npm - @etcsec-com/etc-collector - Versions diffs - 1.4.0 - Mend

@etcsec-com/etc-collector 1.4.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (617) hide show

package/.env.example +60 -0
package/.env.test.example +33 -0
package/.github/workflows/ci.yml +83 -0
package/.github/workflows/release.yml +246 -0
package/.prettierrc.json +10 -0
package/CHANGELOG.md +15 -0
package/Dockerfile +57 -0
package/LICENSE +190 -0
package/README.md +194 -0
package/dist/api/controllers/audit.controller.d.ts +21 -0
package/dist/api/controllers/audit.controller.d.ts.map +1 -0
package/dist/api/controllers/audit.controller.js +179 -0
package/dist/api/controllers/audit.controller.js.map +1 -0
package/dist/api/controllers/auth.controller.d.ts +16 -0
package/dist/api/controllers/auth.controller.d.ts.map +1 -0
package/dist/api/controllers/auth.controller.js +146 -0
package/dist/api/controllers/auth.controller.js.map +1 -0
package/dist/api/controllers/export.controller.d.ts +27 -0
package/dist/api/controllers/export.controller.d.ts.map +1 -0
package/dist/api/controllers/export.controller.js +80 -0
package/dist/api/controllers/export.controller.js.map +1 -0
package/dist/api/controllers/health.controller.d.ts +5 -0
package/dist/api/controllers/health.controller.d.ts.map +1 -0
package/dist/api/controllers/health.controller.js +16 -0
package/dist/api/controllers/health.controller.js.map +1 -0
package/dist/api/controllers/jobs.controller.d.ts +13 -0
package/dist/api/controllers/jobs.controller.d.ts.map +1 -0
package/dist/api/controllers/jobs.controller.js +125 -0
package/dist/api/controllers/jobs.controller.js.map +1 -0
package/dist/api/controllers/providers.controller.d.ts +15 -0
package/dist/api/controllers/providers.controller.d.ts.map +1 -0
package/dist/api/controllers/providers.controller.js +112 -0
package/dist/api/controllers/providers.controller.js.map +1 -0
package/dist/api/dto/AuditRequest.dto.d.ts +6 -0
package/dist/api/dto/AuditRequest.dto.d.ts.map +1 -0
package/dist/api/dto/AuditRequest.dto.js +3 -0
package/dist/api/dto/AuditRequest.dto.js.map +1 -0
package/dist/api/dto/AuditResponse.dto.d.ts +17 -0
package/dist/api/dto/AuditResponse.dto.d.ts.map +1 -0
package/dist/api/dto/AuditResponse.dto.js +3 -0
package/dist/api/dto/AuditResponse.dto.js.map +1 -0
package/dist/api/dto/TokenRequest.dto.d.ts +6 -0
package/dist/api/dto/TokenRequest.dto.d.ts.map +1 -0
package/dist/api/dto/TokenRequest.dto.js +3 -0
package/dist/api/dto/TokenRequest.dto.js.map +1 -0
package/dist/api/dto/TokenResponse.dto.d.ts +12 -0
package/dist/api/dto/TokenResponse.dto.d.ts.map +1 -0
package/dist/api/dto/TokenResponse.dto.js +3 -0
package/dist/api/dto/TokenResponse.dto.js.map +1 -0
package/dist/api/middlewares/authenticate.d.ts +12 -0
package/dist/api/middlewares/authenticate.d.ts.map +1 -0
package/dist/api/middlewares/authenticate.js +141 -0
package/dist/api/middlewares/authenticate.js.map +1 -0
package/dist/api/middlewares/errorHandler.d.ts +3 -0
package/dist/api/middlewares/errorHandler.d.ts.map +1 -0
package/dist/api/middlewares/errorHandler.js +30 -0
package/dist/api/middlewares/errorHandler.js.map +1 -0
package/dist/api/middlewares/rateLimit.d.ts +3 -0
package/dist/api/middlewares/rateLimit.d.ts.map +1 -0
package/dist/api/middlewares/rateLimit.js +34 -0
package/dist/api/middlewares/rateLimit.js.map +1 -0
package/dist/api/middlewares/validate.d.ts +4 -0
package/dist/api/middlewares/validate.d.ts.map +1 -0
package/dist/api/middlewares/validate.js +31 -0
package/dist/api/middlewares/validate.js.map +1 -0
package/dist/api/routes/audit.routes.d.ts +5 -0
package/dist/api/routes/audit.routes.d.ts.map +1 -0
package/dist/api/routes/audit.routes.js +24 -0
package/dist/api/routes/audit.routes.js.map +1 -0
package/dist/api/routes/auth.routes.d.ts +6 -0
package/dist/api/routes/auth.routes.d.ts.map +1 -0
package/dist/api/routes/auth.routes.js +22 -0
package/dist/api/routes/auth.routes.js.map +1 -0
package/dist/api/routes/export.routes.d.ts +5 -0
package/dist/api/routes/export.routes.d.ts.map +1 -0
package/dist/api/routes/export.routes.js +16 -0
package/dist/api/routes/export.routes.js.map +1 -0
package/dist/api/routes/health.routes.d.ts +4 -0
package/dist/api/routes/health.routes.d.ts.map +1 -0
package/dist/api/routes/health.routes.js +11 -0
package/dist/api/routes/health.routes.js.map +1 -0
package/dist/api/routes/index.d.ts +10 -0
package/dist/api/routes/index.d.ts.map +1 -0
package/dist/api/routes/index.js +20 -0
package/dist/api/routes/index.js.map +1 -0
package/dist/api/routes/providers.routes.d.ts +5 -0
package/dist/api/routes/providers.routes.d.ts.map +1 -0
package/dist/api/routes/providers.routes.js +13 -0
package/dist/api/routes/providers.routes.js.map +1 -0
package/dist/api/validators/audit.schemas.d.ts +60 -0
package/dist/api/validators/audit.schemas.d.ts.map +1 -0
package/dist/api/validators/audit.schemas.js +55 -0
package/dist/api/validators/audit.schemas.js.map +1 -0
package/dist/api/validators/auth.schemas.d.ts +17 -0
package/dist/api/validators/auth.schemas.d.ts.map +1 -0
package/dist/api/validators/auth.schemas.js +21 -0
package/dist/api/validators/auth.schemas.js.map +1 -0
package/dist/app.d.ts +3 -0
package/dist/app.d.ts.map +1 -0
package/dist/app.js +62 -0
package/dist/app.js.map +1 -0
package/dist/config/config.schema.d.ts +65 -0
package/dist/config/config.schema.d.ts.map +1 -0
package/dist/config/config.schema.js +95 -0
package/dist/config/config.schema.js.map +1 -0
package/dist/config/index.d.ts +4 -0
package/dist/config/index.d.ts.map +1 -0
package/dist/config/index.js +75 -0
package/dist/config/index.js.map +1 -0
package/dist/container.d.ts +47 -0
package/dist/container.d.ts.map +1 -0
package/dist/container.js +137 -0
package/dist/container.js.map +1 -0
package/dist/data/database.d.ts +13 -0
package/dist/data/database.d.ts.map +1 -0
package/dist/data/database.js +68 -0
package/dist/data/database.js.map +1 -0
package/dist/data/jobs/token-cleanup.job.d.ts +23 -0
package/dist/data/jobs/token-cleanup.job.d.ts.map +1 -0
package/dist/data/jobs/token-cleanup.job.js +96 -0
package/dist/data/jobs/token-cleanup.job.js.map +1 -0
package/dist/data/migrations/migration.runner.d.ts +13 -0
package/dist/data/migrations/migration.runner.d.ts.map +1 -0
package/dist/data/migrations/migration.runner.js +136 -0
package/dist/data/migrations/migration.runner.js.map +1 -0
