souleyez 2.31.0__py3-none-any.whl → 2.35.0__py3-none-any.whl

souleyez/integrations/wazuh/config.py

@@ -10,8 +10,8 @@ from pathlib import Path
 from souleyez.storage.database import get_db
 from souleyez.storage.crypto import get_crypto_manager
 
-# Supported SIEM types
-SIEM_TYPES = ['wazuh', 'splunk', 'elastic', 'sentinel']
+# Supported SIEM types (Open Source first, then Commercial)
+SIEM_TYPES = ['wazuh', 'elastic', 'splunk', 'sentinel', 'google_secops']
 
 
 class WazuhConfig:
@@ -22,10 +22,14 @@ class WazuhConfig:
     """
 
     @staticmethod
-    def get_config(engagement_id: int) -> Optional[Dict[str, Any]]:
+    def get_config(engagement_id: int, siem_type: str = None) -> Optional[Dict[str, Any]]:
         """
         Get SIEM config for an engagement.
 
+        Args:
+            engagement_id: Engagement ID
+            siem_type: Optional SIEM type to filter by. If None, returns first/active config.
+
         Returns:
             Config dict or None if not configured
         """
@@ -33,19 +37,31 @@ class WazuhConfig:
         conn = db.get_connection()
         cursor = conn.cursor()
 
-        # Check if new columns exist (migration 025)
+        # Check if new columns exist (migration 025+)
         cursor.execute("PRAGMA table_info(wazuh_config)")
         columns = [col[1] for col in cursor.fetchall()]
         has_new_columns = 'siem_type' in columns
 
         # Query with or without new columns
         if has_new_columns:
-            cursor.execute("""
-                SELECT api_url, api_user, api_password, indexer_url, indexer_user,
-                       indexer_password, verify_ssl, enabled, siem_type, config_json
-                FROM wazuh_config
-                WHERE engagement_id = ?
-            """, (engagement_id,))
+            if siem_type:
+                cursor.execute("""
+                    SELECT api_url, api_user, api_password, indexer_url, indexer_user,
+                           indexer_password, verify_ssl, enabled, siem_type, config_json
+                    FROM wazuh_config
+                    WHERE engagement_id = ? AND siem_type = ?
+                """, (engagement_id, siem_type))
+            else:
+                # Get most recently updated config (the "current" selected SIEM)
+                # Not filtering by enabled - user may have selected but not configured yet
+                cursor.execute("""
+                    SELECT api_url, api_user, api_password, indexer_url, indexer_user,
+                           indexer_password, verify_ssl, enabled, siem_type, config_json
+                    FROM wazuh_config
+                    WHERE engagement_id = ?
+                    ORDER BY updated_at DESC
+                    LIMIT 1
+                """, (engagement_id,))
         else:
             cursor.execute("""
                 SELECT api_url, api_user, api_password, indexer_url, indexer_user,
@@ -190,7 +206,7 @@ class WazuhConfig:
                 pass
             config_json_str = json.dumps(encrypted_config)
 
-        # Upsert config
+        # Upsert config - keyed by (engagement_id, siem_type) for multi-SIEM support
         cursor.execute("""
             INSERT INTO wazuh_config (
                 engagement_id, api_url, api_user, api_password, indexer_url,
@@ -198,7 +214,7 @@ class WazuhConfig:
                 siem_type, config_json
             )
             VALUES (?, ?, ?, ?, ?, ?, ?, ?, ?, ?, ?)
-            ON CONFLICT(engagement_id) DO UPDATE SET
+            ON CONFLICT(engagement_id, siem_type) DO UPDATE SET
                 api_url = excluded.api_url,
                 api_user = excluded.api_user,
                 api_password = excluded.api_password,
@@ -207,8 +223,8 @@ class WazuhConfig:
                 indexer_password = excluded.indexer_password,
                 verify_ssl = excluded.verify_ssl,
                 enabled = excluded.enabled,
-                siem_type = excluded.siem_type,
-                config_json = excluded.config_json
+                config_json = excluded.config_json,
+                updated_at = CURRENT_TIMESTAMP
         """, (
             engagement_id, api_url, api_user, encrypted_api_password,
             indexer_url, indexer_user or 'admin', encrypted_indexer_password,
@@ -262,17 +278,124 @@ class WazuhConfig:
             )
 
     @staticmethod
-    def delete_config(engagement_id: int) -> bool:
-        """Delete Wazuh config for an engagement."""
+    def delete_config(engagement_id: int, siem_type: str = None) -> bool:
+        """
+        Delete SIEM config for an engagement.
+
+        Args:
+            engagement_id: Engagement ID
+            siem_type: Optional SIEM type. If None, deletes ALL SIEM configs for engagement.
+        """
         db = get_db()
         conn = db.get_connection()
         cursor = conn.cursor()
-        cursor.execute("DELETE FROM wazuh_config WHERE engagement_id = ?", (engagement_id,))
+        if siem_type:
+            cursor.execute(
+                "DELETE FROM wazuh_config WHERE engagement_id = ? AND siem_type = ?",
+                (engagement_id, siem_type)
+            )
+        else:
+            cursor.execute("DELETE FROM wazuh_config WHERE engagement_id = ?", (engagement_id,))
         conn.commit()
         return cursor.rowcount > 0
 
