@ampsec/platform-client 72.1.0 → 72.3.0
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
|
@@ -15,6 +15,7 @@ export declare enum FindingKind {
|
|
|
15
15
|
FIREWALL_DISABLED = "FIREWALL_DISABLED",
|
|
16
16
|
SCREENSAVER_DISABLED = "SCREENSAVER_DISABLED",
|
|
17
17
|
DEVICE_NOT_ENCRYPTED = "DEVICE_NOT_ENCRYPTED",
|
|
18
|
+
ENDPOINT_PROTECTION_MISSING = "ENDPOINT_PROTECTION_MISSING",
|
|
18
19
|
CRITICAL_VULNERABILITY_OUT_OF_SLA = "CRITICAL_VULNERABILITY_OUT_OF_SLA",
|
|
19
20
|
HIGH_VULNERABILITY_OUT_OF_SLA = "HIGH_VULNERABILITY_OUT_OF_SLA",
|
|
20
21
|
MEDIUM_VULNERABILITY_OUT_OF_SLA = "MEDIUM_VULNERABILITY_OUT_OF_SLA",
|
|
@@ -23,6 +23,8 @@ var FindingKind;
|
|
|
23
23
|
FindingKind["FIREWALL_DISABLED"] = "FIREWALL_DISABLED";
|
|
24
24
|
FindingKind["SCREENSAVER_DISABLED"] = "SCREENSAVER_DISABLED";
|
|
25
25
|
FindingKind["DEVICE_NOT_ENCRYPTED"] = "DEVICE_NOT_ENCRYPTED";
|
|
26
|
+
FindingKind["ENDPOINT_PROTECTION_MISSING"] = "ENDPOINT_PROTECTION_MISSING";
|
|
27
|
+
// VULNERABILITY
|
|
26
28
|
FindingKind["CRITICAL_VULNERABILITY_OUT_OF_SLA"] = "CRITICAL_VULNERABILITY_OUT_OF_SLA";
|
|
27
29
|
FindingKind["HIGH_VULNERABILITY_OUT_OF_SLA"] = "HIGH_VULNERABILITY_OUT_OF_SLA";
|
|
28
30
|
FindingKind["MEDIUM_VULNERABILITY_OUT_OF_SLA"] = "MEDIUM_VULNERABILITY_OUT_OF_SLA";
|
|
@@ -44,6 +46,7 @@ const lookupFindingOutcomeByKind = (kind) => {
|
|
|
44
46
|
case FindingKind.HIGH_VULNERABILITY_OUT_OF_SLA:
|
|
45
47
|
case FindingKind.MEDIUM_VULNERABILITY_OUT_OF_SLA:
|
|
46
48
|
case FindingKind.LOW_VULNERABILITY_OUT_OF_SLA:
|
|
49
|
+
case FindingKind.ENDPOINT_PROTECTION_MISSING:
|
|
47
50
|
case FindingKind.WEB_GATEWAY_NOT_ACTIVE: {
|
|
48
51
|
return finding_outcome_1.FindingOutcome.REMEDIATION;
|
|
49
52
|
}
|
|
@@ -70,7 +73,13 @@ const lookupFindingKindByCategory = (category) => {
|
|
|
70
73
|
return [FindingKind.FAILED_PHISHING, FindingKind.TRAINING_OVERDUE];
|
|
71
74
|
}
|
|
72
75
|
case category_1.Category.EDR: {
|
|
73
|
-
return [
|
|
76
|
+
return [
|
|
77
|
+
FindingKind.DEVICE_NOT_MANAGED,
|
|
78
|
+
FindingKind.FIREWALL_DISABLED,
|
