@ampsec/platform-client 68.9.0 → 68.10.0
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/build/src/dto/enums/findingKind.d.ts +3 -0
- package/build/src/dto/enums/findingKind.js +27 -1
- package/build/src/dto/enums/findingKind.js.map +1 -1
- package/build/src/dto/saasComponents.dto.d.ts +3 -0
- package/package.json +1 -1
- package/src/dto/enums/findingKind.ts +27 -1
- package/src/dto/saasComponents.dto.ts +3 -0
|
@@ -12,6 +12,9 @@ export declare enum FindingKind {
|
|
|
12
12
|
FAILED_PHISHING = "FAILED_PHISHING",
|
|
13
13
|
TRAINING_OVERDUE = "TRAINING_OVERDUE",
|
|
14
14
|
DEVICE_NOT_MANAGED = "DEVICE_NOT_MANAGED",
|
|
15
|
+
FIREWALL_DISABLED = "FIREWALL_DISABLED",
|
|
16
|
+
SCREENSAVER_DISABLED = "SCREENSAVER_DISABLED",
|
|
17
|
+
DEVICE_NOT_ENCRYPTED = "DEVICE_NOT_ENCRYPTED",
|
|
15
18
|
CRITICAL_VULNERABILITY_OUT_OF_SLA = "CRITICAL_VULNERABILITY_OUT_OF_SLA",
|
|
16
19
|
HIGH_VULNERABILITY_OUT_OF_SLA = "HIGH_VULNERABILITY_OUT_OF_SLA",
|
|
17
20
|
MEDIUM_VULNERABILITY_OUT_OF_SLA = "MEDIUM_VULNERABILITY_OUT_OF_SLA",
|
|
@@ -20,6 +20,9 @@ var FindingKind;
|
|
|
20
20
|
FindingKind["TRAINING_OVERDUE"] = "TRAINING_OVERDUE";
|
|
21
21
|
// EDR
|
|
22
22
|
FindingKind["DEVICE_NOT_MANAGED"] = "DEVICE_NOT_MANAGED";
|
|
23
|
+
FindingKind["FIREWALL_DISABLED"] = "FIREWALL_DISABLED";
|
|
24
|
+
FindingKind["SCREENSAVER_DISABLED"] = "SCREENSAVER_DISABLED";
|
|
25
|
+
FindingKind["DEVICE_NOT_ENCRYPTED"] = "DEVICE_NOT_ENCRYPTED";
|
|
23
26
|
FindingKind["CRITICAL_VULNERABILITY_OUT_OF_SLA"] = "CRITICAL_VULNERABILITY_OUT_OF_SLA";
|
|
24
27
|
FindingKind["HIGH_VULNERABILITY_OUT_OF_SLA"] = "HIGH_VULNERABILITY_OUT_OF_SLA";
|
|
25
28
|
FindingKind["MEDIUM_VULNERABILITY_OUT_OF_SLA"] = "MEDIUM_VULNERABILITY_OUT_OF_SLA";
|
|
@@ -34,6 +37,9 @@ const lookupFindingOutcomeByKind = (kind) => {
|
|
|
34
37
|
case FindingKind.MFA_NOT_SECURE:
|
|
35
38
|
case FindingKind.TRAINING_OVERDUE:
|
|
36
39
|
case FindingKind.DEVICE_NOT_MANAGED:
|
|
40
|
+
case FindingKind.FIREWALL_DISABLED:
|
|
41
|
+
case FindingKind.SCREENSAVER_DISABLED:
|
|
42
|
+
case FindingKind.DEVICE_NOT_ENCRYPTED:
|
|
37
43
|
case FindingKind.CRITICAL_VULNERABILITY_OUT_OF_SLA:
|
|
38
44
|
case FindingKind.HIGH_VULNERABILITY_OUT_OF_SLA:
|
|
39
45
|
case FindingKind.MEDIUM_VULNERABILITY_OUT_OF_SLA:
|
|
@@ -64,7 +70,7 @@ const lookupFindingKindByCategory = (category) => {
|
|
|
64
70
|
return [FindingKind.FAILED_PHISHING, FindingKind.TRAINING_OVERDUE];