     @staticmethod
-    def is_configured(engagement_id: int) -> bool:
-        """Check if Wazuh is configured for an engagement."""
-        config = WazuhConfig.get_config(engagement_id)
+    def is_configured(engagement_id: int, siem_type: str = None) -> bool:
+        """Check if SIEM is configured for an engagement."""
+        config = WazuhConfig.get_config(engagement_id, siem_type)
         return config is not None and config.get("enabled", False)
+
+    @staticmethod
+    def list_configured_siems(engagement_id: int) -> List[Dict[str, Any]]:
+        """
+        List all configured SIEMs for an engagement.
+
+        Returns:
+            List of dicts with siem_type, enabled, and api_url for each configured SIEM
+        """
+        db = get_db()
+        conn = db.get_connection()
+        cursor = conn.cursor()
+
+        cursor.execute("PRAGMA table_info(wazuh_config)")
+        columns = [col[1] for col in cursor.fetchall()]
+
+        if 'siem_type' not in columns:
+            # Old schema - only one config possible
+            cursor.execute("""
+                SELECT 'wazuh' as siem_type, enabled, api_url
+                FROM wazuh_config
+                WHERE engagement_id = ?
+            """, (engagement_id,))
+        else:
+            cursor.execute("""
+                SELECT siem_type, enabled, api_url, updated_at
+                FROM wazuh_config
+                WHERE engagement_id = ?
+                ORDER BY siem_type
+            """, (engagement_id,))
+
+        rows = cursor.fetchall()
+        return [
+            {
+                'siem_type': row[0],
+                'enabled': bool(row[1]),
+                'api_url': row[2],
+                'updated_at': row[3] if len(row) > 3 else None
+            }
+            for row in rows
+        ]
+
+    @staticmethod
+    def get_all_configs(engagement_id: int) -> Dict[str, Dict[str, Any]]:
+        """
+        Get all SIEM configs for an engagement, keyed by siem_type.
+
+        Returns:
+            Dict mapping siem_type to config dict
+        """
+        configs = {}
+        for siem in SIEM_TYPES:
+            config = WazuhConfig.get_config(engagement_id, siem)
+            if config:
+                configs[siem] = config
+        return configs
+
+    @staticmethod
+    def get_current_siem_type(engagement_id: int) -> str:
+        """
+        Get the currently selected SIEM type for an engagement.
+
+        Returns the most recently selected SIEM type, even if not fully configured.
+
+        Returns:
+            SIEM type string ('wazuh', 'splunk', etc.) or 'wazuh' as default
+        """
+        config = WazuhConfig.get_config(engagement_id)
+        if config:
+            return config.get('siem_type', 'wazuh')
+        return 'wazuh'
+
+    @staticmethod
+    def set_current_siem(engagement_id: int, siem_type: str) -> bool:
+        """
+        Set a SIEM type as current by updating its timestamp.
+
+        This makes the specified SIEM the "active" one without changing its config.
+
+        Args:
+            engagement_id: Engagement ID
+            siem_type: SIEM type to make current
+
+        Returns:
+            True if successful
+        """
+        db = get_db()
+        conn = db.get_connection()
+        cursor = conn.cursor()
+        cursor.execute(
+            "UPDATE wazuh_config SET updated_at = CURRENT_TIMESTAMP WHERE engagement_id = ? AND siem_type = ?",
+            (engagement_id, siem_type)
+        )
+        conn.commit()
+        return cursor.rowcount > 0

souleyez/main.py

@@ -173,7 +173,7 @@ def _check_privileged_tools():
 
 
 @click.group()
-@click.version_option(version='2.31.0')
+@click.version_option(version='2.35.0')
 def cli():
     """SoulEyez - AI-Powered Pentesting Platform by CyberSoul Security"""
     from souleyez.log_config import init_logging