|
79
|
+
FindingKind.SCREENSAVER_DISABLED,
|
|
80
|
+
FindingKind.DEVICE_NOT_ENCRYPTED,
|
|
81
|
+
FindingKind.ENDPOINT_PROTECTION_MISSING,
|
|
82
|
+
];
|
|
74
83
|
}
|
|
75
84
|
case category_1.Category.WEB_GATEWAY: {
|
|
76
85
|
return [FindingKind.WEB_GATEWAY_NOT_ACTIVE];
|
|
@@ -102,6 +111,7 @@ const lookupFindingSeverityByKind = (kind) => {
|
|
|
102
111
|
case FindingKind.MFA_NOT_SECURE:
|
|
103
112
|
case FindingKind.FIREWALL_DISABLED:
|
|
104
113
|
case FindingKind.DEVICE_NOT_ENCRYPTED:
|
|
114
|
+
case FindingKind.ENDPOINT_PROTECTION_MISSING:
|
|
105
115
|
return finding_severity_1.FindingSeverity.HIGH;
|
|
106
116
|
case FindingKind.MFA_NOT_ENABLED:
|
|
107
117
|
case FindingKind.CRITICAL_VULNERABILITY_OUT_OF_SLA:
|
|
@@ -130,6 +140,7 @@ const lookupFindingScoreByCategoryKindAndSeverity = (category, kind) => {
|
|
|
130
140
|
return 14;
|
|
131
141
|
case FindingKind.FIREWALL_DISABLED:
|
|
132
142
|
case FindingKind.DEVICE_NOT_ENCRYPTED:
|
|
143
|
+
case FindingKind.ENDPOINT_PROTECTION_MISSING:
|
|
133
144
|
return 9;
|
|
134
145
|
case FindingKind.SCREENSAVER_DISABLED:
|
|
135
146
|
return 5;
|
|
@@ -230,6 +241,9 @@ const generateInsights = (category, kind) => {
|
|
|
230
241
|
const rule = insights.rule;
|
|
231
242
|
if (category === category_1.Category.EDR || category === category_1.Category.VULNERABILITY) {
|
|
232
243
|
rule.aid = { $has: true };
|
|
244
|
+
if (kind === FindingKind.ENDPOINT_PROTECTION_MISSING) {
|
|
245
|
+
rule.uid = { $has: true };
|
|
246
|
+
}
|
|
233
247
|
}
|
|
234
248
|
else {
|
|
235
249
|
rule.uid = { $has: true };
|
|
@@ -272,6 +286,7 @@ const generateInsights = (category, kind) => {
|
|
|
272
286
|
rule.kind = saasComponentKind_1.SaasComponentKind.PHISHING_RESULT;
|
|
273
287
|
break;
|
|
274
288
|
case FindingKind.DEVICE_NOT_MANAGED:
|
|
289
|
+
case FindingKind.ENDPOINT_PROTECTION_MISSING:
|
|
275
290
|
setCondition('meta._findings.active', false);
|
|
276
291
|
rule.kind = saasComponentKind_1.SaasComponentKind.EDR_CONFIG;
|
|
277
292
|
break;
