Commit Graph

5676 Commits

Author SHA1 Message Date
Mike Salvatore c89416f256
Merge pull request #1318 from guardicore/ransomware_quickstart_endpoint
Ransomware quickstart endpoint
2021-07-13 11:05:23 -04:00
Mike Salvatore 84a78a5048 Island: Don't catch Exception in POST /api/island-mode
Flask automatically traps exceptions, returns a 500, and logs a stack
trace. Since Flask will automatically return a 500, we don't need to
duplicate the functionality. Since it prints a stack trace, it provides
more useful information than catching it did.
2021-07-13 11:02:18 -04:00
Mike Salvatore a0fb6fa2b6 Island: Return 400 from POST /api/island_mode on invalid JSON 2021-07-13 10:58:08 -04:00
Mike Salvatore 26d3782a66 Island: Test both "ransomware" and "advanced" modes 2021-07-13 10:49:15 -04:00
Mike Salvatore 7549e64b41 Island: Return 500 from POST /api/island-mode if unexpected exception 2021-07-13 10:46:47 -04:00
Mike Salvatore acdfeb858f Tests: Move raise_() to a reusable location 2021-07-13 10:30:38 -04:00
Mike Salvatore c56ca37bc0 Island: Respond with 422 instead of 404 from POST /api/island-mode 2021-07-13 10:25:52 -04:00
Ilija Lazoroski 9310463f44 UT: Refactor island mode test for set model 2021-07-13 10:25:52 -04:00
Ilija Lazoroski 81a8ccf673 Island: Return empty post status for island mode 2021-07-13 10:25:48 -04:00
Mike Salvatore 1a4d2eb76c
Merge pull request #1319 from guardicore/report-tabs-order-based-on-mode
Make ransomware report tab the default if in ransomware mode
2021-07-13 07:48:20 -04:00
Mike Salvatore afe7498019
Merge pull request #1308 from guardicore/ransomware_encryption_table_data
Ransomware encryption table data
2021-07-13 06:46:58 -04:00
VakarisZ 3a2f5f5620 Island: reformat ransomware_report.py resource to conform to black 2021-07-13 13:30:24 +03:00
Ilija Lazoroski f9ed53a527 Island: Add UT tests for island mode model 2021-07-13 10:58:04 +02:00
Shreya 8efd562935 cc: Rename "sections" -> "orderedSections", and "sectionsOrder" -> "sections" in `ReportPage.js`
`sectionsOrder` was not handling the order of the sections.
It was only being used to render the selected section.
`sections` is what was actually handling the order of the sections,
which is now `orderedSections`.
2021-07-13 14:25:41 +05:30
Shreya 278a09e039 cc: Add ransomware report tab to reports page depending on mode 2021-07-13 14:23:51 +05:30
Shreya e5160a5fb4 agent: Sort files in ransomware payload's `_find_files()` before returning 2021-07-13 13:41:02 +05:30
VakarisZ a0e0e0a9be Island: fix rebase issues created when rebasing ransomware table generation feature 2021-07-13 09:32:50 +03:00
VakarisZ f8cbd4cb33 Island: change ransomware report table to return the amount of files encrypted and the number of total encryption attempts 2021-07-13 09:19:48 +03:00
Mike Salvatore 10a375ea66 Island: Fix failing test by upgrading mongomock 2021-07-13 09:19:48 +03:00
VakarisZ 2bcf3b0a90 Refactor ransomware report unit tests to mock "get_exploited()" method used. Also, minor refactorings in ransomware_report service and resource 2021-07-13 09:19:46 +03:00
VakarisZ 4254f8cd37 Refactor ransomware_report.py to use current report infrastructure for fetching exploited nodes
Re-using current report infrastructure means that it's more trivial to implement/maintain and is already tested. The downside is performance
2021-07-13 09:17:21 +03:00
VakarisZ 9492b14c95 Add unit tests and for ransomware report, which get skipped because of a bug in mongomock 2021-07-13 09:16:18 +03:00
