rosetta-ce 1.7.2__tar.gz → 1.7.4__tar.gz

{rosetta_ce-1.7.2/rosetta_ce.egg-info → rosetta_ce-1.7.4}/PKG-INFO

@@ -1,6 +1,6 @@
 Metadata-Version: 2.1
 Name: rosetta-ce
-Version: 1.7.2
+Version: 1.7.4
 Summary: Rosetta is a Python package that can be used to fake security logs and alerts for testing different detection and response use cases.
 Home-page: https://github.com/ayman-m/rosetta
 Author: Ayman Mahmoud

{rosetta_ce-1.7.2 → rosetta_ce-1.7.4}/rosetta/constants/systems.py

@@ -1,34 +1,34 @@
 OS_LIST = [
-    "AIX 7.2",
-    "HP-UX 11i v3",
-    "Solaris 11",
-    "FreeBSD 13.2",
-    "OpenBSD 7.4",
-    "NetBSD 10.0",
-    "Ubuntu 22.04 LTS",
-    "Red Hat Enterprise Linux 9",
-    "CentOS 8",
-    "Debian 12",
-    "Fedora 38",
-    "Arch Linux 2024.09",
-    "Kali Linux 2024.1",
-    "Alpine Linux 3.18",
-    "SUSE Linux Enterprise Server 15 SP4",
-    "Windows 10 Pro",
-    "Windows 11 Home",
-    "Windows Server 2019",
-    "Windows Server 2022",
-    "Windows 8.1",
-    "Windows 7 SP1",
-    "macOS Ventura 13",
-    "macOS Monterey 12",
-    "macOS Big Sur 11",
-    "macOS Catalina 10.15",
-    "macOS Mojave 10.14",
-    "iOS 17",
-    "iPadOS 17",
-    "Android 14",
-    "HarmonyOS 3.1"
+    "AIX_7.2",
+    "HP-UX_11i_v3",
+    "Solaris_11",
+    "FreeBSD_13.2",
+    "OpenBSD_7.4",
+    "NetBSD_10.0",
+    "Ubuntu_22.04_LTS",
+    "Red_Hat_Enterprise_Linux_9",
+    "CentOS_8",
+    "Debian_12",
+    "Fedora_38",
+    "Arch_Linux_2024.09",
+    "Kali_Linux_2024.1",
+    "Alpine_Linux_3.18",
+    "SUSE_Linux_Enterprise_Server_15_SP4",
+    "Windows_10_Pro",
+    "Windows_11_Home",
+    "Windows_Server_2019",
+    "Windows_Server_2022",
+    "Windows_8.1",
+    "Windows_7_SP1",
+    "macOS_Ventura_13",
+    "macOS_Monterey_12",
+    "macOS_Big_Sur_11",
+    "macOS_Catalina_10.15",
+    "macOS_Mojave_10.14",
+    "iOS_17",
+    "iPadOS_17",
+    "Android_14",
+    "HarmonyOS_3.1"
 ]
 UNIX_CMD = [
     "cat /etc/shadow",

{rosetta_ce-1.7.2 → rosetta_ce-1.7.4}/rosetta/rfaker.py

@@ -837,6 +837,7 @@ class Events:
         # Generate analyst list if not provided in observables
         incident_types = observables.incident_types if observables and observables.incident_types else INCIDENTS_TYPES
         analysts = observables.analysts if observables and observables.analysts else [faker.unique.first_name() for _ in range(10)]
+        severities = observables.severity if observables and observables.severity else [faker.random_int(min=1, max=5) for _ in range(10)]
 
         incident_type_cycle = itertools.cycle(incident_types)
         for i in range(count):
@@ -844,8 +845,8 @@ class Events:
             duration = random.randint(1, 5)
             incident_type = next(incident_type_cycle)
             analyst = random.choice(analysts)
-            severity = Events._set_field('severity', observables) or faker.random_int(min=1, max=5)
-            description = Events._set_field('terms', observables) or faker.sentence(nb_words=10)
+            severity =  random.choice(severities)
+            description = Events._set_field('terms')
 
             # Add base fields
             incident = {}

{rosetta_ce-1.7.2 → rosetta_ce-1.7.4/rosetta_ce.egg-info}/PKG-INFO

@@ -1,6 +1,6 @@
 Metadata-Version: 2.1
 Name: rosetta-ce
-Version: 1.7.2
+Version: 1.7.4
 Summary: Rosetta is a Python package that can be used to fake security logs and alerts for testing different detection and response use cases.
 Home-page: https://github.com/ayman-m/rosetta
 Author: Ayman Mahmoud

{rosetta_ce-1.7.2 → rosetta_ce-1.7.4}/setup.py

@@ -5,7 +5,7 @@ with open("README.md", "r") as fh:
 
 setuptools.setup(
     name="rosetta-ce",
-    version="1.7.2",
+    version="1.7.4",
     author="Ayman Mahmoud",
     author_email="content@ayman.online",
     description="Rosetta is a Python package that can be used to fake security logs and alerts for testing different "

{rosetta_ce-1.7.2 → rosetta_ce-1.7.4}/tests/test_rfaker.py

@@ -150,5 +150,15 @@ class TestRFaker(unittest.TestCase):
             self.assertIn(observables_list.src_host[0], message)
 
 
+    def test_incident(self):
+        start_time = time.time()
+        fake_messages = Events.incidents(count=10)
+        end_time = time.time()
+        latency = end_time - start_time
+        print(f"Incident generation latency for 10 logs: {latency:.4f} seconds")
+
+        self.assertTrue(isinstance(fake_messages, list))
+        self.assertEqual(len(fake_messages), 10)
+
 if __name__ == '__main__':
     unittest.main()