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"findingKind.js","sourceRoot":"","sources":["../../../../src/dto/enums/findingKind.ts"],"names":[],"mappings":";;;AACA,yCAAoC;AACpC,uDAAiD;AACjD,yDAAmD;AACnD,2DAAsD;AAEtD,IAAY,
|
|
1
|
+
{"version":3,"file":"findingKind.js","sourceRoot":"","sources":["../../../../src/dto/enums/findingKind.ts"],"names":[],"mappings":";;;AACA,yCAAoC;AACpC,uDAAiD;AACjD,yDAAmD;AACnD,2DAAsD;AAEtD,IAAY,WA8BX;AA9BD,WAAY,WAAW;IACrB,MAAM;IACN,wCAAyB,CAAA;IAEzB,WAAW;IACX,kDAAmC,CAAA;IACnC,gDAAiC,CAAA;IACjC,4CAA6B,CAAA;IAC7B,8DAA+C,CAAA;IAC/C,8DAA+C,CAAA;IAE/C,WAAW;IACX,kDAAmC,CAAA;IACnC,oDAAqC,CAAA;IAErC,MAAM;IACN,wDAAyC,CAAA;IACzC,sDAAuC,CAAA;IACvC,4DAA6C,CAAA;IAC7C,4DAA6C,CAAA;IAC7C,0EAA2D,CAAA;IAE3D,gBAAgB;IAChB,sFAAuE,CAAA;IACvE,8EAA+D,CAAA;IAC/D,kFAAmE,CAAA;IACnE,4EAA6D,CAAA;IAE7D,cAAc;IACd,gEAAiD,CAAA;AACnD,CAAC,EA9BW,WAAW,2BAAX,WAAW,QA8BtB;AAEM,MAAM,0BAA0B,GAAG,CAAC,IAAiB,EAAkB,EAAE;IAC9E,QAAQ,IAAI,EAAE,CAAC;QACb,KAAK,WAAW,CAAC,UAAU,CAAC;QAC5B,KAAK,WAAW,CAAC,eAAe,CAAC;QACjC,KAAK,WAAW,CAAC,cAAc,CAAC;QAChC,KAAK,WAAW,CAAC,gBAAgB,CAAC;QAClC,KAAK,WAAW,CAAC,kBAAkB,CAAC;QACpC,KAAK,WAAW,CAAC,iBAAiB,CAAC;QACnC,KAAK,WAAW,CAAC,oBAAoB,CAAC;QACtC,KAAK,WAAW,CAAC,oBAAoB,CAAC;QACtC,KAAK,WAAW,CAAC,iCAAiC,CAAC;QACnD,KAAK,WAAW,CAAC,6BAA6B,CAAC;QAC/C,KAAK,WAAW,CAAC,+BAA+B,CAAC;QACjD,KAAK,WAAW,CAAC,4BAA4B,CAAC;QAC9C,KAAK,WAAW,CAAC,2BAA2B,CAAC;QAC7C,KAAK,WAAW,CAAC,sBAAsB,CAAC,CAAC,CAAC;YACxC,OAAO,gCAAc,CAAC,WAAW,CAAC;QACpC,CAAC;QACD,KAAK,WAAW,CAAC,YAAY,CAAC;QAC9B,KAAK,WAAW,CAAC,qBAAqB,CAAC;QACvC,KAAK,WAAW,CAAC,qBAAqB,CAAC,CAAC,CAAC;YACvC,OAAO,gCAAc,CAAC,SAAS,CAAC;QAClC,CAAC;QACD,KAAK,WAAW,CAAC,eAAe,CAAC,CAAC,CAAC;YACjC,OAAO,gCAAc,CAAC,SAAS,CAAC;QAClC,CAAC;QACD,OAAO,CAAC,CAAC,CAAC;YACR,MAAM,IAAI,KAAK,CAAC,sDAAsD,IAAI,EAAE,CAAC,CAAC;QAChF,CAAC;IACH,CAAC;AACH,CAAC,CAAC;AA9BW,QAAA,0BAA0B,8BA8BrC;AAEK,MAAM,2BAA2B,GAAG,CAAC,QAAgB,EAAiB,EAAE;IAC7E,QAAQ,QAAQ,EAAE,CAAC;QACjB,KAAK,mBAAQ,CAAC,QAAQ,CAAC,CAAC,CAAC;YACvB,OAAO,CAAC,WAAW,CAAC,eAAe,EAAE,WAAW,CAAC,cAAc,EAAE,WAAW,CAAC,YAAY,EAAE,WAAW,CAAC,qBAAqB,EAAE,WAAW,CAAC,qBAAqB,CAAC,CAAC;QACnK,CAAC;QACD,KAAK,mBAAQ,CAAC,QAAQ,CAAC,CAAC,CAAC;YACvB,OAAO,CAAC,WAAW,CAAC,eAAe,EAAE,WAAW,CAAC,gBAAgB,CAAC,CAAC;QACrE,CAAC;QACD,KAAK,mBAAQ,CAAC,GAAG,CAAC,CAAC,CAAC;YAClB,OAAO;gBACL,WAAW,CAAC,kBAAkB;gBAC9B,WAAW,CAAC,iBAAiB;gBAC7B,WAAW,CAAC,oBAAoB;gBAChC,WAAW,CAAC,oBAAoB;gBAChC,WAAW,CAAC,2BAA2B;aACxC,CAAC;QACJ,CAAC;QACD,KAAK,mBAAQ,CAAC,WAAW,CAAC,CAAC,CAAC;YAC1B,OAAO,CAAC,WAAW,CAAC,sBAAsB,CAAC,CAAC;QAC9C,CAAC;QACD,KAAK,mBAAQ,CAAC,aAAa,CAAC,CAAC,CAAC;YAC5B,OAAO;gBACL,WAAW,CAAC,iCAAiC;gBAC7C,WAAW,CAAC,6BAA6B;gBACzC,WAAW,CAAC,+BAA+B;gBAC3C,WAAW,CAAC,4BAA4B;aACzC,CAAC;QACJ,CAAC;QACD,KAAK,mBAAQ,CAAC,YAAY,CAAC,CAAC,CAAC;YAC3B,OAAO,EAAE,CAAC;QACZ,CAAC;QACD,OAAO,CAAC,CAAC,CAAC;YACR,OAAO,EAAE,CAAC;QACZ,CAAC;IACH,CAAC;AACH,CAAC,CAAC;AAnCW,QAAA,2BAA2B,+BAmCtC;AAEK,MAAM,2BAA2B,GAAG,CAAC,IAAY,EAA+B,EAAE;IACvF,QAAQ,IAAI,EAAE,CAAC;QACb,KAAK,WAAW,CAAC,YAAY,CAAC;QAC9B,KAAK,WAAW,CAAC,qBAAqB,CAAC;QACvC,KAAK,WAAW,CAAC,qBAAqB,CAAC;QACvC,KAAK,WAAW,CAAC,kBAAkB,CAAC;QACpC,KAAK,WAAW,CAAC,sBAAsB,CAAC;QACxC,KAAK,WAAW,CAAC,cAAc,CAAC;QAChC,KAAK,WAAW,CAAC,iBAAiB,CAAC;QACnC,KAAK,WAAW,CAAC,oBAAoB,CAAC;QACtC,KAAK,WAAW,CAAC,2BAA2B;YAC1C,OAAO,kCAAe,CAAC,IAAI,CAAC;QAC9B,KAAK,WAAW,CAAC,eAAe,CAAC;QACjC,KAAK,WAAW,CAAC,iCAAiC;YAChD,OAAO,kCAAe,CAAC,QAAQ,CAAC;QAClC,KAAK,WAAW,CAAC,6BAA6B;YAC5C,OAAO,kCAAe,CAAC,IAAI,CAAC;QAC9B,KAAK,WAAW,CAAC,+BAA+B,CAAC;QACjD,KAAK,WAAW,CAAC,oBAAoB;YACnC,OAAO,kCAAe,CAAC,MAAM,CAAC;QAChC,KAAK,WAAW,CAAC,4BAA4B;YAC3C,OAAO,kCAAe,CAAC,GAAG,CAAC;QAC7B,KAAK,WAAW,CAAC,eAAe,CAAC;QACjC,KAAK,WAAW,CAAC,gBAAgB;YAC/B,OAAO,kCAAe,CAAC,MAAM,CAAC;QAChC;YACE,OAAO,SAAS,CAAC;IACrB,CAAC;AACH,CAAC,CAAC;AA5BW,QAAA,2BAA2B,+BA4BtC;AAEF,iGAAiG;AAC1F,MAAM,2CAA2C,GAAG,CAAC,QAAkB,EAAE,IAAY,EAAU,EAAE;IACtG,QAAQ,QAAQ,EAAE,CAAC;QACjB,KAAK,mBAAQ,CAAC,GAAG,CAAC,CAAC,CAAC;YAClB,QAAQ,IAAI,EAAE,CAAC;gBACb,KAAK,WAAW,CAAC,kBAAkB;oBACjC,OAAO,EAAE,CAAC;gBACZ,KAAK,WAAW,CAAC,iBAAiB,CAAC;gBACnC,KAAK,WAAW,CAAC,oBAAoB,CAAC;gBACtC,KAAK,WAAW,CAAC,2BAA2B;oBAC1C,OAAO,CAAC,CAAC;gBACX,KAAK,WAAW,CAAC,oBAAoB;oBACnC,OAAO,CAAC,CAAC;gBACX;oBACE,OAAO,CAAC,CAAC;YACb,CAAC;QACH,CAAC;QACD,KAAK,mBAAQ,CAAC,aAAa,CAAC,CAAC,CAAC;YAC5B,QAAQ,IAAI,EAAE,CAAC;gBACb,KAAK,WAAW,CAAC,kBAAkB;oBACjC