souleyez/storage/migrations/_027_multi_siem_persistence.py

@@ -0,0 +1,119 @@
+"""
+Migration 027: Multi-SIEM Persistence
+
+Changes wazuh_config table to support multiple SIEM configs per engagement.
+- Removes UNIQUE constraint on engagement_id
+- Adds UNIQUE constraint on (engagement_id, siem_type)
+- Allows each engagement to have separate configs for Wazuh, Splunk, etc.
+"""
+import os
+
+
+def upgrade(conn):
+    """Migrate to multi-SIEM persistence."""
+    cursor = conn.cursor()
+
+    # Check if siem_type column exists (from migration 025)
+    cursor.execute("PRAGMA table_info(wazuh_config)")
+    columns = [col[1] for col in cursor.fetchall()]
+
+    if 'siem_type' not in columns:
+        cursor.execute("ALTER TABLE wazuh_config ADD COLUMN siem_type TEXT DEFAULT 'wazuh'")
+    if 'config_json' not in columns:
+        cursor.execute("ALTER TABLE wazuh_config ADD COLUMN config_json TEXT")
+
+    # Create new table with correct constraint
+    cursor.execute("""
+        CREATE TABLE IF NOT EXISTS siem_config_new (
+            id INTEGER PRIMARY KEY AUTOINCREMENT,
+            engagement_id INTEGER NOT NULL,
+            siem_type TEXT NOT NULL DEFAULT 'wazuh',
+            api_url TEXT,
+            api_user TEXT,
+            api_password TEXT,
+            indexer_url TEXT,
+            indexer_user TEXT DEFAULT 'admin',
+            indexer_password TEXT,
+            verify_ssl BOOLEAN DEFAULT 0,
+            enabled BOOLEAN DEFAULT 1,
+            config_json TEXT,
+            created_at TIMESTAMP DEFAULT CURRENT_TIMESTAMP,
+            updated_at TIMESTAMP DEFAULT CURRENT_TIMESTAMP,
+            FOREIGN KEY (engagement_id) REFERENCES engagements(id) ON DELETE CASCADE,
+            UNIQUE(engagement_id, siem_type)
+        )
+    """)
+
+    # Copy existing data
+    cursor.execute("""
+        INSERT OR IGNORE INTO siem_config_new (
+            id, engagement_id, siem_type, api_url, api_user, api_password,
+            indexer_url, indexer_user, indexer_password, verify_ssl, enabled,
+            config_json, created_at, updated_at
+        )
+        SELECT
+            id, engagement_id, COALESCE(siem_type, 'wazuh'), api_url, api_user, api_password,
+            indexer_url, indexer_user, indexer_password, verify_ssl, enabled,
+            config_json, created_at, updated_at
+        FROM wazuh_config
+    """)
+
+    # Drop old table and rename new one
+    cursor.execute("DROP TABLE wazuh_config")
+    cursor.execute("ALTER TABLE siem_config_new RENAME TO wazuh_config")
+
+    # Recreate index
+    cursor.execute("CREATE INDEX IF NOT EXISTS idx_wazuh_config_engagement ON wazuh_config(engagement_id)")
+    cursor.execute("CREATE INDEX IF NOT EXISTS idx_wazuh_config_siem_type ON wazuh_config(siem_type)")
+
+    conn.commit()
+
+    if not os.environ.get('SOULEYEZ_MIGRATION_SILENT'):
+        print("Migration 027: Multi-SIEM persistence enabled")
+
+
+def downgrade(conn):
+    """Revert to single SIEM per engagement (lossy - keeps only first config per engagement)."""
+    cursor = conn.cursor()
+
+    cursor.execute("""
+        CREATE TABLE IF NOT EXISTS wazuh_config_old (
+            id INTEGER PRIMARY KEY AUTOINCREMENT,
+            engagement_id INTEGER NOT NULL UNIQUE,
+            api_url TEXT NOT NULL,
+            api_user TEXT NOT NULL,
+            api_password TEXT,
+            indexer_url TEXT,
+            indexer_user TEXT DEFAULT 'admin',
+            indexer_password TEXT,
+            verify_ssl BOOLEAN DEFAULT 0,
+            enabled BOOLEAN DEFAULT 1,
+            siem_type TEXT DEFAULT 'wazuh',
+            config_json TEXT,
+            created_at TIMESTAMP DEFAULT CURRENT_TIMESTAMP,
+            updated_at TIMESTAMP DEFAULT CURRENT_TIMESTAMP,
+            FOREIGN KEY (engagement_id) REFERENCES engagements(id) ON DELETE CASCADE
+        )
+    """)
+
+    # Copy only first config per engagement
+    cursor.execute("""
+        INSERT OR IGNORE INTO wazuh_config_old (
+            engagement_id, api_url, api_user, api_password,
+            indexer_url, indexer_user, indexer_password, verify_ssl, enabled,
+            siem_type, config_json, created_at, updated_at
+        )
+        SELECT
+            engagement_id, api_url, api_user, api_password,
+            indexer_url, indexer_user, indexer_password, verify_ssl, enabled,
+            siem_type, config_json, created_at, updated_at
+        FROM wazuh_config
+        GROUP BY engagement_id
+    """)
+
+    cursor.execute("DROP TABLE wazuh_config")
+    cursor.execute("ALTER TABLE wazuh_config_old RENAME TO wazuh_config")
+    cursor.execute("CREATE INDEX IF NOT EXISTS idx_wazuh_config_engagement ON wazuh_config(engagement_id)")
+
+    conn.commit()
+    print("Migration 027: Reverted to single SIEM per engagement")

souleyez/storage/migrations/__init__.py

@@ -31,6 +31,7 @@ from . import (
     _024_wazuh_vulnerabilities,
     _025_multi_siem_support,
     _026_add_engagement_scope,
+    _027_multi_siem_persistence,
 )
 