|
|
65
71
|
}
|
|
66
72
|
case category_1.Category.EDR: {
|
|
67
|
-
return [FindingKind.DEVICE_NOT_MANAGED];
|
|
73
|
+
return [FindingKind.DEVICE_NOT_MANAGED, FindingKind.FIREWALL_DISABLED, FindingKind.SCREENSAVER_DISABLED, FindingKind.DEVICE_NOT_ENCRYPTED];
|
|
68
74
|
}
|
|
69
75
|
case category_1.Category.WEB_GATEWAY: {
|
|
70
76
|
return [FindingKind.WEB_GATEWAY_NOT_ACTIVE];
|
|
@@ -94,6 +100,8 @@ const lookupFindingSeverityByKind = (kind) => {
|
|
|
94
100
|
case FindingKind.DEVICE_NOT_MANAGED:
|
|
95
101
|
case FindingKind.WEB_GATEWAY_NOT_ACTIVE:
|
|
96
102
|
case FindingKind.MFA_NOT_SECURE:
|
|
103
|
+
case FindingKind.FIREWALL_DISABLED:
|
|
104
|
+
case FindingKind.DEVICE_NOT_ENCRYPTED:
|
|
97
105
|
return finding_severity_1.FindingSeverity.HIGH;
|
|
98
106
|
case FindingKind.MFA_NOT_ENABLED:
|
|
99
107
|
case FindingKind.CRITICAL_VULNERABILITY_OUT_OF_SLA:
|
|
@@ -101,6 +109,7 @@ const lookupFindingSeverityByKind = (kind) => {
|
|
|
101
109
|
case FindingKind.HIGH_VULNERABILITY_OUT_OF_SLA:
|
|
102
110
|
return finding_severity_1.FindingSeverity.HIGH;
|
|
103
111
|
case FindingKind.MEDIUM_VULNERABILITY_OUT_OF_SLA:
|
|
112
|
+
case FindingKind.SCREENSAVER_DISABLED:
|
|
104
113
|
return finding_severity_1.FindingSeverity.MEDIUM;
|
|
105
114
|
case FindingKind.LOW_VULNERABILITY_OUT_OF_SLA:
|
|
106
115
|
return finding_severity_1.FindingSeverity.LOW;
|
|
@@ -119,6 +128,11 @@ const lookupFindingScoreByCategoryKindAndSeverity = (category, kind) => {
|
|
|
119
128
|
switch (kind) {
|
|
120
129
|
case FindingKind.DEVICE_NOT_MANAGED:
|
|
121
130
|
return 14;
|
|
131
|
+
case FindingKind.FIREWALL_DISABLED:
|
|
132
|
+
case FindingKind.DEVICE_NOT_ENCRYPTED:
|
|
133
|
+
return 9;
|
|
134
|
+
case FindingKind.SCREENSAVER_DISABLED:
|
|
135
|
+
return 5;
|
|
122
136
|
default:
|
|
123
137
|
return 0;
|
|
124
138
|
}
|
|
@@ -260,6 +274,18 @@ const generateInsights = (category, kind) => {
|
|
|
260
274
|
setCondition('meta._findings.active', false);
|
|
261
275
|
insights.rule.kind = saasComponentKind_1.SaasComponentKind.EDR_CONFIG;
|
|
262
276
|
break;
|
|
277
|
+
case FindingKind.FIREWALL_DISABLED:
|
|
278
|
+
setCondition('meta._findings.isFirewallDisabled', true);
|
|
279
|
+
insights.rule.kind = saasComponentKind_1.SaasComponentKind.EDR_CONFIG;
|
|
280
|
+
break;
|
|
281
|
+
case FindingKind.SCREENSAVER_DISABLED:
|
|
282
|
+
setCondition('meta._findings.isScreenSaverDisabled', true);
