souleyez 2.31.0__tar.gz → 2.32.0__tar.gz

{souleyez-2.31.0 → souleyez-2.32.0}/BETA_README.md

@@ -27,7 +27,7 @@ Welcome to the SoulEyez beta! Thank you for helping us test and improve this pen
 
 > ⚠️ **Important**: Only use SoulEyez on systems you have explicit authorization to test.
 
-## Version: 2.31.0
+## Version: 2.32.0
 
 ### What's Included
 
@@ -265,4 +265,4 @@ Happy hacking! 🛡️
 
 ---
 
-**Version**: 2.31.0 | **Release Date**: January 2026 | **Maintainer**: CyberSoul Security
+**Version**: 2.32.0 | **Release Date**: January 2026 | **Maintainer**: CyberSoul Security

{souleyez-2.31.0/souleyez.egg-info → souleyez-2.32.0}/PKG-INFO

@@ -1,6 +1,6 @@
 Metadata-Version: 2.4
 Name: souleyez
-Version: 2.31.0
+Version: 2.32.0
 Summary: AI-Powered Penetration Testing Platform with 40+ integrated tools
 Author-email: CyberSoul Security <contact@cybersoulsecurity.com>
 Maintainer-email: CyberSoul Security <contact@cybersoulsecurity.com>
@@ -78,7 +78,7 @@ Welcome to the SoulEyez beta! Thank you for helping us test and improve this pen
 
 > ⚠️ **Important**: Only use SoulEyez on systems you have explicit authorization to test.
 
-## Version: 2.31.0
+## Version: 2.32.0
 
 ### What's Included
 
@@ -316,4 +316,4 @@ Happy hacking! 🛡️
 
 ---
 
-**Version**: 2.31.0 | **Release Date**: January 2026 | **Maintainer**: CyberSoul Security
+**Version**: 2.32.0 | **Release Date**: January 2026 | **Maintainer**: CyberSoul Security

{souleyez-2.31.0 → souleyez-2.32.0}/pyproject.toml

@@ -4,7 +4,7 @@ build-backend = "setuptools.build_meta"
 
 [project]
 name = "souleyez"
-version = "2.31.0"
+version = "2.32.0"
 description = "AI-Powered Penetration Testing Platform with 40+ integrated tools"
 readme = "BETA_README.md"
 license = {text = "MIT"}

souleyez-2.32.0/souleyez/__init__.py

@@ -0,0 +1 @@
+__version__ = '2.32.0'

{souleyez-2.31.0 → souleyez-2.32.0}/souleyez/docs/README.md

@@ -1,6 +1,6 @@
 # SoulEyez Documentation
 
-**Version:** 2.31.0
+**Version:** 2.32.0
 **Last Updated:** January 9, 2026
 **Organization:** CyberSoul Security
 

{souleyez-2.31.0 → souleyez-2.32.0}/souleyez/integrations/wazuh/config.py

@@ -22,10 +22,14 @@ class WazuhConfig:
     """
 
     @staticmethod
-    def get_config(engagement_id: int) -> Optional[Dict[str, Any]]:
+    def get_config(engagement_id: int, siem_type: str = None) -> Optional[Dict[str, Any]]:
         """
         Get SIEM config for an engagement.
 
+        Args:
+            engagement_id: Engagement ID
+            siem_type: Optional SIEM type to filter by. If None, returns first/active config.
+
         Returns:
             Config dict or None if not configured
         """
@@ -33,19 +37,31 @@ class WazuhConfig:
         conn = db.get_connection()
         cursor = conn.cursor()
 
-        # Check if new columns exist (migration 025)
+        # Check if new columns exist (migration 025+)
         cursor.execute("PRAGMA table_info(wazuh_config)")
         columns = [col[1] for col in cursor.fetchall()]
         has_new_columns = 'siem_type' in columns
 
