@etcsec-com/etc-collector 1.4.0

package/dist/services/jobs/azure-job-runner.js

@@ -0,0 +1,199 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.AzureJobRunner = void 0;
+const scoring_service_1 = require("../audit/scoring.service");
+const logger_1 = require("../../utils/logger");
+const job_store_1 = require("./job-store");
+const user_security_detector_1 = require("../audit/detectors/azure/user-security.detector");
+const app_security_detector_1 = require("../audit/detectors/azure/app-security.detector");
+const conditional_access_detector_1 = require("../audit/detectors/azure/conditional-access.detector");
+const privilege_security_detector_1 = require("../audit/detectors/azure/privilege-security.detector");
+class AzureJobRunner {
+    jobStore;
+    graphProvider;
+    constructor(graphProvider) {
+        this.jobStore = job_store_1.JobStore.getInstance();
+        this.graphProvider = graphProvider;
+    }
+    startAudit(options = {}) {
+        const job = this.jobStore.createJob({
+            type: 'azure-audit',
+            options: options,
+        });
+        this.runAuditAsync(job.job_id, options).catch((error) => {
+            logger_1.logger.error('Async Azure audit failed', { job_id: job.job_id, error });
+        });
+        return job;
+    }
+    async runAuditAsync(jobId, options) {
+        const startTime = Date.now();
+        const { includeDetails = false, maxUsers, maxGroups, maxApps } = options;
+        try {
+            this.jobStore.startJob(jobId);
+            this.jobStore.startStep(jobId, 'AUTHENTICATING', 'Authenticating with Microsoft Graph');
+            await this.graphProvider.authenticate();
+            this.jobStore.completeStep(jobId, 'AUTHENTICATING');
+            this.jobStore.startStep(jobId, 'FETCHING_USERS', 'Fetching users from Azure AD');
+            const users = await this.fetchUsers(maxUsers);
+            this.jobStore.completeStep(jobId, 'FETCHING_USERS', { count: users.length });
+            this.jobStore.startStep(jobId, 'FETCHING_GROUPS', 'Fetching groups from Azure AD');
+            const groups = await this.fetchGroups(maxGroups);
+            this.jobStore.completeStep(jobId, 'FETCHING_GROUPS', { count: groups.length });
+            this.jobStore.startStep(jobId, 'FETCHING_APPS', 'Fetching applications from Azure AD');
+            const apps = await this.fetchApplications(maxApps);
+            this.jobStore.completeStep(jobId, 'FETCHING_APPS', { count: apps.length });
+            this.jobStore.startStep(jobId, 'FETCHING_POLICIES', 'Fetching Conditional Access policies');
+            const policies = await this.fetchPolicies();
+            this.jobStore.completeStep(jobId, 'FETCHING_POLICIES', { count: policies.length });
