Mike Salvatore
c89416f256
Merge pull request #1318 from guardicore/ransomware_quickstart_endpoint
...
Ransomware quickstart endpoint
2021-07-13 11:05:23 -04:00
Mike Salvatore
84a78a5048
Island: Don't catch Exception in POST /api/island-mode
...
Flask automatically traps exceptions, returns a 500, and logs a stack
trace. Since Flask will automatically return a 500, we don't need to
duplicate the functionality. Since it prints a stack trace, it provides
more useful information than catching it did.
2021-07-13 11:02:18 -04:00
Mike Salvatore
a0fb6fa2b6
Island: Return 400 from POST /api/island_mode on invalid JSON
2021-07-13 10:58:08 -04:00
Mike Salvatore
26d3782a66
Island: Test both "ransomware" and "advanced" modes
2021-07-13 10:49:15 -04:00
Mike Salvatore
7549e64b41
Island: Return 500 from POST /api/island-mode if unexpected exception
2021-07-13 10:46:47 -04:00
Mike Salvatore
acdfeb858f
Tests: Move raise_() to a reusable location
2021-07-13 10:30:38 -04:00
Mike Salvatore
c56ca37bc0
Island: Respond with 422 instead of 404 from POST /api/island-mode
2021-07-13 10:25:52 -04:00
Ilija Lazoroski
9310463f44
UT: Refactor island mode test for set model
2021-07-13 10:25:52 -04:00
Ilija Lazoroski
81a8ccf673
Island: Return empty post status for island mode
2021-07-13 10:25:48 -04:00
Mike Salvatore
1a4d2eb76c
Merge pull request #1319 from guardicore/report-tabs-order-based-on-mode
...
Make ransomware report tab the default if in ransomware mode
2021-07-13 07:48:20 -04:00
Mike Salvatore
afe7498019
Merge pull request #1308 from guardicore/ransomware_encryption_table_data
...
Ransomware encryption table data
2021-07-13 06:46:58 -04:00
VakarisZ
3a2f5f5620
Island: reformat ransomware_report.py resource to conform to black
2021-07-13 13:30:24 +03:00
Ilija Lazoroski
f9ed53a527
Island: Add UT tests for island mode model
2021-07-13 10:58:04 +02:00
Shreya
8efd562935
cc: Rename "sections" -> "orderedSections", and "sectionsOrder" -> "sections" in `ReportPage.js`
...
`sectionsOrder` was not handling the order of the sections.
It was only being used to render the selected section.
`sections` is what was actually handling the order of the sections,
which is now `orderedSections`.
2021-07-13 14:25:41 +05:30
Shreya
278a09e039
cc: Add ransomware report tab to reports page depending on mode
2021-07-13 14:23:51 +05:30
Shreya
e5160a5fb4
agent: Sort files in ransomware payload's `_find_files()` before returning
2021-07-13 13:41:02 +05:30
VakarisZ
a0e0e0a9be
Island: fix rebase issues created when rebasing ransomware table generation feature
2021-07-13 09:32:50 +03:00
VakarisZ
f8cbd4cb33
Island: change ransomware report table to return the amount of files encrypted and the number of total encryption attempts
2021-07-13 09:19:48 +03:00
Mike Salvatore
10a375ea66
Island: Fix failing test by upgrading mongomock
2021-07-13 09:19:48 +03:00
VakarisZ
2bcf3b0a90
Refactor ransomware report unit tests to mock "get_exploited()" method used. Also, minor refactorings in ransomware_report service and resource
2021-07-13 09:19:46 +03:00
VakarisZ
4254f8cd37
Refactor ransomware_report.py to use current report infrastructure for fetching exploited nodes
...
Re-using current report infrastructure means that it's more trivial to implement/maintain and is already tested. The downside is performance
2021-07-13 09:17:21 +03:00
VakarisZ
9492b14c95
Add unit tests and for ransomware report, which get skipped because of a bug in mongomock
2021-07-13 09:16:18 +03:00
VakarisZ
f6eda771b2
Add a service responsible for fetching and formatting data for ransomware report, file encryption table
2021-07-13 09:14:31 +03:00
Mike Salvatore
3b80221c38
Merge pull request #1311 from guardicore/ransomware-fix-config-ui-description
...