 # Migration registry - maps version to module
@@ -60,6 +61,7 @@ MIGRATIONS_REGISTRY = {
     '024': _024_wazuh_vulnerabilities,
     '025': _025_multi_siem_support,
     '026': _026_add_engagement_scope,
+    '027': _027_multi_siem_persistence,
 }
 
 

souleyez/storage/schema.sql

@@ -504,18 +504,21 @@ CREATE INDEX IF NOT EXISTS idx_msf_sessions_active ON msf_sessions(is_active);
 -- Wazuh SIEM Integration (Detection Validation)
 CREATE TABLE IF NOT EXISTS wazuh_config (
     id INTEGER PRIMARY KEY AUTOINCREMENT,
-    engagement_id INTEGER NOT NULL UNIQUE,
-    api_url TEXT NOT NULL,
-    api_user TEXT NOT NULL,
+    engagement_id INTEGER NOT NULL,
+    siem_type TEXT NOT NULL DEFAULT 'wazuh',
+    api_url TEXT,
+    api_user TEXT,
     api_password TEXT,
     indexer_url TEXT,
     indexer_user TEXT DEFAULT 'admin',
     indexer_password TEXT,
     verify_ssl BOOLEAN DEFAULT 0,
     enabled BOOLEAN DEFAULT 1,
+    config_json TEXT,
     created_at TIMESTAMP DEFAULT CURRENT_TIMESTAMP,
     updated_at TIMESTAMP DEFAULT CURRENT_TIMESTAMP,
-    FOREIGN KEY (engagement_id) REFERENCES engagements(id) ON DELETE CASCADE
+    FOREIGN KEY (engagement_id) REFERENCES engagements(id) ON DELETE CASCADE,
+    UNIQUE(engagement_id, siem_type)
 );
 
 -- Detection validation results per job
@@ -539,6 +542,7 @@ CREATE TABLE IF NOT EXISTS detection_results (
 );
 
 CREATE INDEX IF NOT EXISTS idx_wazuh_config_engagement ON wazuh_config(engagement_id);
+CREATE INDEX IF NOT EXISTS idx_wazuh_config_siem_type ON wazuh_config(siem_type);
 CREATE INDEX IF NOT EXISTS idx_detection_results_job ON detection_results(job_id);
 CREATE INDEX IF NOT EXISTS idx_detection_results_engagement ON detection_results(engagement_id);
 CREATE INDEX IF NOT EXISTS idx_detection_results_status ON detection_results(detection_status);

souleyez/ui/interactive.py

@@ -8152,6 +8152,40 @@ def manage_engagements_menu():
                     click.echo(click.style(f"  ✓ Created engagement '{ws_name}' (ID: {ws_id})", fg='green'))
                     if selected_template:
                         click.echo(click.style(f"  ✓ Applied preset: {selected_template.name}", fg='green'))
+
+                    # Save scope to engagement_scope table if provided
+                    if ws_scope.strip():
+                        from souleyez.security.scope_validator import ScopeManager
+                        import ipaddress
+                        scope_mgr = ScopeManager()
+                        scope_value = ws_scope.strip()
+
+                        # Determine scope type
+                        scope_type = None
+                        try:
+                            # Check if CIDR
+                            ipaddress.ip_network(scope_value, strict=False)
+                            scope_type = 'cidr'
+                        except ValueError:
+                            try:
+                                # Check if single IP
+                                ipaddress.ip_address(scope_value)
+                                scope_type = 'cidr'
+                                scope_value = f"{scope_value}/32"  # Convert single IP to CIDR
+                            except ValueError:
+                                # Check if URL
+                                if scope_value.startswith(('http://', 'https://')):
+                                    scope_type = 'url'
+                                else:
+                                    # Assume domain
+                                    scope_type = 'domain'
+
+                        try:
+                            scope_mgr.add_scope(ws_id, scope_type, scope_value, description="Added during engagement creation")
+                            click.echo(click.style(f"  ✓ Added scope: {scope_type}={scope_value}", fg='green'))
+                        except Exception as scope_err:
+                            click.echo(click.style(f"  ⚠ Could not save scope: {scope_err}", fg='yellow'))
+
                     click.echo()
 
                     # Show next steps based on preset
@@ -8896,18 +8930,48 @@ def _select_siem_type(engagement_id: int):
     config = WazuhConfig.get_config(engagement_id)
     current_type = config.get('siem_type', 'wazuh') if config else 'wazuh'
 