+            this.jobStore.startStep(jobId, 'FETCHING_ROLES', 'Fetching directory role assignments');
+            const roleMap = await this.fetchRoleAssignments(users);
+            this.jobStore.completeStep(jobId, 'FETCHING_ROLES', { count: roleMap.size });
+            this.jobStore.startStep(jobId, 'DETECTING_USER_SECURITY', 'Analyzing user security vulnerabilities');
+            const userFindings = (0, user_security_detector_1.detectUserSecurityVulnerabilities)(users, roleMap, includeDetails);
+            this.jobStore.completeStep(jobId, 'DETECTING_USER_SECURITY', { findings: userFindings.length });
+            this.jobStore.startStep(jobId, 'DETECTING_PRIVILEGE_SECURITY', 'Analyzing privilege security vulnerabilities');
+            const privilegeFindings = (0, privilege_security_detector_1.detectPrivilegeSecurityVulnerabilities)(users, groups, roleMap, includeDetails);
+            this.jobStore.completeStep(jobId, 'DETECTING_PRIVILEGE_SECURITY', { findings: privilegeFindings.length });
+            this.jobStore.startStep(jobId, 'DETECTING_APP_SECURITY', 'Analyzing application security vulnerabilities');
+            const appFindings = (0, app_security_detector_1.detectAppSecurityVulnerabilities)(apps, includeDetails);
+            this.jobStore.completeStep(jobId, 'DETECTING_APP_SECURITY', { findings: appFindings.length });
+            this.jobStore.startStep(jobId, 'DETECTING_CONDITIONAL_ACCESS', 'Analyzing Conditional Access vulnerabilities');
+            const caFindings = (0, conditional_access_detector_1.detectConditionalAccessVulnerabilities)(policies, includeDetails);
+            this.jobStore.completeStep(jobId, 'DETECTING_CONDITIONAL_ACCESS', { findings: caFindings.length });
+            const findings = [
+                ...userFindings,
+                ...privilegeFindings,
+                ...appFindings,
+                ...caFindings,
+            ];
+            this.jobStore.startStep(jobId, 'CALCULATING_SCORE', 'Calculating security score');
+            const score = (0, scoring_service_1.calculateSecurityScore)(findings, users.length);
+            this.jobStore.completeStep(jobId, 'CALCULATING_SCORE');
+            this.jobStore.startStep(jobId, 'FORMATTING', 'Formatting audit response');
+            const executionTimeMs = Date.now() - startTime;
+            const disabledUsers = users.filter((u) => !u.accountEnabled).length;
+            const enabledUsers = users.length - disabledUsers;
+            const result = {
+                score,
+                findings,
+                stats: {
+                    totalUsers: users.length,
+                    enabledUsers,
+                    disabledUsers,