package/dist/data/models/Token.model.d.ts +30 -0
package/dist/data/models/Token.model.d.ts.map +1 -0
package/dist/data/models/Token.model.js +3 -0
package/dist/data/models/Token.model.js.map +1 -0
package/dist/data/repositories/token.repository.d.ts +16 -0
package/dist/data/repositories/token.repository.d.ts.map +1 -0
package/dist/data/repositories/token.repository.js +97 -0
package/dist/data/repositories/token.repository.js.map +1 -0
package/dist/providers/azure/auth.provider.d.ts +5 -0
package/dist/providers/azure/auth.provider.d.ts.map +1 -0
package/dist/providers/azure/auth.provider.js +13 -0
package/dist/providers/azure/auth.provider.js.map +1 -0
package/dist/providers/azure/azure-errors.d.ts +40 -0
package/dist/providers/azure/azure-errors.d.ts.map +1 -0
package/dist/providers/azure/azure-errors.js +121 -0
package/dist/providers/azure/azure-errors.js.map +1 -0
package/dist/providers/azure/azure-retry.d.ts +41 -0
package/dist/providers/azure/azure-retry.d.ts.map +1 -0
package/dist/providers/azure/azure-retry.js +85 -0
package/dist/providers/azure/azure-retry.js.map +1 -0
package/dist/providers/azure/graph-client.d.ts +26 -0
package/dist/providers/azure/graph-client.d.ts.map +1 -0
package/dist/providers/azure/graph-client.js +146 -0
package/dist/providers/azure/graph-client.js.map +1 -0
package/dist/providers/azure/graph.provider.d.ts +23 -0
package/dist/providers/azure/graph.provider.d.ts.map +1 -0
package/dist/providers/azure/graph.provider.js +161 -0
package/dist/providers/azure/graph.provider.js.map +1 -0
package/dist/providers/azure/queries/app.queries.d.ts +6 -0
package/dist/providers/azure/queries/app.queries.d.ts.map +1 -0
package/dist/providers/azure/queries/app.queries.js +9 -0
package/dist/providers/azure/queries/app.queries.js.map +1 -0
package/dist/providers/azure/queries/policy.queries.d.ts +6 -0
package/dist/providers/azure/queries/policy.queries.d.ts.map +1 -0
package/dist/providers/azure/queries/policy.queries.js +9 -0
package/dist/providers/azure/queries/policy.queries.js.map +1 -0
package/dist/providers/azure/queries/user.queries.d.ts +7 -0
package/dist/providers/azure/queries/user.queries.d.ts.map +1 -0
package/dist/providers/azure/queries/user.queries.js +10 -0
package/dist/providers/azure/queries/user.queries.js.map +1 -0
package/dist/providers/interfaces/IGraphProvider.d.ts +31 -0
package/dist/providers/interfaces/IGraphProvider.d.ts.map +1 -0
package/dist/providers/interfaces/IGraphProvider.js +3 -0
package/dist/providers/interfaces/IGraphProvider.js.map +1 -0
package/dist/providers/interfaces/ILDAPProvider.d.ts +37 -0
package/dist/providers/interfaces/ILDAPProvider.d.ts.map +1 -0
package/dist/providers/interfaces/ILDAPProvider.js +3 -0
package/dist/providers/interfaces/ILDAPProvider.js.map +1 -0
package/dist/providers/ldap/acl-parser.d.ts +8 -0
package/dist/providers/ldap/acl-parser.d.ts.map +1 -0
package/dist/providers/ldap/acl-parser.js +157 -0
package/dist/providers/ldap/acl-parser.js.map +1 -0
package/dist/providers/ldap/ad-mappers.d.ts +8 -0
package/dist/providers/ldap/ad-mappers.d.ts.map +1 -0
package/dist/providers/ldap/ad-mappers.js +162 -0
package/dist/providers/ldap/ad-mappers.js.map +1 -0
package/dist/providers/ldap/ldap-client.d.ts +33 -0
package/dist/providers/ldap/ldap-client.d.ts.map +1 -0
package/dist/providers/ldap/ldap-client.js +195 -0
package/dist/providers/ldap/ldap-client.js.map +1 -0
package/dist/providers/ldap/ldap-errors.d.ts +48 -0
package/dist/providers/ldap/ldap-errors.d.ts.map +1 -0
package/dist/providers/ldap/ldap-errors.js +120 -0
package/dist/providers/ldap/ldap-errors.js.map +1 -0
package/dist/providers/ldap/ldap-retry.d.ts +14 -0
package/dist/providers/ldap/ldap-retry.d.ts.map +1 -0
package/dist/providers/ldap/ldap-retry.js +102 -0
package/dist/providers/ldap/ldap-retry.js.map +1 -0
package/dist/providers/ldap/ldap-sanitizer.d.ts +12 -0
package/dist/providers/ldap/ldap-sanitizer.d.ts.map +1 -0
package/dist/providers/ldap/ldap-sanitizer.js +104 -0
package/dist/providers/ldap/ldap-sanitizer.js.map +1 -0
package/dist/providers/ldap/ldap.provider.d.ts +21 -0
package/dist/providers/ldap/ldap.provider.d.ts.map +1 -0
package/dist/providers/ldap/ldap.provider.js +165 -0
package/dist/providers/ldap/ldap.provider.js.map +1 -0
package/dist/providers/ldap/queries/computer.queries.d.ts +6 -0
package/dist/providers/ldap/queries/computer.queries.d.ts.map +1 -0
package/dist/providers/ldap/queries/computer.queries.js +9 -0
package/dist/providers/ldap/queries/computer.queries.js.map +1 -0
package/dist/providers/ldap/queries/group.queries.d.ts +6 -0
package/dist/providers/ldap/queries/group.queries.d.ts.map +1 -0
package/dist/providers/ldap/queries/group.queries.js +9 -0
package/dist/providers/ldap/queries/group.queries.js.map +1 -0
package/dist/providers/ldap/queries/user.queries.d.ts +7 -0
package/dist/providers/ldap/queries/user.queries.d.ts.map +1 -0
package/dist/providers/ldap/queries/user.queries.js +10 -0
package/dist/providers/ldap/queries/user.queries.js.map +1 -0
package/dist/providers/smb/smb.provider.d.ts +68 -0
package/dist/providers/smb/smb.provider.d.ts.map +1 -0
package/dist/providers/smb/smb.provider.js +382 -0
package/dist/providers/smb/smb.provider.js.map +1 -0
package/dist/server.d.ts +2 -0
package/dist/server.d.ts.map +1 -0
package/dist/server.js +44 -0
package/dist/server.js.map +1 -0
package/dist/services/audit/ad-audit.service.d.ts +70 -0
package/dist/services/audit/ad-audit.service.d.ts.map +1 -0
package/dist/services/audit/ad-audit.service.js +1019 -0
package/dist/services/audit/ad-audit.service.js.map +1 -0
package/dist/services/audit/attack-graph.service.d.ts +62 -0
package/dist/services/audit/attack-graph.service.d.ts.map +1 -0
package/dist/services/audit/attack-graph.service.js +702 -0
package/dist/services/audit/attack-graph.service.js.map +1 -0
package/dist/services/audit/audit.service.d.ts +4 -0
package/dist/services/audit/audit.service.d.ts.map +1 -0
package/dist/services/audit/audit.service.js +10 -0
package/dist/services/audit/audit.service.js.map +1 -0
package/dist/services/audit/azure-audit.service.d.ts +37 -0
package/dist/services/audit/azure-audit.service.d.ts.map +1 -0
package/dist/services/audit/azure-audit.service.js +153 -0
package/dist/services/audit/azure-audit.service.js.map +1 -0
