Ryan Prather
52159a16a6
Import was deleted because export was changed to JSON format instead of XML, will have to rebuild
338 lines
11 KiB
PHP
338 lines
11 KiB
PHP
<?php
|
|
|
|
/**
|
|
* File: ste_export_import.php
|
|
* Author: Ryan Prather
|
|
* Purpose: Export ST&E data
|
|
* Created: Feb 11, 2014
|
|
*
|
|
* Portions Copyright 2016-2017: Cyber Perspectives, All rights reserved
|
|
* Released under the Apache v2.0 License
|
|
*
|
|
* Portions Copyright (c) 2012-2015, Salient Federal Solutions
|
|
* Portions Copyright (c) 2008-2011, Science Applications International Corporation (SAIC)
|
|
* Released under Modified BSD License
|
|
*
|
|
* See license.txt for details
|
|
*
|
|
* Change Log:
|
|
* - Feb 11, 2014 - File created
|
|
* - Sep 1, 2016 - Updated copyright and update scan constructor to use source object instead of source ID
|
|
* - Nov 7, 2016 - Fix bug with reading source ID
|
|
* - Apr 5, 2017 - Formatting
|
|
* - Dec 19, 2017 - Converted from XML to JSON format export/import
|
|
* - Jan 16, 2018 - Updated to use host_list class
|
|
* - Nov 19, 2018 - Fixed bug from changes to get_Category_Findings method
|
|
*
|
|
* @TODO - Change to export and import CPE
|
|
*/
|
|
include_once 'config.inc';
|
|
include_once 'helper.inc';
|
|
include_once 'database.inc';
|
|
|
|
$db = new db();
|
|
|
|
$cmd = getopt("f::", [
|
|
"import::",
|
|
"export::"
|
|
]);
|
|
|
|
if (isset($_REQUEST['export'])) {
|
|
if (! isset($_REQUEST['ste'])) {
|
|
print "You must select an ST&E <a href='javascript:void(0);' onclick='javascript:history.go(-1);'>Back</a>";
|
|
exit();
|
|
}
|
|
|
|
if ($_REQUEST['export'] == 'Export STE') {
|
|
export_STE();
|
|
} elseif ($_REQUEST['export'] == 'Export Host List') {
|
|
export_Host_List();
|
|
}
|
|
} elseif (isset($cmd['import'])) {
|
|
import_STE();
|
|
} else {
|
|
print "Usage: php ste_export_import.php -f=\"{path_to_ste_import_file}\" --import" . PHP_EOL;
|
|
}
|
|
|
|
/**
|
|
* Function to export an ST&E
|
|
*/
|
|
function export_STE()
|
|
{
|
|
set_time_limit(0);
|
|
global $db;
|
|
|
|
$log = new Sagacity_Error("STE_Export.log");
|
|
|
|
$ste = $db->get_STE($_REQUEST['ste'])[0];
|
|
$json = [
|
|
'ste' => [
|
|
'id' => $ste->get_ID(),
|
|
'system_id' => $ste->get_System()->get_ID(),
|
|
'site_id' => $ste->get_Site()->get_ID(),
|
|
'eval_start' => $ste->get_Eval_Start_Date()->format("Y-m-d"),
|
|
'eval_end' => $ste->get_Eval_End_Date()->format("Y-m-d")
|
|
],
|
|
'systems' => [],
|
|
'site' => [],
|
|
'ste_cats' => [],
|
|
'targets' => [],
|
|
'scans' => [],
|
|
'tech_findings' => [],
|
|
'proc_findings' => []
|
|
];
|
|
|
|
$system_arr = $db->get_System($ste->get_System()
|
|
->get_ID());
|
|
foreach ($system_arr as $sys) {
|
|
$json['systems'][] = [
|
|
'id' => $sys->get_ID(),
|
|
'name' => $sys->get_Name(),
|
|
'mac' => $sys->get_MAC(),
|
|
'classification' => $sys->get_Classification(),
|
|
'abbr' => $sys->get_Abbreviation(),
|
|
'exec-summary' => $sys->get_Executive_Summary(),
|
|
'accrediation-type' => $sys->get_Accreditation_Type(),
|
|
'desc' => $sys->get_Description(),
|
|
'mitigations' => $sys->get_Mitigations()
|
|
];
|
|
}
|
|
|
|
$json['site'] = [
|
|
'id' => $ste->get_Site()->get_ID(),
|
|
'name' => $ste->get_Site()->get_Name(),
|
|
'address' => $ste->get_Site()->get_Address(),
|
|
'city' => $ste->get_Site()->get_City(),
|
|
'state' => $ste->get_Site()->get_State(),
|
|