+                    totalGroups: groups.length,
+                    totalApps: apps.length,
+                    totalPolicies: policies.length,
+                    totalFindings: findings.length,
+                    executionTimeMs,
+                },
+                timestamp: new Date(),
+            };
+            this.jobStore.completeStep(jobId, 'FORMATTING');
+            this.jobStore.completeJob(jobId, result);
+        }
+        catch (error) {
+            const errorMessage = error instanceof Error ? error.message : 'Unknown error';
+            logger_1.logger.error('Azure audit job failed', { jobId, error: errorMessage });
+            this.jobStore.failJob(jobId, {
+                code: 'AZURE_AUDIT_FAILED',
+                message: errorMessage,
+                step: this.jobStore.getJob(jobId)?.current_step || 'AUTHENTICATING',
+            });
+        }
+    }
+    async fetchUsers(maxUsers) {
+        try {
+            const options = {
+                select: [
+                    'id',
+                    'userPrincipalName',
+                    'displayName',
+                    'mail',
+                    'givenName',
+                    'surname',
+                    'jobTitle',
+                    'department',
+                    'companyName',
+                    'manager',
+                    'officeLocation',
+                    'employeeId',
+                    'createdDateTime',
+                    'lastSignInDateTime',
+                    'lastPasswordChangeDateTime',
+                    'accountEnabled',
+                    'userType',
+                    'riskLevel',
+                    'riskState',
+                    'isMfaRegistered',
+                    'strongAuthenticationMethods',
+                    'assignedLicenses',
+                    'passwordPolicies',
+                ],
+                expand: ['manager($select=id,displayName)'],
+                top: maxUsers,
+            };
+            return await this.graphProvider.getUsers(options);
+        }
+        catch (error) {
+            logger_1.logger.error('Failed to fetch users:', error);
+            return [];
+        }
+    }
+    async fetchGroups(maxGroups) {
+        try {
+            const options = {
+                select: ['id', 'displayName', 'mailEnabled', 'securityEnabled', 'groupTypes', 'membershipRule'],
+                top: maxGroups,
+            };
+            return await this.graphProvider.getGroups(options);
+        }
+        catch (error) {
+            logger_1.logger.error('Failed to fetch groups:', error);
+            return [];
+        }
+    }
+    async fetchApplications(maxApps) {
+        try {