package/dist/services/audit/detectors/ad/accounts.detector.d.ts +37 -0
package/dist/services/audit/detectors/ad/accounts.detector.d.ts.map +1 -0
package/dist/services/audit/detectors/ad/accounts.detector.js +881 -0
package/dist/services/audit/detectors/ad/accounts.detector.js.map +1 -0
package/dist/services/audit/detectors/ad/adcs.detector.d.ts +21 -0
package/dist/services/audit/detectors/ad/adcs.detector.d.ts.map +1 -0
package/dist/services/audit/detectors/ad/adcs.detector.js +227 -0
package/dist/services/audit/detectors/ad/adcs.detector.js.map +1 -0
package/dist/services/audit/detectors/ad/advanced.detector.d.ts +63 -0
package/dist/services/audit/detectors/ad/advanced.detector.d.ts.map +1 -0
package/dist/services/audit/detectors/ad/advanced.detector.js +867 -0
package/dist/services/audit/detectors/ad/advanced.detector.js.map +1 -0
package/dist/services/audit/detectors/ad/attack-paths.detector.d.ts +16 -0
package/dist/services/audit/detectors/ad/attack-paths.detector.d.ts.map +1 -0
package/dist/services/audit/detectors/ad/attack-paths.detector.js +369 -0
package/dist/services/audit/detectors/ad/attack-paths.detector.js.map +1 -0
package/dist/services/audit/detectors/ad/compliance.detector.d.ts +28 -0
package/dist/services/audit/detectors/ad/compliance.detector.d.ts.map +1 -0
package/dist/services/audit/detectors/ad/compliance.detector.js +896 -0
package/dist/services/audit/detectors/ad/compliance.detector.js.map +1 -0
package/dist/services/audit/detectors/ad/computers.detector.d.ts +30 -0
package/dist/services/audit/detectors/ad/computers.detector.d.ts.map +1 -0
package/dist/services/audit/detectors/ad/computers.detector.js +799 -0
package/dist/services/audit/detectors/ad/computers.detector.js.map +1 -0
package/dist/services/audit/detectors/ad/gpo.detector.d.ts +17 -0
package/dist/services/audit/detectors/ad/gpo.detector.d.ts.map +1 -0
package/dist/services/audit/detectors/ad/gpo.detector.js +257 -0
package/dist/services/audit/detectors/ad/gpo.detector.js.map +1 -0
package/dist/services/audit/detectors/ad/groups.detector.d.ts +19 -0
package/dist/services/audit/detectors/ad/groups.detector.d.ts.map +1 -0
package/dist/services/audit/detectors/ad/groups.detector.js +488 -0
package/dist/services/audit/detectors/ad/groups.detector.js.map +1 -0
package/dist/services/audit/detectors/ad/index.d.ts +15 -0
package/dist/services/audit/detectors/ad/index.d.ts.map +1 -0
package/dist/services/audit/detectors/ad/index.js +51 -0
package/dist/services/audit/detectors/ad/index.js.map +1 -0
package/dist/services/audit/detectors/ad/kerberos.detector.d.ts +17 -0
package/dist/services/audit/detectors/ad/kerberos.detector.d.ts.map +1 -0
package/dist/services/audit/detectors/ad/kerberos.detector.js +293 -0
package/dist/services/audit/detectors/ad/kerberos.detector.js.map +1 -0
package/dist/services/audit/detectors/ad/monitoring.detector.d.ts +23 -0
package/dist/services/audit/detectors/ad/monitoring.detector.d.ts.map +1 -0
package/dist/services/audit/detectors/ad/monitoring.detector.js +328 -0
package/dist/services/audit/detectors/ad/monitoring.detector.js.map +1 -0
package/dist/services/audit/detectors/ad/network.detector.d.ts +39 -0
package/dist/services/audit/detectors/ad/network.detector.d.ts.map +1 -0
package/dist/services/audit/detectors/ad/network.detector.js +257 -0
package/dist/services/audit/detectors/ad/network.detector.js.map +1 -0
package/dist/services/audit/detectors/ad/password.detector.d.ts +14 -0
package/dist/services/audit/detectors/ad/password.detector.d.ts.map +1 -0
package/dist/services/audit/detectors/ad/password.detector.js +235 -0
package/dist/services/audit/detectors/ad/password.detector.js.map +1 -0
package/dist/services/audit/detectors/ad/permissions.detector.d.ts +20 -0
package/dist/services/audit/detectors/ad/permissions.detector.d.ts.map +1 -0
package/dist/services/audit/detectors/ad/permissions.detector.js +392 -0
package/dist/services/audit/detectors/ad/permissions.detector.js.map +1 -0
package/dist/services/audit/detectors/ad/trusts.detector.d.ts +11 -0
package/dist/services/audit/detectors/ad/trusts.detector.d.ts.map +1 -0
package/dist/services/audit/detectors/ad/trusts.detector.js +186 -0
package/dist/services/audit/detectors/ad/trusts.detector.js.map +1 -0
package/dist/services/audit/detectors/azure/app-security.detector.d.ts +11 -0
package/dist/services/audit/detectors/azure/app-security.detector.d.ts.map +1 -0
package/dist/services/audit/detectors/azure/app-security.detector.js +184 -0
package/dist/services/audit/detectors/azure/app-security.detector.js.map +1 -0
package/dist/services/audit/detectors/azure/conditional-access.detector.d.ts +10 -0
package/dist/services/audit/detectors/azure/conditional-access.detector.d.ts.map +1 -0
package/dist/services/audit/detectors/azure/conditional-access.detector.js +130 -0
package/dist/services/audit/detectors/azure/conditional-access.detector.js.map +1 -0
package/dist/services/audit/detectors/azure/privilege-security.detector.d.ts +8 -0
package/dist/services/audit/detectors/azure/privilege-security.detector.d.ts.map +1 -0
package/dist/services/audit/detectors/azure/privilege-security.detector.js +113 -0
package/dist/services/audit/detectors/azure/privilege-security.detector.js.map +1 -0
package/dist/services/audit/detectors/azure/user-security.detector.d.ts +14 -0
package/dist/services/audit/detectors/azure/user-security.detector.d.ts.map +1 -0
package/dist/services/audit/detectors/azure/user-security.detector.js +198 -0
package/dist/services/audit/detectors/azure/user-security.detector.js.map +1 -0
package/dist/services/audit/detectors/index.d.ts +2 -0
package/dist/services/audit/detectors/index.d.ts.map +1 -0
package/dist/services/audit/detectors/index.js +38 -0
package/dist/services/audit/detectors/index.js.map +1 -0
package/dist/services/audit/response-formatter.d.ts +176 -0
package/dist/services/audit/response-formatter.d.ts.map +1 -0
package/dist/services/audit/response-formatter.js +240 -0
package/dist/services/audit/response-formatter.js.map +1 -0
package/dist/services/audit/scoring.service.d.ts +15 -0
package/dist/services/audit/scoring.service.d.ts.map +1 -0
package/dist/services/audit/scoring.service.js +139 -0
package/dist/services/audit/scoring.service.js.map +1 -0
package/dist/services/auth/crypto.service.d.ts +19 -0