         # Query with or without new columns
         if has_new_columns:
-            cursor.execute("""
-                SELECT api_url, api_user, api_password, indexer_url, indexer_user,
-                       indexer_password, verify_ssl, enabled, siem_type, config_json
-                FROM wazuh_config
-                WHERE engagement_id = ?
-            """, (engagement_id,))
+            if siem_type:
+                cursor.execute("""
+                    SELECT api_url, api_user, api_password, indexer_url, indexer_user,
+                           indexer_password, verify_ssl, enabled, siem_type, config_json
+                    FROM wazuh_config
+                    WHERE engagement_id = ? AND siem_type = ?
+                """, (engagement_id, siem_type))
+            else:
+                # Get most recently updated config (the "current" selected SIEM)
+                # Not filtering by enabled - user may have selected but not configured yet
+                cursor.execute("""
+                    SELECT api_url, api_user, api_password, indexer_url, indexer_user,
+                           indexer_password, verify_ssl, enabled, siem_type, config_json
+                    FROM wazuh_config
+                    WHERE engagement_id = ?
+                    ORDER BY updated_at DESC
+                    LIMIT 1
+                """, (engagement_id,))
         else:
             cursor.execute("""
                 SELECT api_url, api_user, api_password, indexer_url, indexer_user,
@@ -190,7 +206,7 @@ class WazuhConfig:
                 pass
             config_json_str = json.dumps(encrypted_config)
 
-        # Upsert config
+        # Upsert config - keyed by (engagement_id, siem_type) for multi-SIEM support
         cursor.execute("""
             INSERT INTO wazuh_config (
                 engagement_id, api_url, api_user, api_password, indexer_url,
@@ -198,7 +214,7 @@ class WazuhConfig:
                 siem_type, config_json
             )
             VALUES (?, ?, ?, ?, ?, ?, ?, ?, ?, ?, ?)
-            ON CONFLICT(engagement_id) DO UPDATE SET
+            ON CONFLICT(engagement_id, siem_type) DO UPDATE SET
                 api_url = excluded.api_url,
                 api_user = excluded.api_user,
                 api_password = excluded.api_password,
@@ -207,8 +223,8 @@ class WazuhConfig:
                 indexer_password = excluded.indexer_password,
                 verify_ssl = excluded.verify_ssl,
                 enabled = excluded.enabled,
-                siem_type = excluded.siem_type,
-                config_json = excluded.config_json
+                config_json = excluded.config_json,
+                updated_at = CURRENT_TIMESTAMP
         """, (
             engagement_id, api_url, api_user, encrypted_api_password,
             indexer_url, indexer_user or 'admin', encrypted_indexer_password,
@@ -262,17 +278,124 @@ class WazuhConfig:
             )
 
     @staticmethod
-    def delete_config(engagement_id: int) -> bool:
-        """Delete Wazuh config for an engagement."""
+    def delete_config(engagement_id: int, siem_type: str = None) -> bool:
+        """
+        Delete SIEM config for an engagement.
+
+        Args:
+            engagement_id: Engagement ID
+            siem_type: Optional SIEM type. If None, deletes ALL SIEM configs for engagement.
+        """
         db = get_db()
         conn = db.get_connection()
         cursor = conn.cursor()
-        cursor.execute("DELETE FROM wazuh_config WHERE engagement_id = ?", (engagement_id,))
+        if siem_type:
+            cursor.execute(
+                "DELETE FROM wazuh_config WHERE engagement_id = ? AND siem_type = ?",
+                (engagement_id, siem_type)
+            )
+        else:
+            cursor.execute("DELETE FROM wazuh_config WHERE engagement_id = ?", (engagement_id,))
         conn.commit()
         return cursor.rowcount > 0
 