+            const options = {
+                select: [
+                    'id',
+                    'appId',
+                    'displayName',
+                    'createdDateTime',
+                    'signInAudience',
+                    'requiredResourceAccess',
+                    'passwordCredentials',
+                    'keyCredentials',
+                ],
+                top: maxApps,
+            };
+            return await this.graphProvider.getApplications(options);
+        }
+        catch (error) {
+            logger_1.logger.error('Failed to fetch applications:', error);
+            return [];
+        }
+    }
+    async fetchPolicies() {
+        try {
+            return await this.graphProvider.getPolicies();
+        }
+        catch (error) {
+            logger_1.logger.error('Failed to fetch policies:', error);
+            return [];
+        }
+    }
+    async fetchRoleAssignments(_users) {
+        const roleMap = new Map();
+        try {
+            logger_1.logger.warn('Role assignment fetching not yet fully implemented - role-based detectors will be limited');
+            return roleMap;
+        }
+        catch (error) {
+            logger_1.logger.warn('Failed to fetch role assignments:', error);
+            return roleMap;
+        }
+    }
+}
+exports.AzureJobRunner = AzureJobRunner;
+//# sourceMappingURL=azure-job-runner.js.map

package/dist/services/jobs/azure-job-runner.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"azure-job-runner.js","sourceRoot":"","sources":["../../../src/services/jobs/azure-job-runner.ts"],"names":[],"mappings":";;;AAUA,8DAAiF;AACjF,+CAA4C;AAC5C,2CAAuC;AAIvC,4FAAoG;AACpG,0FAAkG;AAClG,sGAA8G;AAC9G,sGAA8G;AAkC9G,MAAa,cAAc;IACjB,QAAQ,CAAW;IACnB,aAAa,CAAgB;IAErC,YAAY,aAA4B;QACtC,IAAI,CAAC,QAAQ,GAAG,oBAAQ,CAAC,WAAW,EAAE,CAAC;QACvC,IAAI,CAAC,aAAa,GAAG,aAAa,CAAC;IACrC,CAAC;IAMD,UAAU,CAAC,UAAiC,EAAE;QAC5C,MAAM,GAAG,GAAG,IAAI,CAAC,QAAQ,CAAC,SAAS,CAAC;YAClC,IAAI,EAAE,aAAwB;YAC9B,OAAO,EAAE,OAAkC;SAC5C,CAAC,CAAC;QAGH,IAAI,CAAC,aAAa,CAAC,GAAG,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC,KAAK,CAAC,CAAC,KAAK,EAAE,EAAE;YACtD,eAAM,CAAC,KAAK,CAAC,0BAA0B,EAAE,EAAE,MAAM,EAAE,GAAG,CAAC,MAAM,EAAE,KAAK,EAAE,CAAC,CAAC;QAC1E,CAAC,CAAC,CAAC;QAEH,OAAO,GAAG,CAAC;IACb,CAAC;IAKO,KAAK,CAAC,aAAa,CAAC,KAAa,EAAE,OAA8B;QACvE,MAAM,SAAS,GAAG,IAAI,CAAC,GAAG,EAAE,CAAC;QAC7B,MAAM,EAAE,cAAc,GAAG,KAAK,EAAE,QAAQ,EAAE,SAAS,EAAE,OAAO,EAAE,GAAG,OAAO,CAAC;QAEzE,IAAI,CAAC;YAEH,IAAI,CAAC,QAAQ,CAAC,QAAQ,CAAC,KAAK,CAAC,CAAC;YAG9B,IAAI,CAAC,QAAQ,CAAC,SAAS,CAAC,KAAK,EAAE,gBAAgB,EAAE,qCAAqC,CAAC,CAAC;YACxF,MAAM,IAAI,CAAC,aAAa,CAAC,YAAY,EAAE,CAAC;YACxC,IAAI,CAAC,QAAQ,CAAC,YAAY,CAAC,KAAK,EAAE,gBAAgB,CAAC,CAAC;YAGpD,IAAI,CAAC,QAAQ,CAAC,SAAS,CAAC,