package/dist/services/auth/crypto.service.d.ts.map +1 -0
package/dist/services/auth/crypto.service.js +135 -0
package/dist/services/auth/crypto.service.js.map +1 -0
package/dist/services/auth/errors.d.ts +19 -0
package/dist/services/auth/errors.d.ts.map +1 -0
package/dist/services/auth/errors.js +46 -0
package/dist/services/auth/errors.js.map +1 -0
package/dist/services/auth/token.service.d.ts +41 -0
package/dist/services/auth/token.service.d.ts.map +1 -0
package/dist/services/auth/token.service.js +208 -0
package/dist/services/auth/token.service.js.map +1 -0
package/dist/services/config/config.service.d.ts +6 -0
package/dist/services/config/config.service.d.ts.map +1 -0
package/dist/services/config/config.service.js +64 -0
package/dist/services/config/config.service.js.map +1 -0
package/dist/services/export/export.service.d.ts +28 -0
package/dist/services/export/export.service.d.ts.map +1 -0
package/dist/services/export/export.service.js +28 -0
package/dist/services/export/export.service.js.map +1 -0
package/dist/services/export/formatters/csv.formatter.d.ts +8 -0
package/dist/services/export/formatters/csv.formatter.d.ts.map +1 -0
package/dist/services/export/formatters/csv.formatter.js +46 -0
package/dist/services/export/formatters/csv.formatter.js.map +1 -0
package/dist/services/export/formatters/json.formatter.d.ts +40 -0
package/dist/services/export/formatters/json.formatter.d.ts.map +1 -0
package/dist/services/export/formatters/json.formatter.js +58 -0
package/dist/services/export/formatters/json.formatter.js.map +1 -0
package/dist/services/jobs/azure-job-runner.d.ts +38 -0
package/dist/services/jobs/azure-job-runner.d.ts.map +1 -0
package/dist/services/jobs/azure-job-runner.js +199 -0
package/dist/services/jobs/azure-job-runner.js.map +1 -0
package/dist/services/jobs/index.d.ts +4 -0
package/dist/services/jobs/index.d.ts.map +1 -0
package/dist/services/jobs/index.js +20 -0
package/dist/services/jobs/index.js.map +1 -0
package/dist/services/jobs/job-runner.d.ts +64 -0
package/dist/services/jobs/job-runner.d.ts.map +1 -0
package/dist/services/jobs/job-runner.js +952 -0
package/dist/services/jobs/job-runner.js.map +1 -0
package/dist/services/jobs/job-store.d.ts +27 -0
package/dist/services/jobs/job-store.d.ts.map +1 -0
package/dist/services/jobs/job-store.js +261 -0
package/dist/services/jobs/job-store.js.map +1 -0
package/dist/services/jobs/job.types.d.ts +67 -0
package/dist/services/jobs/job.types.d.ts.map +1 -0
package/dist/services/jobs/job.types.js +36 -0
package/dist/services/jobs/job.types.js.map +1 -0
package/dist/types/ad.types.d.ts +74 -0
package/dist/types/ad.types.d.ts.map +1 -0
package/dist/types/ad.types.js +3 -0
package/dist/types/ad.types.js.map +1 -0
package/dist/types/adcs.types.d.ts +58 -0
package/dist/types/adcs.types.d.ts.map +1 -0
package/dist/types/adcs.types.js +38 -0
package/dist/types/adcs.types.js.map +1 -0
package/dist/types/attack-graph.types.d.ts +135 -0
package/dist/types/attack-graph.types.d.ts.map +1 -0
package/dist/types/attack-graph.types.js +58 -0
package/dist/types/attack-graph.types.js.map +1 -0
package/dist/types/audit.types.d.ts +34 -0
package/dist/types/audit.types.d.ts.map +1 -0
package/dist/types/audit.types.js +3 -0
package/dist/types/audit.types.js.map +1 -0
package/dist/types/azure.types.d.ts +61 -0
package/dist/types/azure.types.d.ts.map +1 -0
package/dist/types/azure.types.js +3 -0
package/dist/types/azure.types.js.map +1 -0
package/dist/types/config.types.d.ts +63 -0
package/dist/types/config.types.d.ts.map +1 -0
package/dist/types/config.types.js +3 -0
package/dist/types/config.types.js.map +1 -0
package/dist/types/error.types.d.ts +33 -0
package/dist/types/error.types.d.ts.map +1 -0
package/dist/types/error.types.js +70 -0
package/dist/types/error.types.js.map +1 -0
package/dist/types/finding.types.d.ts +133 -0
package/dist/types/finding.types.d.ts.map +1 -0
package/dist/types/finding.types.js +3 -0
package/dist/types/finding.types.js.map +1 -0
package/dist/types/gpo.types.d.ts +39 -0
package/dist/types/gpo.types.d.ts.map +1 -0
package/dist/types/gpo.types.js +15 -0
package/dist/types/gpo.types.js.map +1 -0
package/dist/types/token.types.d.ts +26 -0
package/dist/types/token.types.d.ts.map +1 -0
package/dist/types/token.types.js +3 -0
package/dist/types/token.types.js.map +1 -0
package/dist/types/trust.types.d.ts +45 -0
package/dist/types/trust.types.d.ts.map +1 -0
package/dist/types/trust.types.js +71 -0
package/dist/types/trust.types.js.map +1 -0
package/dist/utils/entity-converter.d.ts +17 -0
package/dist/utils/entity-converter.d.ts.map +1 -0
package/dist/utils/entity-converter.js +285 -0
package/dist/utils/entity-converter.js.map +1 -0
package/dist/utils/graph.util.d.ts +66 -0
package/dist/utils/graph.util.d.ts.map +1 -0
package/dist/utils/graph.util.js +382 -0
package/dist/utils/graph.util.js.map +1 -0
package/dist/utils/logger.d.ts +7 -0
package/dist/utils/logger.d.ts.map +1 -0
package/dist/utils/logger.js +86 -0
package/dist/utils/logger.js.map +1 -0
package/dist/utils/type-name-normalizer.d.ts +5 -0
package/dist/utils/type-name-normalizer.d.ts.map +1 -0
package/dist/utils/type-name-normalizer.js +218 -0
package/dist/utils/type-name-normalizer.js.map +1 -0
package/docker-compose.yml +26 -0
package/docs/api/README.md +178 -0
package/docs/api/openapi.yaml +1524 -0
package/eslint.config.js +54 -0
package/jest.config.js +38 -0
package/package.json +97 -0
package/scripts/fetch-ad-cert.sh +142 -0
package/src/.gitkeep +0 -0
package/src/api/.gitkeep +0 -0
package/src/api/controllers/.gitkeep +0 -0
package/src/api/controllers/audit.controller.ts +313 -0
package/src/api/controllers/auth.controller.ts +258 -0
package/src/api/controllers/export.controller.ts +153 -0
package/src/api/controllers/health.controller.ts +16 -0
package/src/api/controllers/jobs.controller.ts +187 -0
package/src/api/controllers/providers.controller.ts +165 -0
package/src/api/dto/.gitkeep +0 -0
package/src/api/dto/AuditRequest.dto.ts +8 -0
package/src/api/dto/AuditResponse.dto.ts +19 -0
package/src/api/dto/TokenRequest.dto.ts +8 -0
package/src/api/dto/TokenResponse.dto.ts +14 -0
package/src/api/middlewares/.gitkeep +0 -0
package/src/api/middlewares/authenticate.ts +203 -0
package/src/api/middlewares/errorHandler.ts +54 -0
package/src/api/middlewares/rateLimit.ts +35 -0