'zip' => $ste->get_Site()->get_Zip(),
|
|
'country' => $ste->get_Site()->get_Country(),
|
|
'poc' => $ste->get_Site()->get_POC_Name(),
|
|
'email' => $ste->get_Site()->get_POC_Email(),
|
|
'phone' => $ste->get_Site()->get_POC_Phone()
|
|
];
|
|
|
|
$cat_arr = $db->get_STE_Cat_List($ste->get_ID());
|
|
foreach ($cat_arr as $cat) {
|
|
$json['ste_cats'][] = [
|
|
'id' => $cat->get_ID(),
|
|
'ste_id' => $cat->get_STE_ID(),
|
|
'name' => $cat->get_Name(),
|
|
'analyst' => $cat->get_Analyst()
|
|
];
|
|
}
|
|
|
|
$all_findings = [];
|
|
$targets_arr = $db->get_Target_Details($ste->get_ID());
|
|
$used_cats = [];
|
|
if (empty($targets_arr)) {
|
|
$log->script_log("There are no targets in the ST&E", E_ERROR);
|
|
}
|
|
foreach ($targets_arr as $tgt) {
|
|
if (! in_array($tgt->get_Cat_ID(), $used_cats)) {
|
|
$all_findings = array_merge($all_findings, $db->get_Category_Findings($tgt->get_Cat_ID()));
|
|
$used_cats[] = $tgt->get_Cat_ID();
|
|
}
|
|
$os = $db->get_Software($tgt->get_OS_ID())[0];
|
|
|
|
$tgt_node = [
|
|
'id' => $tgt->get_ID(),
|
|
'ste_id' => $tgt->get_STE_ID(),
|
|
'cat_id' => $tgt->get_Cat_ID(),
|
|
'os_id' => $tgt->get_OS_ID(),
|
|
'os_string' => $tgt->get_OS_String(),
|
|
'os_man' => $os->get_Man(),
|
|
'os_name' => $os->get_Name(),
|
|
'os_ver' => $os->get_Version(),
|
|
'name' => $tgt->get_Name(),
|
|
'location' => $tgt->get_Location(),
|
|
'source' => $tgt->get_Source(),
|
|
'pp_flag' => '0',
|
|
'pp_off' => '1',
|
|
'login' => $tgt->get_Login(),
|
|
'class' => $tgt->classification,
|
|
'status' => [
|
|
'auto' => $tgt->get_Auto_Status_ID(),
|
|
'manual' => $tgt->get_Man_Status_ID(),
|
|
'data' => $tgt->get_Data_Status_ID(),
|
|
'fp_cat1' => $tgt->get_FP_Cat1_Status_ID()
|
|
],
|
|
'notes' => $tgt->get_Notes(),
|
|
'netstat' => $tgt->get_Netstat_Connections(),
|
|
'missing_patches' => $tgt->get_Missing_Patches(),
|
|
'interfaces' => [],
|
|
'software_list' => [],
|
|
'checklist_list' => []
|
|
];
|
|
|
|
foreach ($tgt->interfaces as $int) {
|
|
$int_node = [
|
|
'id' => $int->get_ID(),
|
|
'name' => $int->get_Name(),
|
|
'ipv4' => $int->get_IPv4(),
|
|
'ipv6' => $int->get_IPv6(),
|
|
'hostname' => $int->get_Hostname(),
|
|
'fqdn' => $int->get_FQDN(),
|
|
'desc' => $int->get_Description(),
|
|
'tcp_ports' => [],
|
|
'udp_ports' => []
|
|
];
|
|
|
|
foreach ($int->get_TCP_Ports() as $tcp) {
|
|
$int_node['tcp_ports'][] = [
|
|
'number' => $tcp->get_Port(),
|
|
'name' => $tcp->get_IANA_Name(),
|
|
'banner' => $tcp->get_Banner(),
|
|
'notes' => $tcp->get_Notes()
|
|
];
|
|
}
|
|
|
|
foreach ($int->get_UDP_Ports() as $udp) {
|
|
$int_node['udp_ports'][] = [
|
|
'number' => $udp->get_Port(),
|
|
'name' => $udp->get_IANA_Name(),
|
|
'banner' => $udp->get_Banner(),
|
|
'notes' => $udp->get_Notes()
|
|
];
|
|
}
|
|
|
|
$tgt_node['interfaces'][] = $int_node;
|
|
}
|
|
|
|
foreach ($tgt->software as $sw) {
|
|
$tgt_node['software_list'][] = [
|
|
'id' => $sw->get_ID(),
|
|
'man' => $sw->get_Man(),
|
|
'name' => $sw->get_Name(),
|
|
'ver' => $sw->get_Version(),
|
|
'string' => $sw->get_SW_String(),
|
|
'short_string' => $sw->get_Shortened_SW_String()
|
|
];
|
|
}
|
|
|
|
foreach ($tgt->checklists as $chk) {
|
|
$tgt_node['checklist_list'][] = [
|
|
'id' => $chk->get_ID(),
|
|
'checklist_id' => $chk->get_Checklist_ID(),
|
|
'type' => $chk->get_type(),
|
|
'class' => $chk->get_Classification(),
|
|
'version' => $chk->get_Version(),