KAAK,EAAE,gBAAgB,EAAE,8BAA8B,CAAC,CAAC;YACjF,MAAM,KAAK,GAAG,MAAM,IAAI,CAAC,UAAU,CAAC,QAAQ,CAAC,CAAC;YAC9C,IAAI,CAAC,QAAQ,CAAC,YAAY,CAAC,KAAK,EAAE,gBAAgB,EAAE,EAAE,KAAK,EAAE,KAAK,CAAC,MAAM,EAAE,CAAC,CAAC;YAG7E,IAAI,CAAC,QAAQ,CAAC,SAAS,CAAC,KAAK,EAAE,iBAAiB,EAAE,+BAA+B,CAAC,CAAC;YACnF,MAAM,MAAM,GAAG,MAAM,IAAI,CAAC,WAAW,CAAC,SAAS,CAAC,CAAC;YACjD,IAAI,CAAC,QAAQ,CAAC,YAAY,CAAC,KAAK,EAAE,iBAAiB,EAAE,EAAE,KAAK,EAAE,MAAM,CAAC,MAAM,EAAE,CAAC,CAAC;YAG/E,IAAI,CAAC,QAAQ,CAAC,SAAS,CAAC,KAAK,EAAE,eAAe,EAAE,qCAAqC,CAAC,CAAC;YACvF,MAAM,IAAI,GAAG,MAAM,IAAI,CAAC,iBAAiB,CAAC,OAAO,CAAC,CAAC;YACnD,IAAI,CAAC,QAAQ,CAAC,YAAY,CAAC,KAAK,EAAE,eAAe,EAAE,EAAE,KAAK,EAAE,IAAI,CAAC,MAAM,EAAE,CAAC,CAAC;YAG3E,IAAI,CAAC,QAAQ,CAAC,SAAS,CAAC,KAAK,EAAE,mBAAmB,EAAE,sCAAsC,CAAC,CAAC;YAC5F,MAAM,QAAQ,GAAG,MAAM,IAAI,CAAC,aAAa,EAAE,CAAC;YAC5C,IAAI,CAAC,QAAQ,CAAC,YAAY,CAAC,KAAK,EAAE,mBAAmB,EAAE,EAAE,KAAK,EAAE,QAAQ,CAAC,MAAM,EAAE,CAAC,CAAC;YAGnF,IAAI,CAAC,QAAQ,CAAC,SAAS,CAAC,KAAK,EAAE,gBAAgB,EAAE,qCAAqC,CAAC,CAAC;YACxF,MAAM,OAAO,GAAG,MAAM,IAAI,CAAC,oBAAoB,CAAC,KAAK,CAAC,CAAC;YACvD,IAAI,CAAC,QAAQ,CAAC,YAAY,CAAC,KAAK,EAAE,gBAAgB,EAAE,EAAE,KAAK,EAAE,OAAO,CAAC,IAAI,EAAE,CAAC,CAAC;YAG7E,IAAI,CAAC,QAAQ,CAAC,SAAS,CAAC,KAAK,EAAE,yBAAyB,EAAE,yCAAyC,CAAC,CAAC;YACrG,MAAM,YAAY,GAAG,IAAA,0DAAiC,EAAC,KAAK,EAAE,OAAO,EAAE,cAAc,CAAC,CAAC;YACvF,IAAI,CAAC,QAAQ,CAAC,YAAY,CAAC,KAAK,EAAE,yBAAyB,EAAE,EAAE,QAAQ,EAAE,YAAY,CAAC,MAAM,EAAE,CAAC,CAAC;YAGhG,IAAI,CAAC,QAAQ,CAAC,SAAS,CAAC,KAAK,EAAE,8BAA8B,EAAE,8CAA8C,CAAC,CAAC;YAC/G,MAAM,iBAAiB,GAAG,IAAA,oEAAsC,EAAC,KAAK,EAAE,MAAM,EAAE,OAAO,EAAE,cAAc,CAAC,CAAC;YACzG,IAAI,CAAC,QAAQ,CAAC,YAAY,CAAC,KAAK,EAAE,8BAA8B,EAAE,EAAE,QAAQ,EAAE,iBAAiB,CAAC,MAAM,EAAE,CAAC,CAAC;YAG1G,IAAI,CAAC,QAAQ,CAAC,SAAS,CAAC,KAAK,EAAE,wBAAwB,EAAE,gDAAgD,CAAC,CAAC;YAC3G,MAAM,WAAW,GAAG,IAAA,wDAAgC,EAAC,IAAI,EAAE,cAAc,CAAC,CAAC;YAC3E,IAAI,CAAC,QAAQ,CAAC,YAAY,CAAC,KAAK,EAAE,wBAAwB,EAAE,EAAE,QAAQ,EAAE,WAAW,CAAC,MAAM,EAAE,CAAC,CAAC;YAG9F,IAAI,CAAC,QAAQ,CAAC,SAAS,CAAC,KAAK,EAAE,8BAA8B,EAAE,8CAA8C,CAAC,CAAC;YAC/G,MAAM,UAAU,GAAG,IAAA,oEAAsC,EAAC,QAAQ,EAAE,cAAc,CAAC,CAAC;YACpF,IAAI,CAAC,QAAQ,CAAC,YAAY,CAAC,KAAK,EAAE,8BAA8B,EAAE,EAAE,QAAQ,EAAE,UAAU,CAAC,MAAM,EAAE,CAAC,CAAC;YAGnG,MAAM,QAAQ,GAAc;gBAC1B,GAAG,YAAY;gBACf,GAAG,iBAAiB;gBACpB,GAAG,WAAW;gBACd,GAAG,UAAU;aACd,CAAC;YAGF,IAAI,CAAC,QAAQ,CAAC,SAAS,CAAC,KAAK,EAAE,mBAAmB,EAAE,4BAA4B,CAAC,CAAC;YAClF,MAAM,KAAK,GAAG,IAAA,wCAAsB,EAAC,QAAQ,EAAE,KAAK,CAAC,MAAM,CAAC,CAAC;YAC7D,IAAI,CAAC,QAAQ,CAAC,YAAY,CAAC,KAAK,EAAE,mBAAmB,CAAC,CAAC;YAGvD,IAAI,CAAC,QAAQ,CAAC,SAAS,CAAC,KAAK,EAAE,YAAY,EAAE,2BAA2B,CAAC,CAAC;YAC1E,MAAM,eAAe,GAAG,IAAI,CAAC,GAAG,EAAE,GAAG,SAAS,CAAC;YAG/C,MAAM,aAAa,GAAG,KAAK,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,CAAC,cAAc,CAAC,CAAC,MAAM,CAAC;YACpE,MAAM,YAAY,GAAG,KAAK,CAAC,MAAM