Ransomware: fix description and add info box
2021-07-12 13:45:27 -04:00
Mike Salvatore
22ff22f389
Island: Reword ransomware simulation description
2021-07-12 13:44:45 -04:00
Mike Salvatore
e0b20b4340
Merge pull request #1316 from guardicore/ransomware-report-exploitation-stats-component
...
Generate exploitation stats for ransomware report
2021-07-12 13:39:30 -04:00
Mike Salvatore
a794a5777a
Merge pull request #1306 from guardicore/ransomware-exploitation-details-report-service
...
Ransomware exploitation details report service
2021-07-12 13:38:59 -04:00
Mike Salvatore
ced3c3b137
Island: Extract getScannedVsExploitedStats() method
2021-07-12 12:41:42 -04:00
Mike Salvatore
6fdf0858ac
Island: Remove superfluous description from ransomware report
2021-07-12 12:15:54 -04:00
Mike Salvatore
644a90c2f3
Island: Add "Propagation" header to ransomware report
2021-07-12 12:15:54 -04:00
Mike Salvatore
50c24c77f4
Island: Use Pluralize to display ransomware propagation stats
2021-07-12 12:15:54 -04:00
Shreya
c8e0104985
cc: Extract ransomware report's exploitation stats component to a separate function
2021-07-12 12:14:57 -04:00
Shreya
3b7d35868a
cc: Show exploitation stats on ransomware report page
2021-07-12 12:13:51 -04:00
Mike Salvatore
c7d655ac7d
Tests: Set autouse=False for patch_report_service fixture
2021-07-12 12:08:31 -04:00
Mike Salvatore
e4cd06d8c3
Island: Move ransomware_report.py to ransomware/ransomware_report.py
2021-07-12 12:03:30 -04:00
Mike Salvatore
9e7e58658c
Island: Simplify _get_exploit_counts()
2021-07-12 11:54:39 -04:00
Mike Salvatore
06439d92f9
Island: Rename count_per_exploit -> num_exploited_per_exploit
2021-07-12 11:50:39 -04:00
Mike Salvatore
4564596cd0
Agent: Add unit tests for ransomware report service
2021-07-12 11:48:16 -04:00
VakarisZ
3bde6f013a
Island: Add a couple of island mode resource unit tests
2021-07-12 16:00:23 +03:00
VakarisZ
2778b69dfb
Island: Add unit test infrastructure for testing resources
2021-07-12 15:59:36 +03:00
VakarisZ
f8b6277a88
Island: Add an endpoint for setting the island's mode. Also, add an enum of all the modes
2021-07-12 13:32:14 +03:00
VakarisZ
b35896c53f
Merge pull request #1313 from guardicore/1296/faq-internet-queries
...
Fix mistakes in FAQ - Internet and updates queries
2021-07-12 13:16:57 +03:00
Ilija Lazoroski
673b689ab5
docs: Add note for Hugo installation
2021-07-12 11:49:25 +02:00
Ilija Lazoroski
6d584a6501
docs: Fix mistakes in FAQ
2021-07-12 10:22:48 +02:00
Shreya Malviya
6f33b04e1f
cc: Reword info box for local network scan in Network configuration tab
...
Co-authored-by: VakarisZ <36815064+VakarisZ@users.noreply.github.com>
2021-07-12 13:44:04 +05:30
Shreya
2212029f0b
cc: Process exploit data on backend for ransomware stats reporting
2021-07-12 13:11:44 +05:30
Shreya
9cb6dca220
cc: Remove unused empty tags in `InfoBox.js`
2021-07-12 11:52:18 +05:30
Shreya
e16b019b85
cc: Rename component `InfoField` to `InfoBox`
2021-07-12 11:51:03 +05:30
Mike Salvatore
af739b6c99
Merge pull request #1309 from guardicore/1287/ransomware-readme-config-dirs
...
Ransomware README with configurable directories
2021-07-09 15:47:22 -04:00
Mike Salvatore
eb36869e71
Island: Minor wording change to readme_note description
2021-07-09 15:41:31 -04:00