package/src/api/middlewares/validate.ts +32 -0
package/src/api/routes/.gitkeep +0 -0
package/src/api/routes/audit.routes.ts +77 -0
package/src/api/routes/auth.routes.ts +71 -0
package/src/api/routes/export.routes.ts +34 -0
package/src/api/routes/health.routes.ts +14 -0
package/src/api/routes/index.ts +40 -0
package/src/api/routes/providers.routes.ts +24 -0
package/src/api/validators/.gitkeep +0 -0
package/src/api/validators/audit.schemas.ts +59 -0
package/src/api/validators/auth.schemas.ts +59 -0
package/src/app.ts +87 -0
package/src/config/.gitkeep +0 -0
package/src/config/config.schema.ts +108 -0
package/src/config/index.ts +82 -0
package/src/container.ts +221 -0
package/src/data/.gitkeep +0 -0
package/src/data/database.ts +78 -0
package/src/data/jobs/token-cleanup.job.ts +166 -0
package/src/data/migrations/.gitkeep +0 -0
package/src/data/migrations/001_initial_schema.sql +47 -0
package/src/data/migrations/migration.runner.ts +125 -0
package/src/data/models/.gitkeep +0 -0
package/src/data/models/Token.model.ts +35 -0
package/src/data/repositories/.gitkeep +0 -0
package/src/data/repositories/token.repository.ts +160 -0
package/src/providers/.gitkeep +0 -0
package/src/providers/azure/.gitkeep +0 -0
package/src/providers/azure/auth.provider.ts +14 -0
package/src/providers/azure/azure-errors.ts +189 -0
package/src/providers/azure/azure-retry.ts +168 -0
package/src/providers/azure/graph-client.ts +315 -0
package/src/providers/azure/graph.provider.ts +294 -0
package/src/providers/azure/queries/app.queries.ts +9 -0
package/src/providers/azure/queries/policy.queries.ts +9 -0
package/src/providers/azure/queries/user.queries.ts +10 -0
package/src/providers/interfaces/.gitkeep +0 -0
package/src/providers/interfaces/IGraphProvider.ts +117 -0
package/src/providers/interfaces/ILDAPProvider.ts +142 -0
package/src/providers/ldap/.gitkeep +0 -0
package/src/providers/ldap/acl-parser.ts +231 -0
package/src/providers/ldap/ad-mappers.ts +280 -0
package/src/providers/ldap/ldap-client.ts +259 -0
package/src/providers/ldap/ldap-errors.ts +188 -0
package/src/providers/ldap/ldap-retry.ts +267 -0
package/src/providers/ldap/ldap-sanitizer.ts +273 -0
package/src/providers/ldap/ldap.provider.ts +293 -0
package/src/providers/ldap/queries/computer.queries.ts +9 -0
package/src/providers/ldap/queries/group.queries.ts +9 -0
package/src/providers/ldap/queries/user.queries.ts +10 -0
package/src/providers/smb/smb.provider.ts +653 -0
package/src/server.ts +60 -0
package/src/services/.gitkeep +0 -0
package/src/services/audit/.gitkeep +0 -0
package/src/services/audit/ad-audit.service.ts +1481 -0
package/src/services/audit/attack-graph.service.ts +1104 -0
package/src/services/audit/audit.service.ts +12 -0
package/src/services/audit/azure-audit.service.ts +286 -0
package/src/services/audit/detectors/ad/accounts.detector.ts +1232 -0
package/src/services/audit/detectors/ad/adcs.detector.ts +449 -0
package/src/services/audit/detectors/ad/advanced.detector.ts +1270 -0
package/src/services/audit/detectors/ad/attack-paths.detector.ts +600 -0
package/src/services/audit/detectors/ad/compliance.detector.ts +1421 -0
package/src/services/audit/detectors/ad/computers.detector.ts +1188 -0
package/src/services/audit/detectors/ad/gpo.detector.ts +485 -0
package/src/services/audit/detectors/ad/groups.detector.ts +685 -0
package/src/services/audit/detectors/ad/index.ts +84 -0
package/src/services/audit/detectors/ad/kerberos.detector.ts +424 -0
package/src/services/audit/detectors/ad/monitoring.detector.ts +501 -0
package/src/services/audit/detectors/ad/network.detector.ts +538 -0
package/src/services/audit/detectors/ad/password.detector.ts +324 -0
package/src/services/audit/detectors/ad/permissions.detector.ts +637 -0
package/src/services/audit/detectors/ad/trusts.detector.ts +315 -0
package/src/services/audit/detectors/azure/app-security.detector.ts +246 -0
package/src/services/audit/detectors/azure/conditional-access.detector.ts +186 -0
package/src/services/audit/detectors/azure/privilege-security.detector.ts +176 -0
package/src/services/audit/detectors/azure/user-security.detector.ts +280 -0
package/src/services/audit/detectors/index.ts +18 -0
package/src/services/audit/response-formatter.ts +604 -0
package/src/services/audit/scoring.service.ts +234 -0
package/src/services/auth/.gitkeep +0 -0
package/src/services/auth/crypto.service.ts +230 -0
package/src/services/auth/errors.ts +47 -0
package/src/services/auth/token.service.ts +420 -0
package/src/services/config/.gitkeep +0 -0
package/src/services/config/config.service.ts +75 -0
package/src/services/export/.gitkeep +0 -0
package/src/services/export/export.service.ts +99 -0
package/src/services/export/formatters/csv.formatter.ts +124 -0
package/src/services/export/formatters/json.formatter.ts +160 -0
package/src/services/jobs/azure-job-runner.ts +312 -0
package/src/services/jobs/index.ts +9 -0
package/src/services/jobs/job-runner.ts +1280 -0
package/src/services/jobs/job-store.ts +384 -0
package/src/services/jobs/job.types.ts +182 -0
package/src/types/.gitkeep +0 -0
package/src/types/ad.types.ts +91 -0
package/src/types/adcs.types.ts +107 -0
package/src/types/attack-graph.types.ts +260 -0
package/src/types/audit.types.ts +42 -0
package/src/types/azure.types.ts +68 -0
package/src/types/config.types.ts +79 -0
package/src/types/error.types.ts +69 -0
package/src/types/finding.types.ts +284 -0
package/src/types/gpo.types.ts +72 -0
package/src/types/smb2.d.ts +73 -0
package/src/types/token.types.ts +32 -0
package/src/types/trust.types.ts +140 -0
package/src/utils/.gitkeep +0 -0
package/src/utils/entity-converter.ts +453 -0
package/src/utils/graph.util.ts +609 -0
package/src/utils/logger.ts +111 -0
package/src/utils/type-name-normalizer.ts +302 -0
package/tests/.gitkeep +0 -0
package/tests/e2e/.gitkeep +0 -0
package/tests/fixtures/.gitkeep +0 -0
package/tests/integration/.gitkeep +0 -0
package/tests/integration/README.md +156 -0
package/tests/integration/ad-audit.integration.test.ts +216 -0
package/tests/integration/api/.gitkeep +0 -0
package/tests/integration/api/endpoints.integration.test.ts +431 -0
package/tests/integration/auth/jwt-authentication.integration.test.ts +358 -0
package/tests/integration/providers/.gitkeep +0 -0
package/tests/integration/providers/azure-basic.integration.test.ts +167 -0