|
|
283
|
+
insights.rule.kind = saasComponentKind_1.SaasComponentKind.EDR_CONFIG;
|
|
284
|
+
break;
|
|
285
|
+
case FindingKind.DEVICE_NOT_ENCRYPTED:
|
|
286
|
+
setCondition('meta._findings.isDeviceNotEncrypted', true);
|
|
287
|
+
insights.rule.kind = saasComponentKind_1.SaasComponentKind.EDR_CONFIG;
|
|
288
|
+
break;
|
|
263
289
|
case FindingKind.MFA_NOT_ENABLED:
|
|
264
290
|
setCondition('meta._findings.enabled', false);
|
|
265
291
|
insights.rule.kind = saasComponentKind_1.SaasComponentKind.MFA_CONFIG;
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"findingKind.js","sourceRoot":"","sources":["../../../../src/dto/enums/findingKind.ts"],"names":[],"mappings":";;;AAAA,yCAAoC;AACpC,uDAAiD;AACjD,yDAAmD;AACnD,2DAAsD;AAEtD,IAAY,
|
|
1
|
+
{"version":3,"file":"findingKind.js","sourceRoot":"","sources":["../../../../src/dto/enums/findingKind.ts"],"names":[],"mappings":";;;AAAA,yCAAoC;AACpC,uDAAiD;AACjD,yDAAmD;AACnD,2DAAsD;AAEtD,IAAY,WA2BX;AA3BD,WAAY,WAAW;IACrB,MAAM;IACN,wCAAyB,CAAA;IAEzB,WAAW;IACX,kDAAmC,CAAA;IACnC,gDAAiC,CAAA;IACjC,4CAA6B,CAAA;IAC7B,8DAA+C,CAAA;IAC/C,8DAA+C,CAAA;IAE/C,WAAW;IACX,kDAAmC,CAAA;IACnC,oDAAqC,CAAA;IAErC,MAAM;IACN,wDAAyC,CAAA;IACzC,sDAAuC,CAAA;IACvC,4DAA6C,CAAA;IAC7C,4DAA6C,CAAA;IAC7C,sFAAuE,CAAA;IACvE,8EAA+D,CAAA;IAC/D,kFAAmE,CAAA;IACnE,4EAA6D,CAAA;IAE7D,cAAc;IACd,gEAAiD,CAAA;AACnD,CAAC,EA3BW,WAAW,2BAAX,WAAW,QA2BtB;AAEM,MAAM,0BAA0B,GAAG,CAAC,IAAiB,EAAkB,EAAE;IAC9E,QAAQ,IAAI,EAAE,CAAC;QACb,KAAK,WAAW,CAAC,UAAU,CAAC;QAC5B,KAAK,WAAW,CAAC,eAAe,CAAC;QACjC,KAAK,WAAW,CAAC,cAAc,CAAC;QAChC,KAAK,WAAW,CAAC,gBAAgB,CAAC;QAClC,KAAK,WAAW,CAAC,kBAAkB,CAAC;QACpC,KAAK,WAAW,CAAC,iBAAiB,CAAC;QACnC,KAAK,WAAW,CAAC,oBAAoB,CAAC;QACtC,KAAK,WAAW,CAAC,oBAAoB,CAAC;QACtC,KAAK,WAAW,CAAC,iCAAiC,CAAC;QACnD,KAAK,WAAW,CAAC,6BAA6B,CAAC;QAC/C,KAAK,WAAW,CAAC,+BAA+B,CAAC;QACjD,KAAK,WAAW,CAAC,4BAA4B,CAAC;QAC9C,KAAK,WAAW,CAAC,sBAAsB,CAAC,CAAC,CAAC;YACxC,OAAO,gCAAc,CAAC,WAAW,CAAC;QACpC,CAAC;QACD,KAAK,WAAW,CAAC,YAAY,CAAC;QAC9B,KAAK,WAAW,CAAC,qBAAqB,CAAC;QACvC,KAAK,WAAW,CAAC,qBAAqB,CAAC,CAAC,CAAC;YACvC,OAAO,gCAAc,CAAC,SAAS,CAAC;QAClC,CAAC;QACD,KAAK,WAAW,CAAC,eAAe,CAAC,CAAC,CAAC;YACjC,OAAO,gCAAc,CAAC,SAAS,CAAC;QAClC,CAAC;QACD,OAAO,CAAC,CAAC,CAAC;YACR,MAAM,IAAI,KAAK,CAAC,sDAAsD,IAAI,EAAE,CAAC,CAAC;QAChF,CAAC;IACH,CAAC;AACH,CAAC,CAAC;AA7BW,QAAA,0BAA0B,8BA6BrC;AAEK,MAAM,2BAA2B,GAAG,CAAC,QAAgB,EAAiB,EAAE;IAC7E,QAAQ,QAAQ,EAAE,CAAC;QACjB,KAAK,mBAAQ,CAAC,QAAQ,CAAC,CAAC,CAAC;YACvB,OAAO,CAAC,WAAW,CAAC,eAAe,EAAE,WAAW,CAAC,cAAc,EAAE,WAAW,CAAC,YAAY,EAAE,WAAW,CAAC,qBAAqB,EAAE,WAAW,CAAC,qBAAqB,CAAC,CAAC;QACnK,CAAC;QACD,KAAK,mBAAQ,CAAC,QAAQ,CAAC,CAAC,CAAC;YACvB,OAAO,CAAC,WAAW,CAAC,eAAe,EAAE,WAAW,CAAC,gBAAgB,CAAC,CAAC;QACrE,CAAC;QACD,KAAK,mBAAQ,CAAC,GAAG,CAAC,CAAC,CAAC;YAClB,OAAO,CAAC,WAAW,CAAC,kBAAkB,EAAE,WAAW,CAAC,iBAAiB,EAAE,WAAW,CAAC,oBAAoB,EAAE,WAAW,CAAC,oBAAoB,CAAC,CAAC;QAC7I,CAAC;QACD,KAAK,mBAAQ,CAAC,WAAW,CAAC,CAAC,CAAC;YAC1B,OAAO,CAAC,WAAW,CAAC,sBAAsB,CAAC,CAAC;QAC9C,CAAC;QACD,KAAK,mBAAQ,CAAC,aAAa,CAAC,CAAC,CAAC;YAC5B,OAAO;gBACL,WAAW,CAAC,iCAAiC;gBAC7C,WAAW,CAAC,6BAA6B;gBACzC,WAAW,CAAC,+BAA+B;gBAC3C,WAAW,CAAC,4BAA4B;aACzC,CAAC;QACJ,CAAC;QACD,KAAK,mBAAQ,CAAC,YAAY,CAAC,CAAC,CAAC;YAC3B,OAAO,EAAE,CAAC;QACZ,CAAC;QACD,OAAO,CAAC,CAAC,CAAC;YACR,OAAO,EAAE,CAAC;QACZ,CAAC;IACH,CAAC;AACH,CAAC,CAAC;AA7BW,QAAA,2BAA2B,+BA6BtC;AAEK,MAAM,2BAA2B,GAAG,CAAC,IAAY,EAA+B,EAAE;IACvF,QAAQ,IAAI,EAAE,CAAC;QACb,KAAK,WAAW,CAAC,YAAY,CAAC;QAC9B,KAAK,WAAW,CAAC,qBAAqB,CAAC;QACvC,KAAK,WAAW,CAAC,qBAAqB,CAAC;QACvC,KAAK,WAAW,CAAC,kBAAkB,CAAC;QACpC,KAAK,WAAW,CAAC,sBAAsB,CAAC;QACxC,KAAK,WAAW,CAAC,cAAc,CAAC;QAChC,KAAK,WAAW,CAAC,iBAAiB,CAAC;QACnC,KAAK,WAAW,CAAC,oBAAoB;YACnC,OAAO,kCAAe,CAAC,IAAI,CAAC;QAC9B,KAAK,WAAW,CAAC,eAAe,CAAC;QACjC,KAAK,WAAW,CAAC,iCAAiC;YAChD,OAAO,kCAAe,CAAC,QAAQ,CAAC;QAClC,KAAK,WAAW,CAAC,6BAA6B;YAC5C,OAAO,kCAAe,CAAC,IAAI,CAAC;QAC9B,KAAK,WAAW,CAAC,+BAA+B,CAAC;QACjD,KAAK,WAAW,CAAC,oBAAoB;YACnC,OAAO,kCAAe,CAAC,MAAM,CAAC;QAChC,KAAK,WAAW,CAAC,4BAA4B;YAC3C,OAAO,kCAAe,CAAC,GAAG,CAAC;QAC7B,KAAK,WAAW,CAAC,eAAe,CAAC;QACjC,KAAK,WAAW,CAAC,gBAAgB;YAC/B,OAAO,kCAAe,CAAC,MAAM,CAAC;QAChC;YACE,OAAO,SAAS,CAAC;IACrB,CAAC;AACH,CAAC,CAAC;AA3BW,QAAA,2BAA2B,+BA2BtC;AAEF,iGAAiG;AAC1F,MAAM,2CAA2C,GAAG,CAAC,QAAkB,EAAE,IAAY,EAAU,EAAE;IACtG,QAAQ,QAAQ,EAAE,CAAC;QACjB,KAAK,mBAAQ,CAAC,GAAG,CAAC,CAAC,CAAC;YAClB,QAAQ,IAAI,EAAE,CAAC;gBACb,KAAK,WAAW,CAAC,kBAAkB;oBACjC,OAAO,EAAE,CAAC;gBACZ,KAAK,WAAW,CAAC,iBAAiB,CAAC;gBACnC,KAAK,WAAW,CAAC,oBAAoB;oBACnC,OAAO,CAAC,CAAC;gBACX,KAAK,WAAW,CAAC,oBAAoB;oBACnC,OAAO,CAAC,CAAC;gBACX;oBACE,OAAO,CAAC,CAAC;YACb,CAAC;QACH,CAAC;QACD,KAAK,mBAAQ,CAAC,aAAa,CAAC,CAAC,CAAC;YAC5B,QAAQ,IAAI,EAAE,CAAC;gBACb,KAAK,WAAW,CAAC,kBAAkB;oBACjC,OAAO,EAAE,CAAC;gBACZ,KAAK,WAAW,CAAC,iCAAiC;oBAChD,OAAO,EAAE,CAAC;gBACZ,KAAK,WAAW,CAAC,6BAA6B;oBAC5C,OAAO,CAAC,CAAC;gBACX,KAAK,WAAW,CAAC,+BAA+B;oBAC9C,OAAO,CAAC,CAAC;gBACX,KAAK,WAAW,CAAC,4BAA4B;oBAC3C,OAAO,CAAC,CAAC;gBACX;oBACE,OAAO,CAAC,CAAC;YACb,CAAC;QACH,CAAC;QACD,KAAK,mBAAQ,CAAC,QAAQ,CAAC,CAAC,CAAC;YACvB,QAAQ,IAAI,EAAE,CAAC;gBACb,KAAK,WAAW,CAAC,eAAe;oBAC9B,OAAO,EAAE,CAAC;gBACZ,KAAK,WAAW,CAAC,cAAc;oBAC7B,OAAO,CAAC,CAAC;gBACX,KAAK,WAAW,CAAC,UAAU;oBACzB,OAAO,EAAE,CAAC;gBACZ,KAAK,WAAW,CAAC,YAAY,CAAC;gBAC9B,KAAK,WAAW,CAAC,qBAAqB,CAAC;gBACvC,KAAK,WAAW,CAAC,qBAAqB,CAAC;gBACvC;oBACE,OAAO,CAAC,CAAC;YACb,CAAC;QACH,CAAC;QACD,KAAK,mBAAQ,CAAC,QAAQ,CAAC,CAAC,CAAC;YACvB,QAAQ,IAAI,EAAE,CAAC;gBACb,KAAK,WAAW,CAAC,eAAe;oBAC9B,OAAO,EAAE,CAAC;gBACZ,KAAK,WAAW,CAAC,UAAU;oBACzB,OAAO,CAAC,CAAC;gBACX,KAAK,WAAW,CAAC,gBAAgB;oBAC/B,OAAO,CAAC,CAAC;gBACX;oBACE,OAAO,CAAC,CAAC;YACb,CAAC;QACH,CAAC;QACD,KAAK,mBAAQ,CAAC,WAAW,CAAC,CAAC,CAAC;YAC1B,QAAQ,IAAI,EAAE,CAAC;gBACb,KAAK,WAAW,CAAC,sBAAsB;oBACrC,OAAO,CAAC,CAAC;gBACX,KAAK,WAAW,CAAC,UAAU;oBACzB,OAAO,CAAC,CAAC;gBACX;oBACE,OAAO,CAAC,CAAC;YACb,CAAC;QACH,CAAC;QACD,KAAK,mBAAQ,CAAC,YAAY,CAAC;QAC3B,OAAO,CAAC,CAAC,CAAC;YACR,OAAO,CAAC,CAAC;QACX,CAAC;IACH,CAAC;AACH,CAAC,CAAC;AAzEW,QAAA,2CAA2C,+CAyEtD;AAEK,MAAM,+BAA+B,GAAG,CAAC,IAAY,EAAU,EAAE;IACtE,QAAQ,IAAI,EAAE,CAAC;QACb,KAAK,WAAW,CAAC,eAAe;YAC9B,OAAO,iCAAiC,CAAC;QAC3C,KAAK,WAAW,CAAC,gBAAgB;YAC/B,OAAO,iCAAiC,CAAC;QAC3C,KAAK,WAAW,CAAC,sBAAsB;YACrC,OAAO,2BAA2B,CAAC;QACrC;YACE,OAAO,IAAI,CAAC,WAAW,EAAE,CAAC;IAC9B,CAAC;AACH,CAAC,CAAC;AAXW,QAAA,+BAA+B,mCAW1C;AAEK,MAAM,gBAAgB,GAAG,CAAC,QAAgB,EAAE,IAAY,EAAE,EAAE;IAEjE,MAAM,QAAQ,GAAG;QACf,IAAI,EAAE;YACJ,IAAI,EAAE,IAAmB;YACzB,QAAQ,EAAE,IAAA,mCAA2B,EAAC,IAAI,CAAoB;YAC9D,YAAY,EAAE,IAAA,uCAA+B,EAAC,IAAI,CAAC;SACpD;QACD,IAAI,EAAE;YACJ,QAAQ,EAAE,QAAoB;YAC9B,IAAI,EAAE,EAAuB;YAC7B,GAAG,EAAE,SAAuC;YAC5C,GAAG,EAAE,SAAuC;YAC5C,QAAQ,EAAE,SAAuC;YACjD,gBAAgB,EAAE,EAAe;YACjC,mBAAmB,EAAE,EAAe;SACrC;KACF,CAAC;IACF,IAAI,QAAQ,KAAK,mBAAQ,CAAC,GAAG,IAAI,QAAQ,KAAK,mBAAQ,CAAC,aAAa,EAAE,CAAC;QACrE,QAAQ,CAAC,IAAI,CAAC,GAAG,GAAG,EAAC,IAAI,EAAE,IAAI,EAAC,CAAC;IACnC,CAAC;SAAM,CAAC;QACN,QAAQ,CAAC,IAAI,CAAC,GAAG,GAAG,EAAC,IAAI,EAAE,IAAI,EAAC,CAAC;IACnC,CAAC;IACD,MAAM,YAAY,GAAG,CAAC,GAAW,EAAE,KAAc,EAAE,EAAE;QACnD,QAAQ,CAAC,IAAI,CAAC,gBAAgB,CAAC,GAAG,CAAC,GAAG,KAAK,CAAC;QAC5C,QAAQ,CAAC,IAAI,CAAC,mBAAmB,CAAC,GAAG,CAAC,GAAG,CAAC,KAAK,CAAC;IAClD,CAAC,CAAC;IAEF,QAAQ,IAAI,EAAE,CAAC;QACb,KAAK,WAAW,CAAC,sBAAsB;YACrC,YAAY,CAAC,yBAAyB,EAAE,KAAK,CAAC,CAAC;YAC/C,QAAQ,CAAC,IAAI,CAAC,IAAI,GAAG,qCAAiB,CAAC,mBAAmB,CAAC;YAC3D,MAAM;QACR,KAAK,WAAW,CAAC,iCAAiC;YAChD,YAAY,CAAC,wBAAwB,EAAE,IAAI,CAAC,CAAC;YAC7C,QAAQ,CAAC,IAAI,CAAC,IAAI,GAAG,qCAAiB,CAAC