,OAAO,EAAE,CAAC;gBACZ,KAAK,WAAW,CAAC,iCAAiC;oBAChD,OAAO,EAAE,CAAC;gBACZ,KAAK,WAAW,CAAC,6BAA6B;oBAC5C,OAAO,CAAC,CAAC;gBACX,KAAK,WAAW,CAAC,+BAA+B;oBAC9C,OAAO,CAAC,CAAC;gBACX,KAAK,WAAW,CAAC,4BAA4B;oBAC3C,OAAO,CAAC,CAAC;gBACX;oBACE,OAAO,CAAC,CAAC;YACb,CAAC;QACH,CAAC;QACD,KAAK,mBAAQ,CAAC,QAAQ,CAAC,CAAC,CAAC;YACvB,QAAQ,IAAI,EAAE,CAAC;gBACb,KAAK,WAAW,CAAC,eAAe;oBAC9B,OAAO,EAAE,CAAC;gBACZ,KAAK,WAAW,CAAC,cAAc;oBAC7B,OAAO,CAAC,CAAC;gBACX,KAAK,WAAW,CAAC,UAAU;oBACzB,OAAO,EAAE,CAAC;gBACZ,KAAK,WAAW,CAAC,YAAY,CAAC;gBAC9B,KAAK,WAAW,CAAC,qBAAqB,CAAC;gBACvC,KAAK,WAAW,CAAC,qBAAqB,CAAC;gBACvC;oBACE,OAAO,CAAC,CAAC;YACb,CAAC;QACH,CAAC;QACD,KAAK,mBAAQ,CAAC,QAAQ,CAAC,CAAC,CAAC;YACvB,QAAQ,IAAI,EAAE,CAAC;gBACb,KAAK,WAAW,CAAC,eAAe;oBAC9B,OAAO,EAAE,CAAC;gBACZ,KAAK,WAAW,CAAC,UAAU;oBACzB,OAAO,CAAC,CAAC;gBACX,KAAK,WAAW,CAAC,gBAAgB;oBAC/B,OAAO,CAAC,CAAC;gBACX;oBACE,OAAO,CAAC,CAAC;YACb,CAAC;QACH,CAAC;QACD,KAAK,mBAAQ,CAAC,WAAW,CAAC,CAAC,CAAC;YAC1B,QAAQ,IAAI,EAAE,CAAC;gBACb,KAAK,WAAW,CAAC,sBAAsB;oBACrC,OAAO,CAAC,CAAC;gBACX,KAAK,WAAW,CAAC,UAAU;oBACzB,OAAO,CAAC,CAAC;gBACX;oBACE,OAAO,CAAC,CAAC;YACb,CAAC;QACH,CAAC;QACD,KAAK,mBAAQ,CAAC,YAAY,CAAC;QAC3B,OAAO,CAAC,CAAC,CAAC;YACR,OAAO,CAAC,CAAC;QACX,CAAC;IACH,CAAC;AACH,CAAC,CAAC;AA1EW,QAAA,2CAA2C,+CA0EtD;AAEK,MAAM,+BAA+B,GAAG,CAAC,IAAY,EAAU,EAAE;IACtE,QAAQ,IAAI,EAAE,CAAC;QACb,KAAK,WAAW,CAAC,eAAe;YAC9B,OAAO,iCAAiC,CAAC;QAC3C,KAAK,WAAW,CAAC,gBAAgB;YAC/B,OAAO,iCAAiC,CAAC;QAC3C,KAAK,WAAW,CAAC,sBAAsB;YACrC,OAAO,2BAA2B,CAAC;QACrC;YACE,OAAO,IAAI,CAAC,WAAW,EAAE,CAAC;IAC9B,CAAC;AACH,CAAC,CAAC;AAXW,QAAA,+BAA+B,mCAW1C;AAEK,MAAM,gBAAgB,GAAG,CAAC,QAAgB,EAAE,IAAY,EAAE,EAAE;IAEjE,MAAM,QAAQ,GAAwB;QACpC,IAAI,EAAE;YACJ,IAAI,EAAE,IAAmB;YACzB,QAAQ,EAAE,IAAA,mCAA2B,EAAC,IAAI,CAAoB;YAC9D,YAAY,EAAE,IAAA,uCAA+B,EAAC,IAAI,CAAC;SACpD;QACD,IAAI,EAAE;YACJ,QAAQ,EAAE,QAAoB;YAC9B,IAAI,EAAE,EAAuB;YAC7B,GAAG,EAAE,SAAuC;YAC5C,GAAG,EAAE,SAAuC;YAC5C,QAAQ,EAAE,SAAuC;YACjD,gBAAgB,EAAE,EAAe;YACjC,mBAAmB,EAAE,EAAe;SACrC;KACF,CAAC;IACF,MAAM,IAAI,GAAG,QAAQ,CAAC,IAAK,CAAC;IAC5B,IAAI,QAAQ,KAAK,mBAAQ,CAAC,GAAG,IAAI,QAAQ,KAAK,mBAAQ,CAAC,aAAa,EAAE,CAAC;QACrE,IAAI,CAAC,GAAG,GAAG,EAAC,IAAI,EAAE,IAAI,EAAC,CAAC;QACxB,IAAI,IAAI,KAAK,WAAW,CAAC,2BAA2B,EAAE,CAAC;YACrD,IAAI,CAAC,GAAG,GAAG,EAAC,IAAI,EAAE,IAAI,EAAC,CAAC;QAC1B,CAAC;IACH,CAAC;SAAM,CAAC;QACN,IAAI,CAAC,GAAG,GAAG,EAAC,IAAI,EAAE,IAAI,EAAC,CAAC;IAC1B,CAAC;IACD,MAAM,YAAY,GAAG,CAAC,GAAW,EAAE,KAAuB,EAAE,EAAE;QAC5D,IAAI,CAAC,gBAAiB,CAAC,GAAG,CAAC,GAAG,KAAK,CAAC;QACpC,IAAI,CAAC,mBAAoB,CAAC,GAAG,CAAC,GAAG,CAAC,KAAK,CAAC;IAC1C,CAAC,CAAC;IAEF,QAAQ,IAAI,EAAE,CAAC;QACb,KAAK,WAAW,CAAC,sBAAsB;YACrC,YAAY,CAAC,yBAAyB,EAAE,KAAK,CAAC,CAAC;YAC/C,IAAI,CAAC,IAAI,GAAG,qCAAiB,CAAC,mBAAmB,CAAC;YAClD,MAAM;QACR,KAAK,WAAW,CAAC,iCAAiC;YAChD,YAAY,CAAC,wBAAwB,EAAE,IAAI,CAAC,CAAC;YAC7C,IAAI,CAAC,IAAI,GAAG,qCAAiB,CAAC,aAAa,CAAC;YAC5C,IAAI,CAAC,QAAQ,GAAG,kCAAe,CAAC,QAAQ,CAAC;YACzC,MAAM;QACR,KAAK,WAAW,CAAC,6BAA6B;YAC5C,YAAY,CAAC,wBAAwB,EAAE,IAAI,CAAC,CAAC;YAC7C,IAAI,CAAC,IAAI,GAAG,qCAAiB,CAAC,aAAa,CAAC;YAC5C,IAAI,CAAC,QAAQ,GAAG,kCAAe,CAAC,IAAI,CAAC;YACrC,MAAM;QACR,KAAK,WAAW,CAAC,+BAA+B;YAC9C,YAAY,CAAC,wBAAwB,EAAE,IAAI,CAAC,CAAC;YAC7C,IAAI,CAAC,IAAI,GAAG,qCAAiB,CAAC,aAAa,CAAC;YAC5C,IAAI,CAAC,QAAQ,GAAG,kCAAe,CAAC,MAAM,CAAC;YACvC,MAAM;QACR,KAAK,WAAW,CAAC,4BAA4B;YAC3C,YAAY,CAAC,wBAAwB,EAAE,IAAI,CAAC,CAAC;YAC7C,IAAI,CAAC,IAAI,GAAG,qCAAiB,CAAC,aAAa,CAAC;YAC5C,IAAI,CAAC,QAAQ,GAAG,kCAAe,CAAC,GAAG,CAAC;YACpC,MAAM;QACR,KAAK,WAAW,CAAC,gBAAgB;YAC/B,YAAY,CAAC,wBAAwB,EAAE,IAAI,CAAC,CAAC;YAC7C,IAAI,CAAC,IAAI,GAAG,qCAAiB,CAAC,mBAAmB,CAAC;YAClD,MAAM;QACR,KAAK,WAAW,CAAC,eAAe;YAC9B,YAAY,CAAC,+BAA+B,EAAE,IAAI,CAAC,CAAC;YACpD,IAAI,CAAC,IAAI,GAAG,qCAAiB,CAAC,eAAe,CAAC;YAC9C,MAAM;QACR,KAAK,WAAW,CAAC,kBAAkB,CAAC;QACpC,KAAK,WAAW,CAAC,2BAA2B;YAC1C,YAAY,CAAC,uBAAuB,EAAE,KAAK,CAAC,CAAC;YAC7C,IAAI,CAAC,IAAI,GAAG,qCAAiB,CAAC,UAAU,CAAC;YACzC,MAAM;QACR,KAAK,WAAW,CAAC,iBAAiB;YAChC,YAAY,CAAC,mCAAmC,EAAE,IAAI,CAAC,CAAC;YACxD,IAAI,CAAC,IAAI,GAAG,qCAAiB,CAAC,UAAU,CAAC;YACzC,MAAM;QACR,KAAK,WAAW,CAAC,oBAAoB;YACnC,YAAY,CAAC,sCAAsC,EAAE,IAAI,CAAC,CAAC;YAC3D,IAAI,CAAC,IAAI,GAAG,qCAAiB,CAAC,UAAU,CAAC;YACzC,MAAM;QACR,KAAK,WAAW,CAAC,oBAAoB;YACnC,YAAY,CAAC,qCAAqC,EAAE,IAAI,CAAC,CAAC;YAC1D,IAAI,CAAC,IAAI,GAAG,qCAAiB,CAAC,UAAU,CAAC;YACzC,MAAM;QACR,KAAK,WAAW,CAAC,eAAe;YAC9B,YAAY,CAAC,wBAAwB,EAAE,KAAK,CAAC,CAAC;YAC9C,IAAI,CAAC,IAAI,GAAG,qCAAiB,CAAC,UAAU,CAAC;YACzC,MAAM;QACR,KAAK,WAAW,CAAC,cAAc;YAC7B,YAAY,CAAC,mCAAmC,EAAE,IAAI,CAAC,CAAC;YACxD,IAAI,CAAC,IAAI,GAAG,qCAAiB,CAAC,UAAU,CAAC;YACzC,MAAM;QACR,KAAK,WAAW,CAAC,YAAY;YAC3B,YAAY,CAAC,4BAA4B,EAAE,IAAI,CAAC,CAAC;YACjD,IAAI,CAAC,IAAI,GAAG,qCAAiB,CAAC,gBAAgB,CAAC;YAC/C,MAAM;QACR,KAAK,WAAW,CAAC,qBAAqB;YACpC,YAAY,CAAC,8BAA8B,EAAE,IAAI,CAAC,CAAC;YACnD,IAAI,CAAC,IAAI,GAAG,qCAAiB,CAAC,gBAAgB,CAAC;YAC/C,MAAM;QACR,KAAK,WAAW,CAAC,qBAAqB;YACpC,YAAY,CAAC,oCAAoC,EAAE,IAAI,CAAC,CAAC;YACzD,IAAI,CAAC,IAAI,GAAG,qCAAiB,CAAC,gBAAgB,CAAC;YAC/C,MAAM;QACR;YACE,MAAM;IACV,CAAC;IACD,OAAO,QAAQ,CAAC;AAClB,CAAC,CAAC;AA1GW,QAAA,gBAAgB,oBA0G3B"}
|
package/package.json
CHANGED
|
@@ -24,6 +24,9 @@ export enum FindingKind {
|
|
|
24
24
|
FIREWALL_DISABLED = 'FIREWALL_DISABLED',
|
|
25
25
|
SCREENSAVER_DISABLED = 'SCREENSAVER_DISABLED',
|
|
26
26
|
DEVICE_NOT_ENCRYPTED = 'DEVICE_NOT_ENCRYPTED',
|
|
27
|
+
ENDPOINT_PROTECTION_MISSING = 'ENDPOINT_PROTECTION_MISSING',
|
|
28
|
+
|
|
29
|
+
// VULNERABILITY
|
|
27
30
|
CRITICAL_VULNERABILITY_OUT_OF_SLA = 'CRITICAL_VULNERABILITY_OUT_OF_SLA',
|
|
28
31
|
HIGH_VULNERABILITY_OUT_OF_SLA = 'HIGH_VULNERABILITY_OUT_OF_SLA',
|
|
29
32
|
MEDIUM_VULNERABILITY_OUT_OF_SLA = 'MEDIUM_VULNERABILITY_OUT_OF_SLA',
|
|
@@ -47,6 +50,7 @@ export const lookupFindingOutcomeByKind = (kind: FindingKind): FindingOutcome =>
|
|
|
47
50
|
case FindingKind.HIGH_VULNERABILITY_OUT_OF_SLA:
|
|
48
51
|
case FindingKind.MEDIUM_VULNERABILITY_OUT_OF_SLA:
|
|
49
52
|
case FindingKind.LOW_VULNERABILITY_OUT_OF_SLA:
|
|
53
|
+
case FindingKind.ENDPOINT_PROTECTION_MISSING:
|
|
50
54
|
case FindingKind.WEB_GATEWAY_NOT_ACTIVE: {
|
|
51
55
|
return FindingOutcome.REMEDIATION;
|
|
52
56
|
}
|
|
@@ -73,7 +77,13 @@ export const lookupFindingKindByCategory = (category: string): FindingKind[] =>
|
|
|
73
77
|
return [FindingKind.FAILED_PHISHING, FindingKind.TRAINING_OVERDUE];
|
|
74
78
|
}
|
|
75
79
|
case Category.EDR: {
|
|
76
|
-
return [
|
|
80
|
+
return [
|
|
81
|
+