package/tests/integration/providers/ldap-basic.integration.test.ts +152 -0
package/tests/integration/providers/ldap-connectivity.test.ts +44 -0
package/tests/integration/providers/ldap-provider.integration.test.ts +347 -0
package/tests/mocks/.gitkeep +0 -0
package/tests/setup.ts +16 -0
package/tests/unit/.gitkeep +0 -0
package/tests/unit/api/middlewares/authenticate.test.ts +446 -0
package/tests/unit/providers/.gitkeep +0 -0
package/tests/unit/providers/azure/azure-errors.test.ts +193 -0
package/tests/unit/providers/azure/azure-retry.test.ts +254 -0
package/tests/unit/providers/azure/graph-provider.test.ts +313 -0
package/tests/unit/providers/ldap/ad-mappers.test.ts +392 -0
package/tests/unit/providers/ldap/ldap-provider.test.ts +376 -0
package/tests/unit/providers/ldap/ldap-retry.test.ts +377 -0
package/tests/unit/providers/ldap/ldap-sanitizer.test.ts +301 -0
package/tests/unit/sample.test.ts +19 -0
package/tests/unit/services/.gitkeep +0 -0
package/tests/unit/services/audit/detectors/ad/accounts.detector.test.ts +393 -0
package/tests/unit/services/audit/detectors/ad/advanced.detector.test.ts +380 -0
package/tests/unit/services/audit/detectors/ad/computers.detector.test.ts +440 -0
package/tests/unit/services/audit/detectors/ad/groups.detector.test.ts +276 -0
package/tests/unit/services/audit/detectors/ad/kerberos.detector.test.ts +215 -0
package/tests/unit/services/audit/detectors/ad/password.detector.test.ts +226 -0
package/tests/unit/services/audit/detectors/ad/permissions.detector.test.ts +244 -0
package/tests/unit/services/audit/detectors/azure/app-security.detector.test.ts +349 -0
package/tests/unit/services/audit/detectors/azure/conditional-access.detector.test.ts +374 -0
package/tests/unit/services/audit/detectors/azure/privilege-security.detector.test.ts +374 -0
package/tests/unit/services/audit/detectors/azure/user-security.detector.test.ts +297 -0
package/tests/unit/services/auth/crypto.service.test.ts +296 -0
package/tests/unit/services/auth/token.service.test.ts +579 -0
package/tests/unit/services/export/export.service.test.ts +241 -0
package/tests/unit/services/export/formatters/csv.formatter.test.ts +270 -0
package/tests/unit/services/export/formatters/json.formatter.test.ts +258 -0
package/tests/unit/utils/.gitkeep +0 -0
package/tsconfig.json +50 -0

package/src/services/jobs/job-store.ts ADDED Viewed

@@ -0,0 +1,384 @@
+/**
+ * Job Store
+ *
+ * In-memory store for managing async audit jobs.
+ * Provides thread-safe operations for job lifecycle management.
+ */
+import { v4 as uuidv4 } from 'uuid';
+import {
+  Job,
+  JobStatus,
+  JobStep,
+  JobError,
+  CreateJobOptions,
+  StepProgressUpdate,
+  JobSummary,
+  AuditStepName,
+  AD_AUDIT_STEPS,
+  AZURE_AUDIT_STEPS,
+  StepDefinition,
+} from './job.types';
+import { logger } from '../../utils/logger';
+/**
+ * Maximum number of completed jobs to keep in memory
+ */
+const MAX_COMPLETED_JOBS = 100;
+/**
+ * Time to keep completed jobs (1 hour)
+ */
+const JOB_RETENTION_MS = 60 * 60 * 1000;
+/**
+ * Job Store
+ *
+ * Singleton store for managing audit jobs in memory.
+ */
+export class JobStore {
+  private static instance: JobStore;
+  private jobs: Map<string, Job> = new Map();
+  private cleanupInterval: NodeJS.Timeout | null = null;
+  private constructor() {
+    // Start cleanup interval
+    this.cleanupInterval = setInterval(() => this.cleanup(), 5 * 60 * 1000); // Every 5 minutes
+  }
+  /**
+   * Get singleton instance
+   */
+  static getInstance(): JobStore {
+    if (!JobStore.instance) {
+      JobStore.instance = new JobStore();
+    }
+    return JobStore.instance;
+  }
+  /**
+   * Create a new job
+   */
+  createJob(options: CreateJobOptions): Job {
+    const now = new Date().toISOString();
+    const jobId = `${options.type}-${Date.now()}-${uuidv4().substring(0, 8)}`;
+    // Get step definitions based on job type
+    const stepDefs = this.getStepDefinitions(options.type);
+    // Initialize steps
+    const steps: JobStep[] = stepDefs.map((def) => ({
+      name: def.name,
+      status: 'pending',
+      description: def.description,
+    }));
+    const job: Job = {
+      job_id: jobId,
+      type: options.type,
+      status: 'pending',
+      progress: 0,
+      current_step: steps[0]?.name || 'CONNECTING',
+      description: 'Job created, waiting to start',
+      started_at: now,
+      updated_at: now,
+      steps,
+      options: options.options,
+    };
+    this.jobs.set(jobId, job);
+    logger.info('Job created', { job_id: jobId, type: options.type });
+    return job;
+  }
+  /**
+   * Get step definitions for job type
+   */
+  private getStepDefinitions(type: string): StepDefinition[] {
+    switch (type) {
+      case 'ad-audit':
+        return AD_AUDIT_STEPS;
+      case 'azure-audit':
+        return AZURE_AUDIT_STEPS;
+      default:
+        return AD_AUDIT_STEPS;
+    }
+  }
+  /**
+   * Get a job by ID
+   */
+  getJob(jobId: string): Job | undefined {
+    return this.jobs.get(jobId);
+  }
+  /**
+   * List all jobs (optionally filtered by status)
+   */
+  listJobs(status?: JobStatus): JobSummary[] {
+    const summaries: JobSummary[] = [];
+    for (const job of this.jobs.values()) {
+      if (!status || job.status === status) {
+        summaries.push({
+          job_id: job.job_id,
+          type: job.type,
+          status: job.status,
+          progress: job.progress,
+          current_step: job.current_step,
+          started_at: job.started_at,
+          completed_at: job.completed_at,
+          duration_ms: job.duration_ms,
+        });
+      }
+    }
+    // Sort by started_at descending
+    return summaries.sort(
+      (a, b) => new Date(b.started_at).getTime() - new Date(a.started_at).getTime()
+    );
+  }
+  /**
+   * Start a job
+   */
+  startJob(jobId: string): void {
+    const job = this.jobs.get(jobId);
+    if (!job) return;
+    job.status = 'running';
+    job.description = 'Audit in progress';
+    job.updated_at = new Date().toISOString();
+    logger.info('Job started', { job_id: jobId });
+  }
+  /**
+   * Start a step
+   */
+  startStep(jobId: string, stepName: AuditStepName, description?: string): void {
+    const job = this.jobs.get(jobId);
+    if (!job) return;
+    const step = job.steps.find((s) => s.name === stepName);