,aAAa,CAAC;YACrD,QAAQ,CAAC,IAAI,CAAC,QAAQ,GAAG,kCAAe,CAAC,QAAQ,CAAC;YAClD,MAAM;QACR,KAAK,WAAW,CAAC,6BAA6B;YAC5C,YAAY,CAAC,wBAAwB,EAAE,IAAI,CAAC,CAAC;YAC7C,QAAQ,CAAC,IAAI,CAAC,IAAI,GAAG,qCAAiB,CAAC,aAAa,CAAC;YACrD,QAAQ,CAAC,IAAI,CAAC,QAAQ,GAAG,kCAAe,CAAC,IAAI,CAAC;YAC9C,MAAM;QACR,KAAK,WAAW,CAAC,+BAA+B;YAC9C,YAAY,CAAC,wBAAwB,EAAE,IAAI,CAAC,CAAC;YAC7C,QAAQ,CAAC,IAAI,CAAC,IAAI,GAAG,qCAAiB,CAAC,aAAa,CAAC;YACrD,QAAQ,CAAC,IAAI,CAAC,QAAQ,GAAG,kCAAe,CAAC,MAAM,CAAC;YAChD,MAAM;QACR,KAAK,WAAW,CAAC,4BAA4B;YAC3C,YAAY,CAAC,wBAAwB,EAAE,IAAI,CAAC,CAAC;YAC7C,QAAQ,CAAC,IAAI,CAAC,IAAI,GAAG,qCAAiB,CAAC,aAAa,CAAC;YACrD,QAAQ,CAAC,IAAI,CAAC,QAAQ,GAAG,kCAAe,CAAC,GAAG,CAAC;YAC7C,MAAM;QACR,KAAK,WAAW,CAAC,gBAAgB;YAC/B,YAAY,CAAC,wBAAwB,EAAE,IAAI,CAAC,CAAC;YAC7C,QAAQ,CAAC,IAAI,CAAC,IAAI,GAAG,qCAAiB,CAAC,mBAAmB,CAAC;YAC3D,MAAM;QACR,KAAK,WAAW,CAAC,eAAe;YAC9B,YAAY,CAAC,+BAA+B,EAAE,IAAI,CAAC,CAAC;YACpD,QAAQ,CAAC,IAAI,CAAC,IAAI,GAAG,qCAAiB,CAAC,eAAe,CAAC;YACvD,MAAM;QACR,KAAK,WAAW,CAAC,kBAAkB;YACjC,YAAY,CAAC,uBAAuB,EAAE,KAAK,CAAC,CAAC;YAC7C,QAAQ,CAAC,IAAI,CAAC,IAAI,GAAG,qCAAiB,CAAC,UAAU,CAAC;YAClD,MAAM;QACR,KAAK,WAAW,CAAC,iBAAiB;YAChC,YAAY,CAAC,mCAAmC,EAAE,IAAI,CAAC,CAAC;YACxD,QAAQ,CAAC,IAAI,CAAC,IAAI,GAAG,qCAAiB,CAAC,UAAU,CAAC;YAClD,MAAM;QACR,KAAK,WAAW,CAAC,oBAAoB;YACnC,YAAY,CAAC,sCAAsC,EAAE,IAAI,CAAC,CAAC;YAC3D,QAAQ,CAAC,IAAI,CAAC,IAAI,GAAG,qCAAiB,CAAC,UAAU,CAAC;YAClD,MAAM;QACR,KAAK,WAAW,CAAC,oBAAoB;YACnC,YAAY,CAAC,qCAAqC,EAAE,IAAI,CAAC,CAAC;YAC1D,QAAQ,CAAC,IAAI,CAAC,IAAI,GAAG,qCAAiB,CAAC,UAAU,CAAC;YAClD,MAAM;QACR,KAAK,WAAW,CAAC,eAAe;YAC9B,YAAY,CAAC,wBAAwB,EAAE,KAAK,CAAC,CAAC;YAC9C,QAAQ,CAAC,IAAI,CAAC,IAAI,GAAG,qCAAiB,CAAC,UAAU,CAAC;YAClD,MAAM;QACR,KAAK,WAAW,CAAC,cAAc;YAC7B,YAAY,CAAC,mCAAmC,EAAE,IAAI,CAAC,CAAC;YACxD,QAAQ,CAAC,IAAI,CAAC,IAAI,GAAG,qCAAiB,CAAC,UAAU,CAAC;YAClD,MAAM;QACR,KAAK,WAAW,CAAC,YAAY;YAC3B,YAAY,CAAC,4BAA4B,EAAE,IAAI,CAAC,CAAC;YACjD,QAAQ,CAAC,IAAI,CAAC,IAAI,GAAG,qCAAiB,CAAC,gBAAgB,CAAC;YACxD,MAAM;QACR,KAAK,WAAW,CAAC,qBAAqB;YACpC,YAAY,CAAC,8BAA8B,EAAE,IAAI,CAAC,CAAC;YACnD,QAAQ,CAAC,IAAI,CAAC,IAAI,GAAG,qCAAiB,CAAC,gBAAgB,CAAC;YACxD,MAAM;QACR,KAAK,WAAW,CAAC,qBAAqB;YACpC,YAAY,CAAC,oCAAoC,EAAE,IAAI,CAAC,CAAC;YACzD,QAAQ,CAAC,IAAI,CAAC,IAAI,GAAG,qCAAiB,CAAC,gBAAgB,CAAC;YACxD,MAAM;QACR;YACE,MAAM;IACV,CAAC;IACD,OAAO,QAAQ,CAAC;AAClB,CAAC,CAAC;AArGW,QAAA,gBAAgB,oBAqG3B"}
|
|
@@ -65,6 +65,9 @@ export type RawFindingsContext = {
|
|
|
65
65
|
discoveredAt?: string;
|
|
66
66
|
hasInsecureFactors?: boolean;