|
|
'release' => $chk->get_Release()
|
|
];
|
|
}
|
|
|
|
$json['targets'][] = $tgt_node;
|
|
}
|
|
|
|
if (! is_null($scan_arr = $db->get_ScanData($ste->get_ID()))) {
|
|
foreach ($scan_arr as $scan) {
|
|
$scan_node = [
|
|
'id' => $scan->get_ID(),
|
|
'ste_id' => $scan->get_STE()->get_ID(),
|
|
'src_id' => $scan->get_Source()->get_ID(),
|
|
'itr' => $scan->get_Itr(),
|
|
'file_name' => $scan->get_File_Name(),
|
|
'file_date' => $scan->get_File_Date(),
|
|
'host_list' => []
|
|
];
|
|
|
|
foreach ($scan->get_Host_List() as $host) {
|
|
/** @var host_list $host */
|
|
$scan_node['host_list'][] = [
|
|
'tgt_id' => $host->getTargetId(),
|
|
'tgt_name' => $host->getTargetName(),
|
|
'count' => $host->getFindingCount()
|
|
];
|
|
}
|
|
|
|
$json['scans'][] = $scan_node;
|
|
}
|
|
}
|
|
|
|
foreach ($all_findings as $data) {
|
|
foreach ($data['stigs'] as $stig_id => $data2) {
|
|
$stig = $db->get_Stig($stig_id);
|
|
if (is_array($stig) && count($stig) && isset($stig[0]) && is_a($stig[0], 'stig')) {
|
|
$stig = $stig[0];
|
|
} else {
|
|
continue;
|
|
}
|
|
|
|
$ec = $db->get_eChecklist($stig, $data2['chk_id']);
|
|
|
|
$find_node = [
|
|
'stig_id' => $stig->get_ID(),
|
|
'vms_id' => $ec->get_VMS_ID(),
|
|
'cat' => $ec->get_Cat_Level(),
|
|
'short_title' => $ec->get_Short_Title(),
|
|
'check_contents' => $ec->get_Check_Contents(),
|
|
'notes' => trim($data2['echecklist']->get_Notes()),
|
|
'target_status' => [],
|
|
'ia_controls' => $data2['echecklist']->get_IA_Controls()
|
|
];
|
|
|
|
unset($data['stigs'][$stig_id]['echecklist']);
|
|
unset($data['stigs'][$stig_id]['chk_id']);
|
|
|
|
foreach ($data['stigs'][$stig_id] as $host_name => $status) {
|
|
$find_node['target_status'][] = [
|
|
'tgt_name' => $host_name,
|
|
'status' => $status,
|
|
//'scan_id' => $finding->get_Scan_ID()
|
|
];
|
|
}
|
|
|
|
$json['tech_findings'][] = $find_node;
|
|
}
|
|
}
|
|
|
|
header(JSON);
|
|
header('Content-disposition: attachment; filename="' . $sys->get_Name() . '-' . $ste->get_Site()->get_Name() . '-ste-export.json"');
|
|
print json_encode($json, JSON_PRETTY_PRINT);
|
|
}
|
|
|
|
/**
|
|
* Function to export the hosts in an ST&E
|
|
*/
|
|
function export_Host_List()
|
|
{
|
|
global $db;
|
|
$csv = "Target ID,Name,HostName,IPv4,FQDN,OS" . PHP_EOL;
|
|
|
|
$ste = $db->get_STE($_REQUEST['ste'])[0];
|
|
|
|
$tgts = $db->get_Target_Details($_REQUEST['ste']);
|
|
|
|
foreach ($tgts as $tgt) {
|
|
$csv .= $tgt->get_ID() . "," . $tgt->get_Name() . ",";
|
|
|
|
$int_str = '';
|
|
$fqdn_str = '';
|
|
$host_str = '';
|
|
foreach ($tgt->interfaces as $int) {
|
|
/** @var interfaces $int */
|
|
$host_str .= $int->get_Hostname() . ",";
|
|
$int_str .= $int->get_IPv4() . ",";
|
|
$fqdn_str .= $int->get_FQDN() . ",";
|
|
}
|
|
$host_str = substr($host_str, 0, - 1);
|
|
$int_str = substr($int_str, 0, - 1);
|
|
$fqdn_str = substr($fqdn_str, 0, - 1);
|
|
|
|
$csv .= "\"$host_str\",\"$int_str\",\"$fqdn_str\",";
|
|
|
|
$os = $db->get_Software($tgt->get_OS_ID())[0];
|
|
$csv .= $os->get_Man() . " " . $os->get_Name() . " " . $os->get_Version() . PHP_EOL;
|
|
}
|
|
|
|
header('Content-type: plain/text');
|
|
header('Content-disposition: attachment; filename="' . $ste->get_System()->get_Name() . '-' . $ste->get_Site()->get_Name() . '-host-list.csv"');
|
|
print $csv;
|
|
}
|
|
|
|
/**
|
|
* Function to import an ST&E
|
|
*/
|
|
function import_STE()
|
|
{
|
|
}
|