-    # Show available SIEM types
-    siem_types = SIEMFactory.get_available_types()
-    click.echo("  Available SIEM platforms:")
+    # Define SIEM categories with emojis
+    siem_emojis = {
+        'wazuh': '🦎',
+        'elastic': '🦌',
+        'splunk': '⚡',
+        'sentinel': '🛡️',
+        'google_secops': '🔍',
+    }
+    open_source_siems = ['wazuh', 'elastic']
+    commercial_siems = ['splunk', 'sentinel', 'google_secops']
+
+    # Build ordered list for selection (open source first)
+    siem_types = open_source_siems + commercial_siems
+
+    # Show Open Source section
+    click.echo("  🌐 " + click.style("OPEN SOURCE", fg='green', bold=True))
+    click.echo("  " + "─" * 60)
+    idx = 1
+    for siem_type in open_source_siems:
+        info = SIEMFactory.get_type_info(siem_type)
+        emoji = siem_emojis.get(siem_type, '📊')
+        current_marker = click.style(" (current)", fg='green') if siem_type == current_type else ""
+        # Remove [Open Source] prefix from description since we have section header
+        desc = info['description'].replace('[Open Source] ', '')
+        click.echo(f"    [{idx}] {emoji} {click.style(info['name'], bold=True)}{current_marker}")
+        click.echo(f"        {click.style(desc, dim=True)}")
+        idx += 1
     click.echo()
 
-    for i, siem_type in enumerate(siem_types, 1):
+    # Show Commercial section
+    click.echo("  💼 " + click.style("COMMERCIAL", fg='cyan', bold=True))
+    click.echo("  " + "─" * 60)
+    for siem_type in commercial_siems:
         info = SIEMFactory.get_type_info(siem_type)
-        is_current = " (current)" if siem_type == current_type else ""
-        marker = click.style("*", fg='green') if siem_type == current_type else " "
-        click.echo(f"  {marker} [{i}] {click.style(info['name'], bold=True)}{is_current}")
-        click.echo(f"       {info['description']}")
-        click.echo()
+        emoji = siem_emojis.get(siem_type, '📊')
+        current_marker = click.style(" (current)", fg='green') if siem_type == current_type else ""
+        # Remove [Commercial] prefix from description since we have section header
+        desc = info['description'].replace('[Commercial] ', '')
+        click.echo(f"    [{idx}] {emoji} {click.style(info['name'], bold=True)}{current_marker}")
+        click.echo(f"        {click.style(desc, dim=True)}")
+        idx += 1
+    click.echo()
 
     click.echo("    [q] Cancel")
     click.echo()
@@ -8929,19 +8993,28 @@ def _select_siem_type(engagement_id: int):
                 if new_type == current_type:
                     click.echo(f"\n  {info['name']} is already selected.")
                 else:
-                    # If switching SIEM types, we need to reconfigure
-                    click.echo(f"\n  Switching to {click.style(info['name'], bold=True)}...")
-                    click.echo("  You'll need to configure the connection settings.")
-
-                    # Save minimal config to set the SIEM type
-                    WazuhConfig.save_siem_config(
-                        engagement_id=engagement_id,
-                        siem_type=new_type,
-                        config={'siem_type': new_type},
-                        enabled=False  # Not enabled until configured
-                    )
-                    click.echo(click.style(f"\n  ✓ SIEM type set to {info['name']}", fg='green'))
-                    click.echo("  Use 'Configure Connection' to set up credentials.")
+                    # Check if this SIEM type already has a config
+                    existing_config = WazuhConfig.get_config(engagement_id, new_type)
+
+                    if existing_config and existing_config.get('enabled'):
+                        # Already configured - just make it current by updating timestamp
+                        click.echo(f"\n  Switching to {click.style(info['name'], bold=True)}...")
+                        WazuhConfig.set_current_siem(engagement_id, new_type)
+                        click.echo(click.style(f"\n  ✓ Switched to {info['name']} (existing config restored)", fg='green'))
+                    else:
+                        # Not configured - create placeholder
+                        click.echo(f"\n  Switching to {click.style(info['name'], bold=True)}...")
+                        click.echo("  You'll need to configure the connection settings.")
+
+                        # Save minimal config to set the SIEM type
+                        WazuhConfig.save_siem_config(
+                            engagement_id=engagement_id,
+                            siem_type=new_type,
+                            config={'siem_type': new_type},
+                            enabled=False  # Not enabled until configured
+                        )
+                        click.echo(click.style(f"\n  ✓ SIEM type set to {info['name']}", fg='green'))
+                        click.echo("  Use 'Configure Connection' to set up credentials.")
             else:
                 click.echo(click.style("\n  ✗ Invalid choice", fg='red'))
         except ValueError:

{souleyez-2.31.0.dist-info → souleyez-2.35.0.dist-info}/METADATA

@@ -1,6 +1,6 @@
 Metadata-Version: 2.4
 Name: souleyez
-Version: 2.31.0
+Version: 2.35.0
 Summary: AI-Powered Penetration Testing Platform with 40+ integrated tools
 Author-email: CyberSoul Security <contact@cybersoulsecurity.com>
 Maintainer-email: CyberSoul Security <contact@cybersoulsecurity.com>
@@ -78,7 +78,7 @@ Welcome to the SoulEyez beta! Thank you for helping us test and improve this pen
 
 > ⚠️ **Important**: Only use SoulEyez on systems you have explicit authorization to test.
 