     @staticmethod
-    def is_configured(engagement_id: int) -> bool:
-        """Check if Wazuh is configured for an engagement."""
-        config = WazuhConfig.get_config(engagement_id)
+    def is_configured(engagement_id: int, siem_type: str = None) -> bool:
+        """Check if SIEM is configured for an engagement."""
+        config = WazuhConfig.get_config(engagement_id, siem_type)
         return config is not None and config.get("enabled", False)
+
+    @staticmethod
+    def list_configured_siems(engagement_id: int) -> List[Dict[str, Any]]:
+        """
+        List all configured SIEMs for an engagement.
+
+        Returns:
+            List of dicts with siem_type, enabled, and api_url for each configured SIEM
+        """
+        db = get_db()
+        conn = db.get_connection()
+        cursor = conn.cursor()
+
+        cursor.execute("PRAGMA table_info(wazuh_config)")
+        columns = [col[1] for col in cursor.fetchall()]
+
+        if 'siem_type' not in columns:
+            # Old schema - only one config possible
+            cursor.execute("""
+                SELECT 'wazuh' as siem_type, enabled, api_url
+                FROM wazuh_config
+                WHERE engagement_id = ?
+            """, (engagement_id,))
+        else:
+            cursor.execute("""
+                SELECT siem_type, enabled, api_url, updated_at
+                FROM wazuh_config
+                WHERE engagement_id = ?
+                ORDER BY siem_type
+            """, (engagement_id,))
+
+        rows = cursor.fetchall()
+        return [
+            {
+                'siem_type': row[0],
+                'enabled': bool(row[1]),
+                'api_url': row[2],
+                'updated_at': row[3] if len(row) > 3 else None
+            }
+            for row in rows
+        ]
+
+    @staticmethod
+    def get_all_configs(engagement_id: int) -> Dict[str, Dict[str, Any]]:
+        """
+        Get all SIEM configs for an engagement, keyed by siem_type.
+
+        Returns:
+            Dict mapping siem_type to config dict
+        """
+        configs = {}
+        for siem in SIEM_TYPES:
+            config = WazuhConfig.get_config(engagement_id, siem)
+            if config:
+                configs[siem] = config
+        return configs
+
+    @staticmethod
+    def get_current_siem_type(engagement_id: int) -> str:
+        """
+        Get the currently selected SIEM type for an engagement.
+
+        Returns the most recently selected SIEM type, even if not fully configured.
+
+        Returns:
+            SIEM type string ('wazuh', 'splunk', etc.) or 'wazuh' as default
+        """
+        config = WazuhConfig.get_config(engagement_id)
+        if config:
+            return config.get('siem_type', 'wazuh')
+        return 'wazuh'
+
+    @staticmethod
+    def set_current_siem(engagement_id: int, siem_type: str) -> bool:
+        """
+        Set a SIEM type as current by updating its timestamp.
+
+        This makes the specified SIEM the "active" one without changing its config.
+
+        Args:
+            engagement_id: Engagement ID
+            siem_type: SIEM type to make current
+
+        Returns:
+            True if successful
+        """
+        db = get_db()
+        conn = db.get_connection()
+        cursor = conn.cursor()
+        cursor.execute(
+            "UPDATE wazuh_config SET updated_at = CURRENT_TIMESTAMP WHERE engagement_id = ? AND siem_type = ?",
+            (engagement_id, siem_type)
+        )
+        conn.commit()
+        return cursor.rowcount > 0

{souleyez-2.31.0 → souleyez-2.32.0}/souleyez/main.py

@@ -173,7 +173,7 @@ def _check_privileged_tools():
 
 
 @click.group()
-@click.version_option(version='2.31.0')
+@click.version_option(version='2.32.0')
 def cli():
     """SoulEyez - AI-Powered Pentesting Platform by CyberSoul Security"""
     from souleyez.log_config import init_logging