+    if (!step) return;
+    step.status = 'running';
+    step.started_at = new Date().toISOString();
+    if (description) {
+      step.description = description;
+    }
+    job.current_step = stepName;
+    job.description = step.description;
+    job.updated_at = new Date().toISOString();
+    job.progress = this.calculateProgress(job);
+    logger.debug('Step started', { job_id: jobId, step: stepName });
+  }
+  /**
+   * Update step progress
+   */
+  updateStepProgress(jobId: string, stepName: AuditStepName, update: StepProgressUpdate): void {
+    const job = this.jobs.get(jobId);
+    if (!job) return;
+    const step = job.steps.find((s) => s.name === stepName);
+    if (!step) return;
+    if (update.progress !== undefined) step.progress = update.progress;
+    if (update.count !== undefined) step.count = update.count;
+    if (update.findings !== undefined) step.findings = update.findings;
+    if (update.description) {
+      step.description = update.description;
+      job.description = update.description;
+    }
+    job.updated_at = new Date().toISOString();
+    job.progress = this.calculateProgress(job);
+  }
+  /**
+   * Complete a step
+   */
+  completeStep(
+    jobId: string,
+    stepName: AuditStepName,
+    result?: { count?: number; findings?: number }
+  ): void {
+    const job = this.jobs.get(jobId);
+    if (!job) return;
+    const step = job.steps.find((s) => s.name === stepName);
+    if (!step) return;
+    const now = new Date().toISOString();
+    step.status = 'completed';
+    step.completed_at = now;
+    step.progress = 100;
+    if (step.started_at) {
+      step.duration_ms = new Date(now).getTime() - new Date(step.started_at).getTime();
+    }
+    if (result?.count !== undefined) step.count = result.count;
+    if (result?.findings !== undefined) step.findings = result.findings;
+    job.updated_at = now;
+    job.progress = this.calculateProgress(job);
+    logger.debug('Step completed', {
+      job_id: jobId,
+      step: stepName,
+      duration_ms: step.duration_ms,
+      count: step.count,
+      findings: step.findings,
+    });
+  }
+  /**
+   * Fail a step
+   */
+  failStep(jobId: string, stepName: AuditStepName, error: string): void {
+    const job = this.jobs.get(jobId);
+    if (!job) return;
+    const step = job.steps.find((s) => s.name === stepName);
+    if (!step) return;
+    const now = new Date().toISOString();
+    step.status = 'failed';
+    step.completed_at = now;
+    step.error = error;
+    if (step.started_at) {
+      step.duration_ms = new Date(now).getTime() - new Date(step.started_at).getTime();
+    }
+    job.updated_at = now;
+  }
+  /**
+   * Complete the job
+   */
+  completeJob<T>(jobId: string, result: T): void {
+    const job = this.jobs.get(jobId);
+    if (!job) return;
+    const now = new Date().toISOString();
+    job.status = 'completed';
+    job.progress = 100;
+    job.current_step = 'COMPLETED';
+    job.description = 'Audit completed successfully';
+    job.completed_at = now;
+    job.updated_at = now;
+    job.duration_ms = new Date(now).getTime() - new Date(job.started_at).getTime();
+    job.result = result;
+    logger.info('Job completed', {
+      job_id: jobId,
+      duration_ms: job.duration_ms,
+      steps_completed: job.steps.filter((s) => s.status === 'completed').length,
+    });
+  }
+  /**
+   * Fail the job
+   */
+  failJob(jobId: string, error: JobError): void {
+    const job = this.jobs.get(jobId);
+    if (!job) return;
+    const now = new Date().toISOString();
+    job.status = 'failed';
+    job.description = error.message;
+    job.failed_at = now;
+    job.updated_at = now;
+    job.duration_ms = new Date(now).getTime() - new Date(job.started_at).getTime();
+    job.error = error;
+    logger.error('Job failed', {
+      job_id: jobId,
+      error: error.code,
+      message: error.message,
+      step: error.step,
+    });
+  }
+  /**
+   * Calculate overall progress based on step weights
+   */
+  private calculateProgress(job: Job): number {
+    const stepDefs = this.getStepDefinitions(job.type);
+    let completedWeight = 0;
+    let currentStepPartialWeight = 0;
+    for (const step of job.steps) {
+      const def = stepDefs.find((d) => d.name === step.name);
+      if (!def) continue;
+      if (step.status === 'completed') {
+        completedWeight += def.weight;
+      } else if (step.status === 'running' && step.progress !== undefined) {
+        currentStepPartialWeight = (def.weight * step.progress) / 100;
+      }
+    }
+    return Math.min(100, Math.round(completedWeight + currentStepPartialWeight));
+  }
+  /**
+   * Delete a job
+   */
+  deleteJob(jobId: string): boolean {
+    const deleted = this.jobs.delete(jobId);
+    if (deleted) {
+      logger.info('Job deleted', { job_id: jobId });
+    }
+    return deleted;
+  }
+  /**
+   * Cleanup old completed/failed jobs
+   */
+  private cleanup(): void {
+    const now = Date.now();
+    const jobsToDelete: string[] = [];
+    for (const [jobId, job] of this.jobs.entries()) {
+      if (job.status === 'completed' || job.status === 'failed') {
+        const completedTime = job.completed_at || job.failed_at;
+        if (completedTime && now - new Date(completedTime).getTime() > JOB_RETENTION_MS) {
+          jobsToDelete.push(jobId);
+        }
+      }
+    }
+    // Also cleanup if we have too many completed jobs
+    const completedJobs = this.listJobs('completed');
+    if (completedJobs.length > MAX_COMPLETED_JOBS) {
+      const excess = completedJobs.slice(MAX_COMPLETED_JOBS);
+      excess.forEach((j) => jobsToDelete.push(j.job_id));
+    }
+    for (const jobId of jobsToDelete) {
+      this.jobs.delete(jobId);
+    }
+    if (jobsToDelete.length > 0) {
+      logger.info('Cleaned up old jobs', { count: jobsToDelete.length });
+    }
+  }
+  /**
+   * Stop the store (cleanup interval)
+   */
+  stop(): void {
+    if (this.cleanupInterval) {
+      clearInterval(this.cleanupInterval);
+      this.cleanupInterval = null;
+    }
+  }
+}

package/src/services/jobs/job.types.ts ADDED Viewed

@@ -0,0 +1,182 @@
+/**
+ * Job Types
+ *
+ * Types for async audit job management with progress tracking.
+ * Supports polling architecture for long-running audit operations.