|
|
67
67
|
inSecureFactors?: String[];
|
|
68
|
+
isFirewallDisabled?: boolean;
|
|
69
|
+
isScreenSaverDisabled?: boolean;
|
|
70
|
+
isDeviceNotEncrypted?: boolean;
|
|
68
71
|
};
|
|
69
72
|
export type SaasComponentMeta = {
|
|
70
73
|
_findings: RawFindingsContext;
|
package/package.json
CHANGED
|
@@ -20,6 +20,9 @@ export enum FindingKind {
|
|
|
20
20
|
|
|
21
21
|
// EDR
|
|
22
22
|
DEVICE_NOT_MANAGED = 'DEVICE_NOT_MANAGED',
|
|
23
|
+
FIREWALL_DISABLED = 'FIREWALL_DISABLED',
|
|
24
|
+
SCREENSAVER_DISABLED = 'SCREENSAVER_DISABLED',
|
|
25
|
+
DEVICE_NOT_ENCRYPTED = 'DEVICE_NOT_ENCRYPTED',
|
|
23
26
|
CRITICAL_VULNERABILITY_OUT_OF_SLA = 'CRITICAL_VULNERABILITY_OUT_OF_SLA',
|
|
24
27
|
HIGH_VULNERABILITY_OUT_OF_SLA = 'HIGH_VULNERABILITY_OUT_OF_SLA',
|
|
25
28
|
MEDIUM_VULNERABILITY_OUT_OF_SLA = 'MEDIUM_VULNERABILITY_OUT_OF_SLA',
|
|
@@ -36,6 +39,9 @@ export const lookupFindingOutcomeByKind = (kind: FindingKind): FindingOutcome =>
|
|
|
36
39
|
case FindingKind.MFA_NOT_SECURE:
|
|
37
40
|
case FindingKind.TRAINING_OVERDUE:
|
|
38
41
|
case FindingKind.DEVICE_NOT_MANAGED:
|
|
42
|
+
case FindingKind.FIREWALL_DISABLED:
|
|
43
|
+
case FindingKind.SCREENSAVER_DISABLED:
|
|
44
|
+
case FindingKind.DEVICE_NOT_ENCRYPTED:
|
|
39
45
|
case FindingKind.CRITICAL_VULNERABILITY_OUT_OF_SLA:
|
|
40
46
|
case FindingKind.HIGH_VULNERABILITY_OUT_OF_SLA:
|
|
41
47
|
case FindingKind.MEDIUM_VULNERABILITY_OUT_OF_SLA:
|
|
@@ -66,7 +72,7 @@ export const lookupFindingKindByCategory = (category: string): FindingKind[] =>
|
|
|
66
72
|
return [FindingKind.FAILED_PHISHING, FindingKind.TRAINING_OVERDUE];
|
|
67
73
|
}
|
|
68
74
|
case Category.EDR: {
|
|
69
|
-
return [FindingKind.DEVICE_NOT_MANAGED];
|
|
75
|
+
return [FindingKind.DEVICE_NOT_MANAGED, FindingKind.FIREWALL_DISABLED, FindingKind.SCREENSAVER_DISABLED, FindingKind.DEVICE_NOT_ENCRYPTED];
|
|
70
76
|
}
|
|
71
77
|
case Category.WEB_GATEWAY: {
|
|
72
78
|
return [FindingKind.WEB_GATEWAY_NOT_ACTIVE];
|
|
@@ -96,6 +102,8 @@ export const lookupFindingSeverityByKind = (kind: string): FindingSeverity | und
|
|
|
96
102
|
case FindingKind.DEVICE_NOT_MANAGED:
|
|
97
103
|
case FindingKind.WEB_GATEWAY_NOT_ACTIVE:
|
|
98
104
|
case FindingKind.MFA_NOT_SECURE:
|
|
105
|
+
case FindingKind.FIREWALL_DISABLED:
|
|
106
|
+
case FindingKind.DEVICE_NOT_ENCRYPTED:
|
|
99
107
|
return FindingSeverity.HIGH;
|
|
100
108
|
case FindingKind.MFA_NOT_ENABLED:
