------------------------------------------
To proceed, please upload a CSV file using the button provided to you.


HBox(children=(VBox(children=(FileUpload(value={}, accept='.csv', description='Upload CSV'),)),))

In [2]:
#this takes the resulting dictionary and assigns it to a variable 
uploaded_file_val = upload.value
if(len(uploaded_file_val) == 0):
    raise Exception("You must input a file")
#show that variable
#uploaded_file_val

In [3]:
#access whats important
file_name = next(iter(uploaded_file_val))
#we get the first element in the dictionary
uploaded_file_content = uploaded_file_val[file_name]['content']
#uploaded_file_content

In [4]:
#This gets the number of rows within the CSV
with open('inventory_data.csv') as counter:
    row_counter_with_header = sum(1 for line in counter)
row_counter_without_header = row_counter_with_header-1

In [5]:
import codecs
#decodes from bytes to list and splits the data accordingly
data = uploaded_file_content.decode('utf-8').splitlines()
#below line removes quotes from decoding by iterating through list
data = [i.replace('"', ' ') for i in data]
#data

In [6]:
import csv
import re

#This creates a csv file within the directory that has the original data
with open("inventory_data.csv", "w") as csv_file:
    writer = csv.writer(csv_file, delimiter = '\t')
    for line in data:
        writer.writerow(re.split('\s+,',line))

### There will be an interactive tab system that is configured for you to use with a few tools that will be worthwhile. Each tab represents options for the desired mode, and has tools for those modes.

In [18]:
#----------------------Device Setup-----------------
#This is a slider to select how many rows would like to be displayed
slider_result = widgets.IntSlider(
    value=1,
    min=1,
    max=row_counter_without_header, #we have to subtract here to include the header
    step=1,
    description='Rows:',
    disabled=False,
    continuous_update=False,
    orientation='horizontal',
    readout=True,
    readout_format='d'
)
#Creates the button for showing resulting CSV
show_csv_button = widgets.Button(description = 'Show CSV')


#Creates the text box for row omition
deny_list_input = widgets.Textarea(placeholder = "Separate the row values with commas",
                        description = "Rows: ",
                        disabled = False,
                        layout = widgets.Layout(width='auto', height='40px'))#auto adjusts size
    
#Creates the row drop button
drop_rows_button = widgets.Button(description = 'Drop Rows')

#generate the button for the graph
asset_connection_button = widgets.Button(description = "Generate Asset Connection Graph",
                                        layout = widgets.Layout(width='auto', height='40px'))
#This needs to be put somewhere else
#Whats happening is at this point all of the buttons become activated but we need to rerun everything
#to get the updated CSV

device_accordion_one = widgets.Accordion(children=[slider_result])
device_accordion_one.set_title(0, 'Slider For Selecting How Many Rows to View At Once')
device_accordion_one

#-----------------Classification Setup-----------------------------
#Creates the text box for IP Prefix
ip_prefix_area = widgets.Textarea(placeholder = "Input the IP Prefix",
                        description = "IP Prefix: ",
                        disabled = False,
                        layout = widgets.Layout(width='auto', height='auto'))#auto adjusts size
ip_values = [] #will be used to keep a store of ip's
#Creates the text box for Tag Name
tag_name_area = widgets.Textarea(placeholder = "Input the Tag Name",
                        description = "Name: ",
                        disabled = False,
                        layout = widgets.Layout(width='auto', height='auto'))#auto adjusts size
#Creates the text box for Tag Description
tag_description_area = widgets.Textarea(placeholder = "Input the Tag Description",
                        description = "Description: ",
                        disabled = False,
                        layout = widgets.Layout(width='auto', height='auto'))#auto adjusts size
row_combo =[]
#Creates the row add button
add_tag = widgets.Button(description = 'Add')

classification_accordion_one = widgets.Accordion(children=[widgets.HBox([widgets.VBox([ip_prefix_area]),
                                                                                widgets.VBox([tag_name_area]),
                                                                                widgets.VBox([tag_description_area])])])

classification_accordion_one.set_title(0, 'Text Boxes for Tag Configuration')
classification_accordion_one
#-----------------Application Setup-----------------------------
#Creates the text box for Port
port_area = widgets.Textarea(placeholder = "Input the Port Number",
                        description = "Port: ",
                        disabled = False,
                        layout = widgets.Layout(width='auto', height='auto'))#auto adjusts size
#Creates the dropdown for protocol
protocol_dropdown = widgets.Dropdown(options = ['TCP', 'UDP'],
                                     description = 'Protocol',
                                    layout = widgets.Layout(width='auto', height='auto'))
                                     
#Creates the text box for App Name
app_name_area = widgets.Textarea(placeholder = "Input the Application Name",
                        description = "Name: ",
                        disabled = False,
                        layout = widgets.Layout(width='auto', height='auto'))#auto adjusts size
#Creates the text box for App Description
app_description_area = widgets.Textarea(placeholder = "Input the Application Description",
                        description = "Description: ",
                        disabled = False,
                        layout = widgets.Layout(width='auto', height='auto'))#auto adjusts size
#Creates the row add button
add_app = widgets.Button(description = 'Add')

application_accordion_one = widgets.Accordion(children=[widgets.HBox([widgets.VBox([port_area]),
                                                                      widgets.VBox([protocol_dropdown]),
                                                                                widgets.VBox([app_name_area]),
                                                                                widgets.VBox([app_description_area])])])

application_accordion_one.set_title(0, 'Text Boxes for Application Configuration')
application_accordion_one

