p15670423
/
monkey
1
0
Fork 5
Code Issues Pull Requests 3 Projects Releases Wiki Activity

Add mongo query to count successful PBA attempts

This commit is contained in:
Shreya 2020-07-04 15:29:25 +05:30
parent 8c18731b45
commit e12374b7d3
1 changed files with 6 additions and 5 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

11
monkey/monkey_island/cc/services/attack/technique_reports/T1136.py
View File

@ -26,11 +26,12 @@ class T1136(AttackTechnique):
create_user_info = list(mongo.db.telemetry.aggregate(T1136.query)) create_user_info = list(mongo.db.telemetry.aggregate(T1136.query))
status = [] status = ScanStatus.UNSCANNED.value
for pba_node in create_user_info: if create_user_info:
status.append(pba_node['result'][1]) successful_PBAs = mongo.db.telemetry.count({'$or': [{'data.name': POST_BREACH_BACKDOOR_USER},
status = (ScanStatus.USED.value if any(status) else ScanStatus.SCANNED.value)\ {'data.name': POST_BREACH_COMMUNICATE_AS_NEW_USER}],
if status else ScanStatus.UNSCANNED.value 'data.result.1': True})
status = ScanStatus.USED.value if successful_PBAs else ScanStatus.SCANNED.value
data.update(T1136.get_base_data_by_status(status)) data.update(T1136.get_base_data_by_status(status))
data.update({'info': create_user_info}) data.update({'info': create_user_info})