forked from p34709852/monkey
Realize the previous idea was stupid and aggregate all exploit attempts based on status alone
This commit is contained in:
parent
e7953defdc
commit
f7d66e0ebc
|
@ -34,19 +34,11 @@ def test_machine_exploited(telemetry_json):
|
||||||
)
|
)
|
||||||
status = STATUS_FAILED
|
status = STATUS_FAILED
|
||||||
|
|
||||||
# aggregate only passed tests (which means exploit failed). Each successful exploit gets its own finding.
|
AggregateFinding.create_or_add_to_existing(
|
||||||
if status == STATUS_FAILED:
|
test=TEST_MACHINE_EXPLOITED,
|
||||||
Finding.save_finding(
|
status=status,
|
||||||
test=TEST_MACHINE_EXPLOITED,
|
events=events
|
||||||
status=status,
|
)
|
||||||
events=events
|
|
||||||
)
|
|
||||||
else:
|
|
||||||
AggregateFinding.create_or_add_to_existing(
|
|
||||||
test=TEST_MACHINE_EXPLOITED,
|
|
||||||
status=status,
|
|
||||||
events=events
|
|
||||||
)
|
|
||||||
|
|
||||||
AggregateFinding.create_or_add_to_existing(
|
AggregateFinding.create_or_add_to_existing(
|
||||||
test=TEST_MALICIOUS_ACTIVITY_TIMELINE,
|
test=TEST_MALICIOUS_ACTIVITY_TIMELINE,
|
||||||
|
|
Loading…
Reference in New Issue