-## Version: 2.31.0
+## Version: 2.35.0
 
 ### What's Included
 
@@ -316,4 +316,4 @@ Happy hacking! 🛡️
 
 ---
 
-**Version**: 2.31.0 | **Release Date**: January 2026 | **Maintainer**: CyberSoul Security
+**Version**: 2.35.0 | **Release Date**: January 2026 | **Maintainer**: CyberSoul Security

{souleyez-2.31.0.dist-info → souleyez-2.35.0.dist-info}/RECORD

@@ -1,10 +1,10 @@
-souleyez/__init__.py,sha256=zq0ntjl0x0b8cZ5atHq4qdP41IgcQakOa5M3T83gsbU,23
+souleyez/__init__.py,sha256=UQAEIsTm70ZCEpKHmL6kibJZmLc7zEVtPdYXWIXUQvQ,24
 souleyez/config.py,sha256=av357I3GYRWAklv8Dto-9-5Db699Wq5znez7zo7241Q,11595
 souleyez/devtools.py,sha256=rptmUY4a5eVvYjdEc6273MSagL-D9xibPOFgohVqUno,3508
 souleyez/feature_flags.py,sha256=mo6YAq07lc6sR3lEFKmIwTKxXZ2JPxwa5X97uR_mu50,4642
 souleyez/history.py,sha256=gzs5I_j-3OigIP6yfmBChdqxaFmyUIxvTpzWUPe_Q6c,2853
 souleyez/log_config.py,sha256=MMhPAJOqgXDfuE-xm5g0RxAfWndcmbhFHvIEMm1a_Wo,5830
-souleyez/main.py,sha256=atBSCuroBxewPPeq2ph0qRcU1O4nZqM2j3pjR-Hyluc,130228
+souleyez/main.py,sha256=PzOvPmiph3bP8HsTdi1VBaFKNYkCaLnz67aFN0cfPMc,130228
 souleyez/scanner.py,sha256=U3IWHRrJ5aQ32dSHiVAHB60w1R_z0E0QxfM99msYNlw,3124
 souleyez/security.py,sha256=S84m1QmnKz_6NgH2I6IBIAorMHxRPNYVFSnks5xjihQ,2479
 souleyez/ui.py,sha256=15pfsqoDPnojAqr5S0TZHJE2ZkSHzkHpNVfVvsRj66A,34301
@@ -104,7 +104,7 @@ souleyez/detection/__init__.py,sha256=QIhvXjFdjrquQ6A0VQ7GZQkK_EXB59t8Dv9PKXhEUe
 souleyez/detection/attack_signatures.py,sha256=akgWwiIkh6WYnghCuLhRV0y6FS0SQ0caGF8tZUc49oA,6965
 souleyez/detection/mitre_mappings.py,sha256=xejE80YK-g8kKaeQoo-vBl8P3t8RTTItbfN0NaVZw6s,20558
 souleyez/detection/validator.py,sha256=-AJ7QSJ3-6jFKLnPG_Rc34IXyF4JPyI82BFUgTA9zw0,15641
-souleyez/docs/README.md,sha256=3jeh30cw-juNfg74y8-fPun3tGkVtqo2wYDVPWIzYI8,7183
+souleyez/docs/README.md,sha256=IP5bsU6g4NnyMMkLXeI5qSTgPAmhpDxS3-0AOUnFAjw,7183
 souleyez/docs/api-reference/cli-commands.md,sha256=lTLFnILN3YRVdqCaag7WgsYXfDGglb1TuPexkxDsVdE,12917
 souleyez/docs/api-reference/engagement-api.md,sha256=nd-EvQMtiJrobg2bzFEADp853HP1Uhb9dmgok0_-neE,11672
 souleyez/docs/api-reference/integration-guide.md,sha256=c96uX79ukHyYotLa54wZ20Kx-EUZnrKegTeGkfLD-pw,16285
@@ -162,10 +162,11 @@ souleyez/importers/__init__.py,sha256=FNeqzNzKnaO7NUpoHt2IjXpA0g2eGl8YQwwfg2LhFE
 souleyez/importers/msf_importer.py,sha256=pPeXKqIv5ML2mu2Ew_BFI3vJbqDuBc53OHE4GJmqd5A,11754
 souleyez/importers/smart_importer.py,sha256=hem7Zhvurl8Lm_qY1qeOF-JigQWClXtdmKKlzavvHbo,14425
 souleyez/integrations/__init__.py,sha256=AG15oe2CIfQIJCUCOnMifj-EeZdzCe0A764ZU2gKVCo,79
-souleyez/integrations/siem/__init__.py,sha256=CVeHwXX8wstISL-0nZgffWgdMJQO1Aji0wVAKX67Ouw,1263
+souleyez/integrations/siem/__init__.py,sha256=6KWX7hgTvoOiD5upV7nmBph1e1WOyrMdtN_JfFRJ_pc,1368
 souleyez/integrations/siem/base.py,sha256=JmbhRlHl7wsRyd3nOhCqDHFP4VwBv-VR7uIKWoohKDE,8144