,GAAG,aAAa,CAAC;YAElD,MAAM,MAAM,GAAqB;gBAC/B,KAAK;gBACL,QAAQ;gBACR,KAAK,EAAE;oBACL,UAAU,EAAE,KAAK,CAAC,MAAM;oBACxB,YAAY;oBACZ,aAAa;oBACb,WAAW,EAAE,MAAM,CAAC,MAAM;oBAC1B,SAAS,EAAE,IAAI,CAAC,MAAM;oBACtB,aAAa,EAAE,QAAQ,CAAC,MAAM;oBAC9B,aAAa,EAAE,QAAQ,CAAC,MAAM;oBAC9B,eAAe;iBAChB;gBACD,SAAS,EAAE,IAAI,IAAI,EAAE;aACtB,CAAC;YACF,IAAI,CAAC,QAAQ,CAAC,YAAY,CAAC,KAAK,EAAE,YAAY,CAAC,CAAC;YAGhD,IAAI,CAAC,QAAQ,CAAC,WAAW,CAAC,KAAK,EAAE,MAAM,CAAC,CAAC;QAC3C,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,MAAM,YAAY,GAAG,KAAK,YAAY,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,eAAe,CAAC;YAC9E,eAAM,CAAC,KAAK,CAAC,wBAAwB,EAAE,EAAE,KAAK,EAAE,KAAK,EAAE,YAAY,EAAE,CAAC,CAAC;YACvE,IAAI,CAAC,QAAQ,CAAC,OAAO,CAAC,KAAK,EAAE;gBAC3B,IAAI,EAAE,oBAAoB;gBAC1B,OAAO,EAAE,YAAY;gBACrB,IAAI,EAAE,IAAI,CAAC,QAAQ,CAAC,MAAM,CAAC,KAAK,CAAC,EAAE,YAAY,IAAI,gBAAgB;aACpE,CAAC,CAAC;QACL,CAAC;IACH,CAAC;IAKO,KAAK,CAAC,UAAU,CAAC,QAAiB;QACxC,IAAI,CAAC;YACH,MAAM,OAAO,GAAG;gBACd,MAAM,EAAE;oBAEN,IAAI;oBACJ,mBAAmB;oBACnB,aAAa;oBACb,MAAM;oBACN,WAAW;oBACX,SAAS;oBAET,UAAU;oBACV,YAAY;oBACZ,aAAa;oBACb,SAAS;oBACT,gBAAgB;oBAChB,YAAY;oBAEZ,iBAAiB;oBACjB,oBAAoB;oBACpB,4BAA4B;oBAE5B,gBAAgB;oBAChB,UAAU;oBACV,WAAW;oBACX,WAAW;oBACX,iBAAiB;oBACjB,6BAA6B;oBAC7B,kBAAkB;oBAClB,kBAAkB;iBACnB;gBACD,MAAM,EAAE,CAAC,iCAAiC,CAAC;gBAC3C,GAAG,EAAE,QAAQ;aACd,CAAC;YAEF,OAAO,MAAM,IAAI,CAAC,aAAa,CAAC,QAAQ,CAAC,OAAO,CAAC,CAAC;QACpD,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,eAAM,CAAC,KAAK,CAAC,wBAAwB,EAAE,KAAK,CAAC,CAAC;YAC9C,OAAO,EAAE,CAAC;QACZ,CAAC;IACH,CAAC;IAKO,KAAK,CAAC,WAAW,CAAC,SAAkB;QAC1C,IAAI,CAAC;YACH,MAAM,OAAO,GAAG;gBACd,MAAM,EAAE,CAAC,IAAI,EAAE,aAAa,EAAE,aAAa,EAAE,iBAAiB,EAAE,YAAY,EAAE,gBAAgB,CAAC;gBAC/F,GAAG,EAAE,SAAS;aACf,CAAC;YAEF,OAAO,MAAM,IAAI,CAAC,aAAa,CAAC,SAAS,CAAC,OAAO,CAAC,CAAC;QACrD,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,eAAM,CAAC,KAAK,CAAC,yBAAyB,EAAE,KAAK,CAAC,CAAC;YAC/C,OAAO,EAAE,CAAC;QACZ,CAAC;IACH,CAAC;IAKO,KAAK,CAAC,iBAAiB,CAAC,OAAgB;QAC9C,IAAI,CAAC;YACH,MAAM,OAAO,GAAG;gBACd,MAAM,EAAE;oBACN,IAAI;oBACJ,OAAO;oBACP,aAAa;oBACb,iBAAiB;oBACjB,gBAAgB;oBAChB,wBAAwB;oBACxB,qBAAqB;oBACrB,gBAAgB;iBACjB;gBACD,GAAG,EAAE,OAAO;aACb,CAAC;YAEF,OAAO,MAAM,IAAI,CAAC,aAAa,CAAC,eAAe,CAAC,OAAO,CAAC,CAAC;QAC3D,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,eAAM,CAAC,KAAK,CAAC,+BAA+B,EAAE,KAAK,CAAC,CAAC;YACrD,OAAO,EAAE,CAAC;QACZ,CAAC;IACH,CAAC;IAKO,KAAK,CAAC,aAAa;QACzB,IAAI,CAAC;YACH,OAAO,MAAM,IAAI,CAAC,aAAa,CAAC,WAAW,EAAE,CAAC;QAChD,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,eAAM,CAAC,KAAK,CAAC,2BAA2B,EAAE,KAAK,CAAC,CAAC;YACjD,OAAO,EAAE,CAAC;QACZ,CAAC;IACH,CAAC;IAKO,KAAK,CAAC,oBAAoB,CAAC,MAAmB;QACpD,MAAM,OAAO,GAAG,IAAI,GAAG,EAAoB,CAAC;QAE5C,IAAI,CAAC;YAKH,eAAM,CAAC,IAAI,CAAC,2FAA2F,CAAC,CAAC;YACzG,OAAO,OAAO,CAAC;QACjB,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,eAAM,CAAC,IAAI,CAAC,mCAAmC,EAAE,KAAK,CAAC,CAAC;YACxD,OAAO,OAAO,CAAC;QACjB,CAAC;IACH,CAAC;CACF;AAlQD,wCAkQC"}