#------------------Phase 1 Tab-----------------------------------

tab_nest = widgets.Tab()
#The line right below this one has placeholders
tab_nest.children = [device_accordion_one, classification_accordion_one, application_accordion_one, device_accordion_one]
tab_nest.set_title(0, 'Device Options')
tab_nest.set_title(1, 'Classification Options')
tab_nest.set_title(2, 'Application Options')
tab_nest.set_title(3, 'Rule Options')
tab_nest


Tab(children=(Accordion(children=(IntSlider(value=1, continuous_update=False, description='Rows:', max=1874, m…

In [8]:
#------------Creates the CSV for tags------------------
header = ['IP-Prefixes', 'Name', 'Description', 'Matched Devices']
#ip_values.append(ip_prefix_area.value)
#counter = 0
#for s in ip_values:
#    if(ip_prefix_area == s):
#        counter++

row_combo.append([ip_prefix_area.value, tag_name_area.value, tag_description_area.value,0])

def add_row(a):
    with open("tag_classifications.csv", "w", newline='') as f:
        tag_writer = csv.writer(f, delimiter=',')
        tag_writer.writerow(header) # write header
        for lines in row_combo:
            tag_writer.writerow(lines)
    tag_classification_csv = pd.read_csv('tag_classifications.csv')
    display(tag_classification_csv)
add_tag.on_click(add_row)

In [9]:
##This is where we will compare tags to original data

In [10]:
original_csv = pd.read_csv('inventory_data.csv', skiprows = range(1,(row_counter_with_header - slider_result.value)))

def show_csv(b):
    display(original_csv)

show_csv_button.on_click(show_csv)
#print("Use the slider above to select how many rows of data you would like to see then click on the devices button up top.")

In [11]:
#display(drop_rows_button)
def drop_rows(a):
    if(deny_list[0]==''):
        raise Exception("This button cannot be used if there is no text input.")
    #drop the selected rows from the dataset
    original_csv.drop(original_csv.index[deny_list_ints], inplace = True)
    display(original_csv)

drop_rows_button.on_click(drop_rows)

In [12]:
#This creates another csv file within the directory that has the modified data
with open("inventory_data.csv", "w") as csv_file:
    writer = csv.writer(csv_file, delimiter = '\t')
    for line in data:
        writer.writerow(re.split('\s+,',line))

In [13]:
#Imports for connection graph
import pandas as pd
import networkx as nx
import matplotlib.pyplot as plt
from matplotlib.axes._axes import _log as matplotlib_axes_logger

#display(asset_connection_button)

def generate_asset_connection_graph(b):
    matplotlib_axes_logger.setLevel('ERROR')

    common_port_cutoff = 1024

    flow_data = pd.read_csv('sample_data/sample_data.csv', header=0)
    ip_data = pd.read_csv('sample_data/ip_inventory.csv', header=0, index_col=0)

    def map_ips_to_col(address_name, col_name):
        site_list = []
        for ip in flow_data[address_name]:
            try:
                name = ip_data.at[ip, col_name]
                site_list.append(name)
            except:
                site_list.append(pd.NaT)
        return pd.DataFrame(site_list, columns=[address_name])

    site_a = map_ips_to_col('Address A', 'Plant Area')
    site_b = map_ips_to_col('Address B', 'Plant Area')
    port_a = flow_data['Port A']
    port_b = flow_data['Port B']

    data = pd.concat([site_a, port_a, site_b, port_b], 1)
    data = data.dropna()

    #print('Data loaded')

    main_graph = {}
    for i, d in data.iterrows():
        ports = []
        if d['Port A'] <= common_port_cutoff:
            ports.append(d['Port A'])
        if d['Port B'] <= common_port_cutoff:
            ports.append(d['Port B'])
        if d['Address A'] in main_graph:
            connections = main_graph[d['Address A']]
            if d['Address B'] in connections:
                used_ports = connections[d['Address B']]
                for p in ports:
                    if not p in used_ports:
                        used_ports.append(p)
            elif len(ports) > 0:
                connections[d['Address B']] = ports
        elif len(ports) > 0:
            main_graph[d['Address A']] = {d['Address B']: ports}