+ */
+/**
+ * Job status
+ */
+export type JobStatus = 'pending' | 'running' | 'completed' | 'failed';
+/**
+ * Step status
+ */
+export type StepStatus = 'pending' | 'running' | 'completed' | 'failed' | 'skipped';
+/**
+ * Job type
+ */
+export type JobType = 'ad-audit' | 'azure-audit';
+/**
+ * Audit step names (AD + Azure)
+ */
+export type AuditStepName =
+  // Common steps
+  | 'CONNECTING'
+  | 'FETCHING_USERS'
+  | 'FETCHING_GROUPS'
+  | 'CALCULATING_SCORE'
+  | 'FORMATTING'
+  | 'COMPLETED'
+  // AD-specific steps
+  | 'FETCHING_COMPUTERS'
+  | 'FETCHING_DOMAIN'
+  | 'FETCHING_ACLS'
+  | 'DETECTING_PASSWORDS'
+  | 'DETECTING_KERBEROS'
+  | 'DETECTING_ACCOUNTS'
+  | 'DETECTING_GROUPS'
+  | 'DETECTING_COMPUTERS'
+  | 'DETECTING_ADVANCED'
+  | 'DETECTING_PERMISSIONS'
+  | 'FETCHING_CONFIG'
+  // Azure-specific steps
+  | 'AUTHENTICATING'
+  | 'FETCHING_APPS'
+  | 'FETCHING_POLICIES'
+  | 'FETCHING_ROLES'
+  | 'DETECTING_USER_SECURITY'
+  | 'DETECTING_PRIVILEGE_SECURITY'
+  | 'DETECTING_APP_SECURITY'
+  | 'DETECTING_CONDITIONAL_ACCESS';
+/**
+ * Step definition with weight for progress calculation
+ */
+export interface StepDefinition {
+  name: AuditStepName;
+  description: string;
+  weight: number; // Percentage weight (0-100)
+}
+/**
+ * AD Audit steps with weights
+ */
+export const AD_AUDIT_STEPS: StepDefinition[] = [
+  { name: 'CONNECTING', description: 'Connecting to LDAP server', weight: 2 },
+  { name: 'FETCHING_USERS', description: 'Fetching users from Active Directory', weight: 12 },
+  { name: 'FETCHING_GROUPS', description: 'Fetching groups from Active Directory', weight: 8 },
+  { name: 'FETCHING_COMPUTERS', description: 'Fetching computers from Active Directory', weight: 8 },
+  { name: 'FETCHING_DOMAIN', description: 'Fetching domain information', weight: 2 },
+  { name: 'FETCHING_ACLS', description: 'Fetching security descriptors (ACLs)', weight: 15 },
+  { name: 'DETECTING_PASSWORDS', description: 'Analyzing password vulnerabilities (7 checks)', weight: 7 },
+  { name: 'DETECTING_KERBEROS', description: 'Analyzing Kerberos vulnerabilities (8 checks)', weight: 7 },
+  { name: 'DETECTING_ACCOUNTS', description: 'Analyzing account vulnerabilities (15 checks)', weight: 10 },
+  { name: 'DETECTING_GROUPS', description: 'Analyzing group vulnerabilities (7 checks)', weight: 5 },
+  { name: 'DETECTING_COMPUTERS', description: 'Analyzing computer vulnerabilities (17 checks)', weight: 8 },
+  { name: 'DETECTING_ADVANCED', description: 'Analyzing advanced vulnerabilities (22 checks)', weight: 8 },
+  { name: 'DETECTING_PERMISSIONS', description: 'Analyzing permission vulnerabilities (9 checks)', weight: 5 },
+  { name: 'CALCULATING_SCORE', description: 'Calculating security score', weight: 1 },
+  { name: 'FETCHING_CONFIG', description: 'Fetching domain configuration', weight: 2 },
+  { name: 'FORMATTING', description: 'Formatting audit response', weight: 0 },
+];
+/**
+ * Azure Audit steps with weights
+ */
+export const AZURE_AUDIT_STEPS: StepDefinition[] = [
+  { name: 'AUTHENTICATING', description: 'Authenticating with Microsoft Graph', weight: 5 },
+  { name: 'FETCHING_USERS', description: 'Fetching users from Azure AD', weight: 20 },
+  { name: 'FETCHING_GROUPS', description: 'Fetching groups from Azure AD', weight: 10 },
+  { name: 'FETCHING_APPS', description: 'Fetching applications from Azure AD', weight: 10 },
+  { name: 'FETCHING_POLICIES', description: 'Fetching Conditional Access policies', weight: 5 },
+  { name: 'FETCHING_ROLES', description: 'Fetching directory role assignments', weight: 10 },
+  { name: 'DETECTING_USER_SECURITY', description: 'Analyzing user security vulnerabilities (10 checks)', weight: 15 },
+  { name: 'DETECTING_PRIVILEGE_SECURITY', description: 'Analyzing privilege security vulnerabilities (4 checks)', weight: 10 },
+  { name: 'DETECTING_APP_SECURITY', description: 'Analyzing application security vulnerabilities (7 checks)', weight: 8 },
+  { name: 'DETECTING_CONDITIONAL_ACCESS', description: 'Analyzing Conditional Access vulnerabilities (6 checks)', weight: 5 },
+  { name: 'CALCULATING_SCORE', description: 'Calculating security score', weight: 1 },
+  { name: 'FORMATTING', description: 'Formatting audit response', weight: 1 },
+];
+/**
+ * Job step with runtime information
+ */
+export interface JobStep {
+  name: AuditStepName;
+  status: StepStatus;
+  description: string;
+  started_at?: string;
+  completed_at?: string;
+  duration_ms?: number;
+  progress?: number; // 0-100 for current step
+  count?: number; // Number of items processed (users, groups, etc.)
+  findings?: number; // Number of findings detected
+  error?: string;
+}
+/**
+ * Job error details
+ */
+export interface JobError {
+  code: string;
+  message: string;
+  step: AuditStepName;
+  details?: Record<string, unknown>;
+}
+/**
+ * Job with full tracking information
+ */
+export interface Job<T = unknown> {
+  job_id: string;
+  type: JobType;
+  status: JobStatus;
+  progress: number; // 0-100 overall progress
+  current_step: AuditStepName;
+  description: string;
+  started_at: string;
+  updated_at: string;
+  completed_at?: string;
+  failed_at?: string;
+  duration_ms?: number;
+  steps: JobStep[];
+  error?: JobError;
+  result?: T; // Audit result when completed
+  options?: Record<string, unknown>; // Original audit options
+}
+/**
+ * Job creation options
+ */
+export interface CreateJobOptions {
+  type: JobType;
+  options?: Record<string, unknown>;
+}
+/**
+ * Progress update for a step
+ */
+export interface StepProgressUpdate {
+  progress?: number;
+  count?: number;
+  findings?: number;
+  description?: string;
+}
+/**
+ * Job summary for listing
+ */
+export interface JobSummary {
+  job_id: string;
+  type: JobType;
+  status: JobStatus;
+  progress: number;
+  current_step: AuditStepName;
+  started_at: string;
+  completed_at?: string;
+  duration_ms?: number;
+}

package/src/types/.gitkeep ADDED Viewed

File without changes

package/src/types/ad.types.ts ADDED Viewed

@@ -0,0 +1,91 @@
+/**
+ * Active Directory Types
+ */
+export interface ADUser {
+  // Core identity
+  dn: string;
+  sAMAccountName: string;
+  userPrincipalName?: string;
+  displayName?: string;
+  mail?: string;
+  // Organization
+  title?: string;
+  department?: string;
+  company?: string;
+  manager?: string;
+  physicalDeliveryOfficeName?: string;
+  description?: string;
+  employeeID?: string;
+  telephoneNumber?: string;
+  // Dates (raw from LDAP, may need conversion)
+  whenCreated?: string | Date;
+  whenChanged?: string | Date;
+  lastLogon?: Date;
+  passwordLastSet?: Date;
+  pwdLastSet?: string | number; // Raw FILETIME
+  accountExpires?: string | number; // Raw FILETIME
+  // Security
+  badPwdCount?: number;
+  lockoutTime?: string | number; // Raw FILETIME
+  adminCount?: number;
+  memberOf?: string[];
+  userAccountControl?: number;
+  enabled: boolean;
+  // Allow additional attributes
+  [key: string]: unknown;
+}
+export interface ADGroup {
+  dn: string;
+  sAMAccountName: string;
+  cn?: string;
+  displayName?: string;
+  description?: string;
+  groupType?: number;
+  memberOf?: string[];
+  member?: string[];
+  [key: string]: unknown;
+}
+export interface ADComputer {
+  dn: string;
+  sAMAccountName: string;
+  cn?: string;
+  dNSHostName?: string;
+  operatingSystem?: string;
+  operatingSystemVersion?: string;
+  whenCreated?: string | Date;
+  lastLogon?: Date;
+  passwordLastSet?: Date;
+  userAccountControl?: number;
+  enabled: boolean;
+  [key: string]: unknown;
+}
+export interface ADOU {
+  dn: string;
+  name: string;
+  description?: string;
+  [key: string]: unknown;
+}
+export interface ADDomain {
+  dn: string;
+  name: string;
+  domainFunctionalLevel?: number;
+  forestFunctionalLevel?: number;
+  [key: string]: unknown;
+}
+export interface AclEntry {
+  objectDn: string;
+  trustee: string;
+  accessMask: number;
+  aceType: string;
+  objectType?: string;
+}