 souleyez/integrations/siem/elastic.py,sha256=LuxheashiOO-AJbtUEK_BZ1T8EUAr1KlZkOheWPPgrQ,14712
-souleyez/integrations/siem/factory.py,sha256=aRTV2IFTF1e5PvmTrAVk1UsrVzm476esY2mLsey3F9Q,8061
+souleyez/integrations/siem/factory.py,sha256=8OBoVpVSjnQQ5oXjcq3iJUEK-ItnyCVkcZV8wHbWEug,9424
+souleyez/integrations/siem/googlesecops.py,sha256=HY832skGOlpidH9KdvvSmvMXP-fxT5S90BD6gFwMKnU,19419
 souleyez/integrations/siem/sentinel.py,sha256=8zxuMgqlfCeGu_gHPNjfmBfBR5PEmtMTbqliC9dnbcI,15789
 souleyez/integrations/siem/splunk.py,sha256=Vi6RMSqjXCVhy6AmQ0kFs_OrP6jDez3Vis8ZYJtWIGA,28587
 souleyez/integrations/siem/wazuh.py,sha256=vltBhkP5BkgJLmdmF6u_b2RgTvP7iE9sFDxOt9v71qM,10245
@@ -173,7 +174,7 @@ souleyez/integrations/siem/rule_mappings/__init__.py,sha256=PbCLigl6Zo8ClvxZ29yd
 souleyez/integrations/siem/rule_mappings/wazuh_rules.py,sha256=tfduSFFVxUOgL19w4ZFmOC0JDlnewz3PwA94a_XFTmI,8307
 souleyez/integrations/wazuh/__init__.py,sha256=d-zfG_enCStagLZNf3bZ57GujT64jsfI7zS3gJDui10,288
 souleyez/integrations/wazuh/client.py,sha256=Gc42bYP-dh2sDJNLh2WYt6iK0OUMnE9WYkegaZ_qUwk,21824
-souleyez/integrations/wazuh/config.py,sha256=26XDoZQBffxV-av7RiJnXKX2yLBPFw83qXu2j8mK6jk,10501
+souleyez/integrations/wazuh/config.py,sha256=WGOkc53EKZFsriUgs8xK26g6UBGvoGnK1Gcc-cRxDYU,14920
 souleyez/integrations/wazuh/host_mapper.py,sha256=e5wKLb3KbkWLOry8z-8WMD36hmRSWO6ZhB_-iyfgKjg,9047
 souleyez/integrations/wazuh/sync.py,sha256=lrZ-9Fd1HKm2ZHPvj83MCFL9UhZqAowWEXTidXDizw0,12168
 souleyez/intelligence/__init__.py,sha256=oLjyxmSk5VgLxYnkSM9PmrREpiGAVmnqrRBxRGf4cQo,423
@@ -292,7 +293,7 @@ souleyez/storage/migrate_to_engagements.py,sha256=1th_JBc38GuqAO0CXVzJ4tcgbl30rE
 souleyez/storage/msf_sessions.py,sha256=UC0XEijKvfIOQ_vvE2GGn-JSdUYCL92vz7JJGdQPI5w,8577
 souleyez/storage/osint.py,sha256=axfdaM49RZczsX6e_K0e2yalkhxp29XDwwwN1y4VOyA,5887
 souleyez/storage/recommendation_engine.py,sha256=wLoDeldLkcrBU1X4iz1lG7tEQRb8ljiyAJTNIohNCqU,16341
-souleyez/storage/schema.sql,sha256=OLZbWKazYDvnlB1hbXVnm6ycuhbFQj0qqz5cNZIIk6Q,21636
+souleyez/storage/schema.sql,sha256=fetlvwt4H3kEOgiHVGdGQncYKHehaVkEEJBbyAQ7Ltk,21798
 souleyez/storage/screenshots.py,sha256=wKLXJQw9csAP5uhSyEeC1idLsaLcW9I7_45SFNjfAu8,5500
 souleyez/storage/smb_shares.py,sha256=TybDadUKbc7HEyLlhc8c6plEfDBYuAcrjNMRjTC61CE,9120
 souleyez/storage/sqlmap_data.py,sha256=la3GFtT0EJx8k_iIBW3A5lT63y0Drc_B9yLyoDN3MBA,14068
@@ -325,7 +326,8 @@ souleyez/storage/migrations/_023_fix_detection_results_fk.py,sha256=U_mAbo9G7JJ6
 souleyez/storage/migrations/_024_wazuh_vulnerabilities.py,sha256=PhEGCDQYTxTFFDUSnbQBAxLTzWBq3UVsOEv3ibTAndI,3579
 souleyez/storage/migrations/_025_multi_siem_support.py,sha256=7Fz8D-_Q8nnFBlbafMN8O5q9m0_Rr1GfsvVfBQlj3vg,1086
 souleyez/storage/migrations/_026_add_engagement_scope.py,sha256=95_6an4jfYecfNVTRMrBfHre6Rzcnj9Xm8f0DqR_9OY,3562