souleyez-2.32.0/souleyez/storage/migrations/_027_multi_siem_persistence.py

@@ -0,0 +1,119 @@
+"""
+Migration 027: Multi-SIEM Persistence
+
+Changes wazuh_config table to support multiple SIEM configs per engagement.
+- Removes UNIQUE constraint on engagement_id
+- Adds UNIQUE constraint on (engagement_id, siem_type)
+- Allows each engagement to have separate configs for Wazuh, Splunk, etc.
+"""
+import os
+
+
+def upgrade(conn):
+    """Migrate to multi-SIEM persistence."""
+    cursor = conn.cursor()
+
+    # Check if siem_type column exists (from migration 025)
+    cursor.execute("PRAGMA table_info(wazuh_config)")
+    columns = [col[1] for col in cursor.fetchall()]
+
+    if 'siem_type' not in columns:
+        cursor.execute("ALTER TABLE wazuh_config ADD COLUMN siem_type TEXT DEFAULT 'wazuh'")
+    if 'config_json' not in columns:
+        cursor.execute("ALTER TABLE wazuh_config ADD COLUMN config_json TEXT")
+
+    # Create new table with correct constraint
+    cursor.execute("""
+        CREATE TABLE IF NOT EXISTS siem_config_new (
+            id INTEGER PRIMARY KEY AUTOINCREMENT,
+            engagement_id INTEGER NOT NULL,
+            siem_type TEXT NOT NULL DEFAULT 'wazuh',
+            api_url TEXT,
+            api_user TEXT,
+            api_password TEXT,
+            indexer_url TEXT,
+            indexer_user TEXT DEFAULT 'admin',
+            indexer_password TEXT,
+            verify_ssl BOOLEAN DEFAULT 0,
+            enabled BOOLEAN DEFAULT 1,
+            config_json TEXT,
+            created_at TIMESTAMP DEFAULT CURRENT_TIMESTAMP,
+            updated_at TIMESTAMP DEFAULT CURRENT_TIMESTAMP,
+            FOREIGN KEY (engagement_id) REFERENCES engagements(id) ON DELETE CASCADE,
+            UNIQUE(engagement_id, siem_type)
+        )
+    """)
+
+    # Copy existing data
+    cursor.execute("""
+        INSERT OR IGNORE INTO siem_config_new (
+            id, engagement_id, siem_type, api_url, api_user, api_password,
+            indexer_url, indexer_user, indexer_password, verify_ssl, enabled,
+            config_json, created_at, updated_at
+        )
+        SELECT
+            id, engagement_id, COALESCE(siem_type, 'wazuh'), api_url, api_user, api_password,
+            indexer_url, indexer_user, indexer_password, verify_ssl, enabled,
+            config_json, created_at, updated_at
+        FROM wazuh_config
+    """)
+
+    # Drop old table and rename new one
+    cursor.execute("DROP TABLE wazuh_config")
+    cursor.execute("ALTER TABLE siem_config_new RENAME TO wazuh_config")
+
+    # Recreate index
+    cursor.execute("CREATE INDEX IF NOT EXISTS idx_wazuh_config_engagement ON wazuh_config(engagement_id)")
+    cursor.execute("CREATE INDEX IF NOT EXISTS idx_wazuh_config_siem_type ON wazuh_config(siem_type)")
+
+    conn.commit()
+
+    if not os.environ.get('SOULEYEZ_MIGRATION_SILENT'):
+        print("Migration 027: Multi-SIEM persistence enabled")
+
+
+def downgrade(conn):
+    """Revert to single SIEM per engagement (lossy - keeps only first config per engagement)."""
+    cursor = conn.cursor()
+
+    cursor.execute("""
+        CREATE TABLE IF NOT EXISTS wazuh_config_old (
+            id INTEGER PRIMARY KEY AUTOINCREMENT,
+            engagement_id INTEGER NOT NULL UNIQUE,
+            api_url TEXT NOT NULL,
+            api_user TEXT NOT NULL,
+            api_password TEXT,
+            indexer_url TEXT,
+            indexer_user TEXT DEFAULT 'admin',
+            indexer_password TEXT,
+            verify_ssl BOOLEAN DEFAULT 0,
+            enabled BOOLEAN DEFAULT 1,
+            siem_type TEXT DEFAULT 'wazuh',
+            config_json TEXT,
+            created_at TIMESTAMP DEFAULT CURRENT_TIMESTAMP,
+            updated_at TIMESTAMP DEFAULT CURRENT_TIMESTAMP,
+            FOREIGN KEY (engagement_id) REFERENCES engagements(id) ON DELETE CASCADE
+        )
+    """)
+
+    # Copy only first config per engagement
+    cursor.execute("""
+        INSERT OR IGNORE INTO wazuh_config_old (
+            engagement_id, api_url, api_user, api_password,
+            indexer_url, indexer_user, indexer_password, verify_ssl, enabled,
+            siem_type, config_json, created_at, updated_at
+        )
+        SELECT
+            engagement_id, api_url, api_user, api_password,
+            indexer_url, indexer_user, indexer_password, verify_ssl, enabled,
+            siem_type, config_json, created_at, updated_at
+        FROM wazuh_config
+        GROUP BY engagement_id
+    """)
+
+    cursor.execute("DROP TABLE wazuh_config")
+    cursor.execute("ALTER TABLE wazuh_config_old RENAME TO wazuh_config")
+    cursor.execute("CREATE INDEX IF NOT EXISTS idx_wazuh_config_engagement ON wazuh_config(engagement_id)")
+
+    conn.commit()
+    print("Migration 027: Reverted to single SIEM per engagement")