|
|
101
109
|
case FindingKind.CRITICAL_VULNERABILITY_OUT_OF_SLA:
|
|
@@ -103,6 +111,7 @@ export const lookupFindingSeverityByKind = (kind: string): FindingSeverity | und
|
|
|
103
111
|
case FindingKind.HIGH_VULNERABILITY_OUT_OF_SLA:
|
|
104
112
|
return FindingSeverity.HIGH;
|
|
105
113
|
case FindingKind.MEDIUM_VULNERABILITY_OUT_OF_SLA:
|
|
114
|
+
case FindingKind.SCREENSAVER_DISABLED:
|
|
106
115
|
return FindingSeverity.MEDIUM;
|
|
107
116
|
case FindingKind.LOW_VULNERABILITY_OUT_OF_SLA:
|
|
108
117
|
return FindingSeverity.LOW;
|
|
@@ -121,6 +130,11 @@ export const lookupFindingScoreByCategoryKindAndSeverity = (category: Category,
|
|
|
121
130
|
switch (kind) {
|
|
122
131
|
case FindingKind.DEVICE_NOT_MANAGED:
|
|
123
132
|
return 14;
|
|
133
|
+
case FindingKind.FIREWALL_DISABLED:
|
|
134
|
+
case FindingKind.DEVICE_NOT_ENCRYPTED:
|
|
135
|
+
return 9;
|
|
136
|
+
case FindingKind.SCREENSAVER_DISABLED:
|
|
137
|
+
return 5;
|
|
124
138
|
default:
|
|
125
139
|
return 0;
|
|
126
140
|
}
|
|
@@ -263,6 +277,18 @@ export const generateInsights = (category: string, kind: string) => {
|
|
|
263
277
|
setCondition('meta._findings.active', false);
|
|
264
278
|
insights.rule.kind = SaasComponentKind.EDR_CONFIG;
|
|
265
279
|
break;
|
|
280
|
+
case FindingKind.FIREWALL_DISABLED:
|
|
281
|
+
setCondition('meta._findings.isFirewallDisabled', true);
|
|
282
|
+
insights.rule.kind = SaasComponentKind.EDR_CONFIG;
|
|
283
|
+
break;
|
|
284
|
+
case FindingKind.SCREENSAVER_DISABLED:
|
|
285
|
+
setCondition('meta._findings.isScreenSaverDisabled', true);
|
|
286
|
+
insights.rule.kind = SaasComponentKind.EDR_CONFIG;
|
|
287
|
+
break;
|
|
288
|
+
case FindingKind.DEVICE_NOT_ENCRYPTED:
|
|
289
|
+
setCondition('meta._findings.isDeviceNotEncrypted', true);
|
|
290
|
+
insights.rule.kind = SaasComponentKind.EDR_CONFIG;
|
|
291
|
+
break;
|
|
266
292
|
case FindingKind.MFA_NOT_ENABLED:
|
|
267
293
|
setCondition('meta._findings.enabled', false);
|
|
268
294
|
insights.rule.kind = SaasComponentKind.MFA_CONFIG;
|
|
@@ -72,6 +72,9 @@ export type RawFindingsContext = {
|
|
|
72
72
|
discoveredAt?: string;
|
|
73
73
|
hasInsecureFactors?: boolean;
|
|
74
74
|
inSecureFactors?: String[];
|
|
75
|
+
isFirewallDisabled?: boolean;
|
|
76
|
+
isScreenSaverDisabled?: boolean;
|
|
77
|
+
isDeviceNotEncrypted?: boolean;
|
|
75
78
|
};
|
|
76
79
|
|
|
77
80
|
export type SaasComponentMeta = {
|