    #print('Main graph created')

    inter_graph = {}
    ip_a = flow_data['Address A']
    ip_b = flow_data['Address B']
    for i in range(site_a.shape[0]):
        site_a_i = site_a['Address A'][i]
        ports = []
        if port_a[i] <= common_port_cutoff:
            ports.append(port_a[i])
        if port_b[i] <= common_port_cutoff:
            ports.append(port_b[i])
        if site_a_i == site_b['Address B'][i]:
            ip_a_i = ip_a[i]
            ip_b_i = ip_b[i]
            if site_a_i in inter_graph:
                if ip_a_i in inter_graph[site_a_i]:
                    if ip_b_i in inter_graph[site_a_i][ip_a_i]:
                        used_ports = inter_graph[site_a_i][ip_a_i][ip_b_i]
                        for p in ports:
                            if not p in used_ports:
                                used_ports.append(p)
                    elif len(ports) > 0:
                        inter_graph[site_a_i][ip_a_i][ip_b_i] = ports
                elif len(ports) > 0:
                    inter_graph[site_a_i][ip_a_i] = {ip_b_i: ports}
            elif len(ports) > 0:
                inter_graph[site_a_i] = {ip_a_i: {ip_b_i: ports}}

    #print('Internal graphs created')

    def formate_node_label(label):
        if label == 'Other ProcN Devices':
            return 'Other ProcN\n Devices'
        if label == 'EAF Dust Washing':
            return 'EAF Dust\nWashing'
        return label

    def plot_graph(graph_name, graph, fig_size):
        vis_graph = nx.DiGraph()
        edge_labels = {}
        for k0, v0 in graph.items():
            for k1, v1 in v0.items():
                if k0 != k1:
                    if len(v1) > 0:
                        vis_graph.add_edge(k1, k0)
                        edge_labels[(k0, k1)] = ', '.join(map(str, v1))

        pos = nx.kamada_kawai_layout(vis_graph)
        fig = plt.figure(figsize=fig_size, dpi=300)
        nx.draw(vis_graph, pos, node_size=5500, node_color=[0.9,0.9,0.9], labels={node:formate_node_label(str(node)) for node in vis_graph.nodes()}, font_size=10, edgecolors='black')
        nx.draw_networkx_edge_labels(vis_graph, pos, edge_labels=edge_labels)

        plt.savefig('output/asset_connection_' + graph_name + '.png')

    plot_graph('Main', main_graph, (9, 9))
    #print('Plotted main graph')

    for site, connections in inter_graph.items():
        plot_graph(site, connections, (7, 7))
        #print('Plotted ' + site + ' internal graph')
    
asset_connection_button.on_click(generate_asset_connection_graph)


### There have been a few more tools generated:
 - A button to show the resulting CSV file.
 - A text box to insert rows that you would like to remove. 
**Keep in mind, the numbers have to be separated with commas and they follow 0 based indexxing. So, typing 0 into the box aims to eliminate the first row of the CSV, typing 1 aims for the second row, so on and so fourth.**

In [14]:
#------------------Device Setup----------
device_accordion_two = widgets.Accordion(children=[show_csv_button, deny_list_input])
device_accordion_two.set_title(0, 'Button To Show the Resulting CSV')
device_accordion_two.set_title(1, 'Text Box To Remove Rows')
device_accordion_two

#------------------Classification Setup----------
classification_accordion_two = widgets.Accordion(children=[add_tag])

classification_accordion_two.set_title(0, 'Button to Add Tag and Show Resulting CSV')
classification_accordion_two
tab_nest = widgets.Tab()
#------------------Application Setup----------
application_accordion_two = widgets.Accordion(children=[add_app])

application_accordion_two.set_title(0, 'Button to Add Application and Show Resulting CSV')
application_accordion_two
#-----------------Tab Creation----------------
tab_nest = widgets.Tab()
#The line right below this one has placeholders
tab_nest.children = [device_accordion_two, classification_accordion_two, application_accordion_two, device_accordion_two]
tab_nest.set_title(0, 'Device Options')
tab_nest.set_title(1, 'Classification Options')
tab_nest.set_title(2, 'Application Options')
tab_nest.set_title(3, 'Rule Options')
tab_nest

Tab(children=(Accordion(children=(Button(description='Show CSV', style=ButtonStyle()), Textarea(value='', desc…

In [15]:
if(deny_list_input.value!=''):
    #separate variables
    deny_list = deny_list_input.value.split(",")
    #convert into integers
    deny_list_ints = [int(i) for i in deny_list]
    #deny_list_ints #this just shows what the contents are
else:
    deny_list = deny_list_input.value.split(",")
    deny_list_ints =[0]

### This is the final wave for the device side of things. There a few things here:
 - A button to drop the selected rows from the previous step
 - A button to generate an asset connection graph

In [16]:
#because the buttons are created before, the accordion comes after so it can do something
device_accordion_three = widgets.Accordion(children=[drop_rows_button, asset_connection_button])
device_accordion_three.set_title(0, 'Button to Drop Rows and Show Resulting CSV')
device_accordion_three.set_title(1, 'Button for Generating Asset Graph')
device_accordion_three
tab_nest = widgets.Tab()
#The line right below this one has placeholders
tab_nest.children = [device_accordion_three]#, device_accordion_three, device_accordion_three, device_accordion_three]
tab_nest.set_title(0, 'Device Options')
#tab_nest.set_title(1, 'Classification Options')
#tab_nest.set_title(2, 'Application Options')
#tab_nest.set_title(3, 'Rule Options')
tab_nest

Tab(children=(Accordion(children=(Button(description='Drop Rows', style=ButtonStyle()), Button(description='Ge…