{souleyez-2.31.0 → souleyez-2.32.0}/souleyez/storage/migrations/__init__.py

@@ -31,6 +31,7 @@ from . import (
     _024_wazuh_vulnerabilities,
     _025_multi_siem_support,
     _026_add_engagement_scope,
+    _027_multi_siem_persistence,
 )
 
 # Migration registry - maps version to module
@@ -60,6 +61,7 @@ MIGRATIONS_REGISTRY = {
     '024': _024_wazuh_vulnerabilities,
     '025': _025_multi_siem_support,
     '026': _026_add_engagement_scope,
+    '027': _027_multi_siem_persistence,
 }
 
 

{souleyez-2.31.0 → souleyez-2.32.0}/souleyez/storage/schema.sql

@@ -504,18 +504,21 @@ CREATE INDEX IF NOT EXISTS idx_msf_sessions_active ON msf_sessions(is_active);
 -- Wazuh SIEM Integration (Detection Validation)
 CREATE TABLE IF NOT EXISTS wazuh_config (
     id INTEGER PRIMARY KEY AUTOINCREMENT,
-    engagement_id INTEGER NOT NULL UNIQUE,
-    api_url TEXT NOT NULL,
-    api_user TEXT NOT NULL,
+    engagement_id INTEGER NOT NULL,
+    siem_type TEXT NOT NULL DEFAULT 'wazuh',
+    api_url TEXT,
+    api_user TEXT,
     api_password TEXT,
     indexer_url TEXT,
     indexer_user TEXT DEFAULT 'admin',
     indexer_password TEXT,
     verify_ssl BOOLEAN DEFAULT 0,
     enabled BOOLEAN DEFAULT 1,
+    config_json TEXT,
     created_at TIMESTAMP DEFAULT CURRENT_TIMESTAMP,
     updated_at TIMESTAMP DEFAULT CURRENT_TIMESTAMP,
-    FOREIGN KEY (engagement_id) REFERENCES engagements(id) ON DELETE CASCADE
+    FOREIGN KEY (engagement_id) REFERENCES engagements(id) ON DELETE CASCADE,
+    UNIQUE(engagement_id, siem_type)
 );
 
 -- Detection validation results per job
@@ -539,6 +542,7 @@ CREATE TABLE IF NOT EXISTS detection_results (
 );
 
 CREATE INDEX IF NOT EXISTS idx_wazuh_config_engagement ON wazuh_config(engagement_id);
+CREATE INDEX IF NOT EXISTS idx_wazuh_config_siem_type ON wazuh_config(siem_type);
 CREATE INDEX IF NOT EXISTS idx_detection_results_job ON detection_results(job_id);
 CREATE INDEX IF NOT EXISTS idx_detection_results_engagement ON detection_results(engagement_id);
 CREATE INDEX IF NOT EXISTS idx_detection_results_status ON detection_results(detection_status);

{souleyez-2.31.0 → souleyez-2.32.0}/souleyez/ui/interactive.py

@@ -8152,6 +8152,40 @@ def manage_engagements_menu():
                     click.echo(click.style(f"  ✓ Created engagement '{ws_name}' (ID: {ws_id})", fg='green'))
                     if selected_template:
                         click.echo(click.style(f"  ✓ Applied preset: {selected_template.name}", fg='green'))
+
+                    # Save scope to engagement_scope table if provided
+                    if ws_scope.strip():
+                        from souleyez.security.scope_validator import ScopeManager
+                        import ipaddress
+                        scope_mgr = ScopeManager()
+                        scope_value = ws_scope.strip()
+
+                        # Determine scope type
+                        scope_type = None
+                        try:
+                            # Check if CIDR
+                            ipaddress.ip_network(scope_value, strict=False)
+                            scope_type = 'cidr'
+                        except ValueError:
+                            try:
+                                # Check if single IP
+                                ipaddress.ip_address(scope_value)
+                                scope_type = 'cidr'
+                                scope_value = f"{scope_value}/32"  # Convert single IP to CIDR
+                            except ValueError:
+                                # Check if URL
+                                if scope_value.startswith(('http://', 'https://')):
+                                    scope_type = 'url'
+                                else:
+                                    # Assume domain
+                                    scope_type = 'domain'
+
+                        try:
+                            scope_mgr.add_scope(ws_id, scope_type, scope_value, description="Added during engagement creation")
+                            click.echo(click.style(f"  ✓ Added scope: {scope_type}={scope_value}", fg='green'))
+                        except Exception as scope_err:
+                            click.echo(click.style(f"  ⚠ Could not save scope: {scope_err}", fg='yellow'))
+
                     click.echo()
 