package/dist/services/jobs/index.d.ts

@@ -0,0 +1,4 @@
+export * from './job.types';
+export * from './job-store';
+export * from './job-runner';
+//# sourceMappingURL=index.d.ts.map

package/dist/services/jobs/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../../src/services/jobs/index.ts"],"names":[],"mappings":"AAMA,cAAc,aAAa,CAAC;AAC5B,cAAc,aAAa,CAAC;AAC5B,cAAc,cAAc,CAAC"}

package/dist/services/jobs/index.js

@@ -0,0 +1,20 @@
+"use strict";
+var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    var desc = Object.getOwnPropertyDescriptor(m, k);
+    if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
+      desc = { enumerable: true, get: function() { return m[k]; } };
+    }
+    Object.defineProperty(o, k2, desc);
+}) : (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    o[k2] = m[k];
+}));
+var __exportStar = (this && this.__exportStar) || function(m, exports) {
+    for (var p in m) if (p !== "default" && !Object.prototype.hasOwnProperty.call(exports, p)) __createBinding(exports, m, p);
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+__exportStar(require("./job.types"), exports);
+__exportStar(require("./job-store"), exports);
+__exportStar(require("./job-runner"), exports);
+//# sourceMappingURL=index.js.map

package/dist/services/jobs/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../../src/services/jobs/index.ts"],"names":[],"mappings":";;;;;;;;;;;;;;;;AAMA,8CAA4B;AAC5B,8CAA4B;AAC5B,+CAA6B"}

package/dist/services/jobs/job-runner.d.ts

@@ -0,0 +1,64 @@
+import { LDAPProvider } from '../../providers/ldap/ldap.provider';
+import { Finding } from '../../types/finding.types';
+import { SecurityScore } from '../audit/scoring.service';
+import { DomainConfig } from '../audit/response-formatter';
+import { Job } from './job.types';
+import { SMBConfig as AppSMBConfig, LDAPConfig } from '../../types/config.types';
+import { AttackGraphExport } from '../../types/attack-graph.types';
+export interface JobRunnerOptions {
+    includeDetails?: boolean;
+    maxUsers?: number;
+    maxGroups?: number;
+    maxComputers?: number;
+}
+export interface AuditResult {
+    score: SecurityScore;
+    findings: Finding[];
+    stats: {
+        totalUsers: number;
+        enabledUsers: number;
+        disabledUsers: number;
+        totalGroups: number;
+        totalComputers: number;
+        totalOUs: number;
+        totalFindings: number;
+        executionTimeMs: number;
+    };
+    timestamp: Date;
+    domainConfig?: DomainConfig;
+    attackGraph?: AttackGraphExport;
+}