VakarisZ f6eda771b2 Add a service responsible for fetching and formatting data for ransomware report, file encryption table 2021-07-13 09:14:31 +03:00
Mike Salvatore 3b80221c38
Merge pull request #1311 from guardicore/ransomware-fix-config-ui-description
Ransomware: fix description and add info box
2021-07-12 13:45:27 -04:00
Mike Salvatore 22ff22f389 Island: Reword ransomware simulation description 2021-07-12 13:44:45 -04:00
Mike Salvatore e0b20b4340
Merge pull request #1316 from guardicore/ransomware-report-exploitation-stats-component
Generate exploitation stats for ransomware report
2021-07-12 13:39:30 -04:00
Mike Salvatore a794a5777a
Merge pull request #1306 from guardicore/ransomware-exploitation-details-report-service
Ransomware exploitation details report service
2021-07-12 13:38:59 -04:00
Mike Salvatore ced3c3b137 Island: Extract getScannedVsExploitedStats() method 2021-07-12 12:41:42 -04:00
Mike Salvatore 6fdf0858ac Island: Remove superfluous description from ransomware report 2021-07-12 12:15:54 -04:00
Mike Salvatore 644a90c2f3 Island: Add "Propagation" header to ransomware report 2021-07-12 12:15:54 -04:00
Mike Salvatore 50c24c77f4 Island: Use Pluralize to display ransomware propagation stats 2021-07-12 12:15:54 -04:00
Shreya c8e0104985 cc: Extract ransomware report's exploitation stats component to a separate function 2021-07-12 12:14:57 -04:00
Shreya 3b7d35868a cc: Show exploitation stats on ransomware report page 2021-07-12 12:13:51 -04:00
Mike Salvatore c7d655ac7d Tests: Set autouse=False for patch_report_service fixture 2021-07-12 12:08:31 -04:00
Mike Salvatore e4cd06d8c3 Island: Move ransomware_report.py to ransomware/ransomware_report.py 2021-07-12 12:03:30 -04:00
Mike Salvatore 9e7e58658c Island: Simplify _get_exploit_counts() 2021-07-12 11:54:39 -04:00
Mike Salvatore 06439d92f9 Island: Rename count_per_exploit -> num_exploited_per_exploit 2021-07-12 11:50:39 -04:00
Mike Salvatore 4564596cd0 Agent: Add unit tests for ransomware report service 2021-07-12 11:48:16 -04:00
VakarisZ 3bde6f013a Island: Add a couple of island mode resource unit tests 2021-07-12 16:00:23 +03:00
VakarisZ 2778b69dfb Island: Add unit test infrastructure for testing resources 2021-07-12 15:59:36 +03:00
VakarisZ f8b6277a88 Island: Add an endpoint for setting the island's mode. Also, add an enum of all the modes 2021-07-12 13:32:14 +03:00
VakarisZ b35896c53f
Merge pull request #1313 from guardicore/1296/faq-internet-queries
Fix mistakes in FAQ - Internet and updates queries
2021-07-12 13:16:57 +03:00
Ilija Lazoroski 673b689ab5 docs: Add note for Hugo installation 2021-07-12 11:49:25 +02:00
Ilija Lazoroski 6d584a6501 docs: Fix mistakes in FAQ 2021-07-12 10:22:48 +02:00
Shreya Malviya 6f33b04e1f
cc: Reword info box for local network scan in Network configuration tab
Co-authored-by: VakarisZ <36815064+VakarisZ@users.noreply.github.com>
2021-07-12 13:44:04 +05:30
Shreya 2212029f0b cc: Process exploit data on backend for ransomware stats reporting 2021-07-12 13:11:44 +05:30
Shreya 9cb6dca220 cc: Remove unused empty tags in `InfoBox.js` 2021-07-12 11:52:18 +05:30
Shreya e16b019b85 cc: Rename component `InfoField` to `InfoBox` 2021-07-12 11:51:03 +05:30
Mike Salvatore af739b6c99
Merge pull request #1309 from guardicore/1287/ransomware-readme-config-dirs
Ransomware README with configurable directories
2021-07-09 15:47:22 -04:00
Mike Salvatore eb36869e71 Island: Minor wording change to readme_note description 2021-07-09 15:41:31 -04:00