FindingKind.DEVICE_NOT_MANAGED,
|
|
82
|
+
FindingKind.FIREWALL_DISABLED,
|
|
83
|
+
FindingKind.SCREENSAVER_DISABLED,
|
|
84
|
+
FindingKind.DEVICE_NOT_ENCRYPTED,
|
|
85
|
+
FindingKind.ENDPOINT_PROTECTION_MISSING,
|
|
86
|
+
];
|
|
77
87
|
}
|
|
78
88
|
case Category.WEB_GATEWAY: {
|
|
79
89
|
return [FindingKind.WEB_GATEWAY_NOT_ACTIVE];
|
|
@@ -105,6 +115,7 @@ export const lookupFindingSeverityByKind = (kind: string): FindingSeverity | und
|
|
|
105
115
|
case FindingKind.MFA_NOT_SECURE:
|
|
106
116
|
case FindingKind.FIREWALL_DISABLED:
|
|
107
117
|
case FindingKind.DEVICE_NOT_ENCRYPTED:
|
|
118
|
+
case FindingKind.ENDPOINT_PROTECTION_MISSING:
|
|
108
119
|
return FindingSeverity.HIGH;
|
|
109
120
|
case FindingKind.MFA_NOT_ENABLED:
|
|
110
121
|
case FindingKind.CRITICAL_VULNERABILITY_OUT_OF_SLA:
|
|
@@ -133,6 +144,7 @@ export const lookupFindingScoreByCategoryKindAndSeverity = (category: Category,
|
|
|
133
144
|
return 14;
|
|
134
145
|
case FindingKind.FIREWALL_DISABLED:
|
|
135
146
|
case FindingKind.DEVICE_NOT_ENCRYPTED:
|
|
147
|
+
case FindingKind.ENDPOINT_PROTECTION_MISSING:
|
|
136
148
|
return 9;
|
|
137
149
|
case FindingKind.SCREENSAVER_DISABLED:
|
|
138
150
|
return 5;
|
|
@@ -234,6 +246,9 @@ export const generateInsights = (category: string, kind: string) => {
|
|
|
234
246
|
const rule = insights.rule!;
|
|
235
247
|
if (category === Category.EDR || category === Category.VULNERABILITY) {
|
|
236
248
|
rule.aid = {$has: true};
|
|
249
|
+
if (kind === FindingKind.ENDPOINT_PROTECTION_MISSING) {
|
|
250
|
+
rule.uid = {$has: true};
|
|
251
|
+
}
|
|
237
252
|
} else {
|
|
238
253
|
rule.uid = {$has: true};
|
|
239
254
|
}
|
|
@@ -276,6 +291,7 @@ export const generateInsights = (category: string, kind: string) => {
|
|
|
276
291
|
rule.kind = SaasComponentKind.PHISHING_RESULT;
|
|
277
292
|
break;
|
|
278
293
|
case FindingKind.DEVICE_NOT_MANAGED:
|
|
294
|
+
case FindingKind.ENDPOINT_PROTECTION_MISSING:
|
|
279
295
|
setCondition('meta._findings.active', false);
|
|
280
296
|
rule.kind = SaasComponentKind.EDR_CONFIG;
|
|
281
297
|
break;
|