+export declare class JobRunner {
+    private jobStore;
+    private ldapProvider;
+    private smbConfig?;
+    constructor(ldapProvider: LDAPProvider, smbConfig?: {
+        smb: AppSMBConfig;
+        ldap: LDAPConfig;
+    });
+    startAudit(options?: JobRunnerOptions): Job;
+    private runAuditAsync;
+    private fetchUsers;
+    private fetchGroups;
+    private fetchComputers;
+    private fetchDomain;
+    private fetchOUCount;
+    private fetchAcls;
+    private fetchAclsForObjects;
+    private fetchDomainConfig;
+    private formatFiletimeDuration;
+    private getDomainModeName;
+    private extractDomainNameFromDN;
+    private fetchFSMORoles;
+    private extractServerFromDN;
+    private fetchTrusts;
+    private getTrustDirection;
+    private getTrustType;
+    private fetchGPOCount;
+    private fetchKerberosPolicyViaSMB;
+    private fetchCertificateTemplates;
+    private fetchCertificateAuthorities;
+    private fetchGPOsWithAcls;
+    private fetchTrustsExtended;
+}
+//# sourceMappingURL=job-runner.d.ts.map

package/dist/services/jobs/job-runner.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"job-runner.d.ts","sourceRoot":"","sources":["../../../src/services/jobs/job-runner.ts"],"names":[],"mappings":"AAOA,OAAO,EAAE,YAAY,EAAE,MAAM,oCAAoC,CAAC;AAIlE,OAAO,EAAE,OAAO,EAAE,MAAM,2BAA2B,CAAC;AACpD,OAAO,EAA0B,aAAa,EAAE,MAAM,0BAA0B,CAAC;AACjF,OAAO,EAAE,YAAY,EAAE,MAAM,6BAA6B,CAAC;AAG3D,OAAO,EAAiB,GAAG,EAAW,MAAM,aAAa,CAAC;AAE1D,OAAO,EAAE,SAAS,IAAI,YAAY,EAAE,UAAU,EAAE,MAAM,0BAA0B,CAAC;AAuBjF,OAAO,EAAE,iBAAiB,EAAE,MAAM,gCAAgC,CAAC;AAiDnE,MAAM,WAAW,gBAAgB;IAC/B,cAAc,CAAC,EAAE,OAAO,CAAC;IACzB,QAAQ,CAAC,EAAE,MAAM,CAAC;IAClB,SAAS,CAAC,EAAE,MAAM,CAAC;IACnB,YAAY,CAAC,EAAE,MAAM,CAAC;CACvB;AAKD,MAAM,WAAW,WAAW;IAC1B,KAAK,EAAE,aAAa,CAAC;IACrB,QAAQ,EAAE,OAAO,EAAE,CAAC;IACpB,KAAK,EAAE;QACL,UAAU,EAAE,MAAM,CAAC;QACnB,YAAY,EAAE,MAAM,CAAC;QACrB,aAAa,EAAE,MAAM,CAAC;QACtB,WAAW,EAAE,MAAM,CAAC;QACpB,cAAc,EAAE,MAAM,CAAC;QACvB,QAAQ,EAAE,MAAM,CAAC;QACjB,aAAa,EAAE,MAAM,CAAC;QACtB,eAAe,EAAE,MAAM,CAAC;KACzB,CAAC;IACF,SAAS,EAAE,IAAI,CAAC;IAChB,YAAY,CAAC,EAAE,YAAY,CAAC;IAC5B,WAAW,CAAC,EAAE,iBAAiB,CAAC;CACjC;AAKD,qBAAa,SAAS;IACpB,OAAO,CAAC,QAAQ,CAAW;IAC3B,OAAO,CAAC,YAAY,CAAe;IACnC,OAAO,CAAC,SAAS,CAAC,CAA0C;gBAEhD,YAAY,EAAE,YAAY,EAAE,SAAS,CAAC,EAAE;QAAE,GAAG,EAAE,YAAY,CAAC;QAAC,IAAI,EAAE,UAAU,CAAA;KAAE;IAU3F,UAAU,CAAC,OAAO,GAAE,gBAAqB,GAAG,GAAG;YAiBjC,aAAa;YAsOb,UAAU;YAyEV,WAAW;YA2BX,cAAc;YAsDd,WAAW;YA2DX,YAAY;YAsBZ,SAAS;YA6ET,mBAAmB;YAgDnB,iBAAiB;IA0G/B,OAAO,CAAC,sBAAsB;IAkB9B,OAAO,CAAC,iBAAiB;IAiBzB,OAAO,CAAC,uBAAuB;YAMjB,cAAc;IAsC5B,OAAO,CAAC,mBAAmB;YAKb,WAAW;IAyBzB,OAAO,CAAC,iBAAiB;IAazB,OAAO,CAAC,YAAY;YAeN,aAAa;YAuCb,yBAAyB;YAgDzB,yBAAyB;YAgDzB,2BAA2B;YAwC3B,iBAAiB;YA2EjB,mBAAmB;CA2ClC"}