-souleyez/storage/migrations/__init__.py,sha256=fo_i986wpVfj3x9wpy3LMvbDzYLaO5YrwnbdozR4vwg,2145
+souleyez/storage/migrations/_027_multi_siem_persistence.py,sha256=HLbDC9aWiVBsZEoTzOqugVaqRiOLVzih3MPsJ-D6SXA,4606
+souleyez/storage/migrations/__init__.py,sha256=rqQ6QwpomzjPRosnnXUzpNqQkD9pPxtcHWMjwIeMP4Y,2218
 souleyez/storage/migrations/migration_manager.py,sha256=KegAH1HIP6kzdl3WlW1wbdt2LM4Cgu1CmaExFWZcGjc,7438
 souleyez/testing/__init__.py,sha256=Kgu3r9X80sggabbkSEmM9qZyino29QYNzb9tfY05fak,66
 souleyez/testing/credential_tester.py,sha256=wRp0hi32f44nO-qm5Yr-mmly-xg1LlZxY2NKpjqOr-A,15004
@@ -345,7 +347,7 @@ souleyez/ui/export_view.py,sha256=0nQvVsKk7FU4uRzSfJ_qBZh_Lfn8hgGA2rbJ5bNg5-Y,65
 souleyez/ui/gap_analysis_view.py,sha256=AytAOEBq010wwo9hne1TE-uJpY_xicjLrFANbvN3r3w,30727
 souleyez/ui/help_system.py,sha256=nKGxLaMi-TKYs6xudTyw_tZqBb1cGFEuYYh6N-MAsJE,16648
 souleyez/ui/intelligence_view.py,sha256=VeAQ-3mANRnLIVpRqocL3JV0HUmJtADdxDeC5lzQhE0,32168
-souleyez/ui/interactive.py,sha256=1dfYCQ_s5iaaU6xdKCimvvZQfmgshMql5DxToFayKUc,1402812
+souleyez/ui/interactive.py,sha256=dkyIys13Q6_OsDO84-sg1DNQvVTttVOBHjIZV2sSM7w,1406611
 souleyez/ui/interactive_selector.py,sha256=6A51fgmFRnemBY0aCPHIhK2Rpba16NjSGKLzC0Q5vI8,16407
 souleyez/ui/log_formatter.py,sha256=akhIkYoO_cCaKxS1V5N3iPmIrHzgsU7pmsedx70s9TI,3845
 souleyez/ui/menu_components.py,sha256=N8zq2QXGmfaLJ08l53MMYt1y-5LRWgpZH6r8nXHonj8,3519
@@ -368,9 +370,9 @@ souleyez/ui/tutorial_state.py,sha256=Thf7_qCj4VKjG7UqgJqa9kjIqiFUU-7Q7kG4v-u2B4A
 souleyez/ui/wazuh_vulns_view.py,sha256=3vJJEmrjgS2wD6EDB7ZV7WxgytBHTm-1WqNDjp7lVEI,21830
 souleyez/utils/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
 souleyez/utils/tool_checker.py,sha256=kQcXJVY5NiO-orQAUnpHhpQvR5UOBNHJ0PaT0fBxYoQ,30782
-souleyez-2.31.0.dist-info/licenses/LICENSE,sha256=J7vDD5QMF4w2oSDm35eBgosATE70ah1M40u9W4EpTZs,1090
-souleyez-2.31.0.dist-info/METADATA,sha256=rOm0p3BiHE7aZbq6T-37YbMHCPReDSqJ7GuyHMFVBBo,11345
-souleyez-2.31.0.dist-info/WHEEL,sha256=_zCd3N1l69ArxyTb8rzEoP9TpbYXkqRFSNOD5OuxnTs,91
-souleyez-2.31.0.dist-info/entry_points.txt,sha256=bN5W1dhjDZJl3TKclMjRpfQvGPmyrJLwwDuCj_X39HE,48
-souleyez-2.31.0.dist-info/top_level.txt,sha256=afAMzS9p4lcdBNxhGo6jl3ipQE9HUvvNIPOdjtPjr_Q,9
-souleyez-2.31.0.dist-info/RECORD,,
+souleyez-2.35.0.dist-info/licenses/LICENSE,sha256=J7vDD5QMF4w2oSDm35eBgosATE70ah1M40u9W4EpTZs,1090
+souleyez-2.35.0.dist-info/METADATA,sha256=hdL5BqKlvdFWr9zsEZpIB7i5lubTY_C_jrSu2fYdsvA,11345
+souleyez-2.35.0.dist-info/WHEEL,sha256=_zCd3N1l69ArxyTb8rzEoP9TpbYXkqRFSNOD5OuxnTs,91
+souleyez-2.35.0.dist-info/entry_points.txt,sha256=bN5W1dhjDZJl3TKclMjRpfQvGPmyrJLwwDuCj_X39HE,48
+souleyez-2.35.0.dist-info/top_level.txt,sha256=afAMzS9p4lcdBNxhGo6jl3ipQE9HUvvNIPOdjtPjr_Q,9
+souleyez-2.35.0.dist-info/RECORD,,