                     # Show next steps based on preset
@@ -8929,19 +8963,28 @@ def _select_siem_type(engagement_id: int):
                 if new_type == current_type:
                     click.echo(f"\n  {info['name']} is already selected.")
                 else:
-                    # If switching SIEM types, we need to reconfigure
-                    click.echo(f"\n  Switching to {click.style(info['name'], bold=True)}...")
-                    click.echo("  You'll need to configure the connection settings.")
-
-                    # Save minimal config to set the SIEM type
-                    WazuhConfig.save_siem_config(
-                        engagement_id=engagement_id,
-                        siem_type=new_type,
-                        config={'siem_type': new_type},
-                        enabled=False  # Not enabled until configured
-                    )
-                    click.echo(click.style(f"\n  ✓ SIEM type set to {info['name']}", fg='green'))
-                    click.echo("  Use 'Configure Connection' to set up credentials.")
+                    # Check if this SIEM type already has a config
+                    existing_config = WazuhConfig.get_config(engagement_id, new_type)
+
+                    if existing_config and existing_config.get('enabled'):
+                        # Already configured - just make it current by updating timestamp
+                        click.echo(f"\n  Switching to {click.style(info['name'], bold=True)}...")
+                        WazuhConfig.set_current_siem(engagement_id, new_type)
+                        click.echo(click.style(f"\n  ✓ Switched to {info['name']} (existing config restored)", fg='green'))
+                    else:
+                        # Not configured - create placeholder
+                        click.echo(f"\n  Switching to {click.style(info['name'], bold=True)}...")
+                        click.echo("  You'll need to configure the connection settings.")
+
+                        # Save minimal config to set the SIEM type
+                        WazuhConfig.save_siem_config(
+                            engagement_id=engagement_id,
+                            siem_type=new_type,
+                            config={'siem_type': new_type},
+                            enabled=False  # Not enabled until configured
+                        )
+                        click.echo(click.style(f"\n  ✓ SIEM type set to {info['name']}", fg='green'))
+                        click.echo("  Use 'Configure Connection' to set up credentials.")
             else:
                 click.echo(click.style("\n  ✗ Invalid choice", fg='red'))
         except ValueError:

{souleyez-2.31.0 → souleyez-2.32.0/souleyez.egg-info}/PKG-INFO

@@ -1,6 +1,6 @@
 Metadata-Version: 2.4
 Name: souleyez
-Version: 2.31.0
+Version: 2.32.0
 Summary: AI-Powered Penetration Testing Platform with 40+ integrated tools
 Author-email: CyberSoul Security <contact@cybersoulsecurity.com>
 Maintainer-email: CyberSoul Security <contact@cybersoulsecurity.com>
@@ -78,7 +78,7 @@ Welcome to the SoulEyez beta! Thank you for helping us test and improve this pen
 
 > ⚠️ **Important**: Only use SoulEyez on systems you have explicit authorization to test.
 
-## Version: 2.31.0
+## Version: 2.32.0
 
 ### What's Included
 
@@ -316,4 +316,4 @@ Happy hacking! 🛡️
 
 ---
 
-**Version**: 2.31.0 | **Release Date**: January 2026 | **Maintainer**: CyberSoul Security
+**Version**: 2.32.0 | **Release Date**: January 2026 | **Maintainer**: CyberSoul Security

{souleyez-2.31.0 → souleyez-2.32.0}/souleyez.egg-info/SOURCES.txt

@@ -336,6 +336,7 @@ souleyez/storage/migrations/_023_fix_detection_results_fk.py
 souleyez/storage/migrations/_024_wazuh_vulnerabilities.py
 souleyez/storage/migrations/_025_multi_siem_support.py
 souleyez/storage/migrations/_026_add_engagement_scope.py
+souleyez/storage/migrations/_027_multi_siem_persistence.py
 souleyez/storage/migrations/__init__.py
 souleyez/storage/migrations/migration_manager.py
 souleyez/testing/__init__.py

souleyez-2.31.0/souleyez/__init__.py

@@ -1 +0,0 @@
-__version__ = '2.31.0'