souleyez 2.43.26__py3-none-any.whl → 2.43.34__py3-none-any.whl

souleyez/core/msf_auto_mapper.py

@@ -33,20 +33,22 @@ class MSFAutoMapper:
 
             for host in hosts:
                 # Get services for this host
-                services = hm.get_host_services(host['id'])
+                services = hm.get_host_services(host["id"])
 
                 for service in services:
-                    service_id = service['id']
-                    service_name = service.get('service_name', '').lower()
-                    version = service.get('service_version', '')
+                    service_id = service["id"]
+                    service_name = service.get("service_name", "").lower()
+                    version = service.get("service_version", "")
 
                     # Get recommendations
-                    recommendations = self.module_selector.get_recommendations_for_service(
-                        service=service_name,
-                        version=version,
-                        engagement_id=self.engagement_id,
-                        include_cve_matches=True,
-                        risk_levels=['safe', 'noisy', 'moderate', 'dangerous']
+                    recommendations = (
+                        self.module_selector.get_recommendations_for_service(
+                            service=service_name,
+                            version=version,
+                            engagement_id=self.engagement_id,
+                            include_cve_matches=True,
+                            risk_levels=["safe", "noisy", "moderate", "dangerous"],
+                        )
                     )
 
                     # Only store services with actual recommendations
@@ -73,16 +75,16 @@ class MSFAutoMapper:
             findings = fm.list_findings(self.engagement_id)
 
             for finding in findings:
-                finding_id = finding['id']
+                finding_id = finding["id"]
 
                 # Extract CVEs from finding
                 cves = self._extract_cves_from_finding(finding)
 
                 # Match to exploits
                 exploits = self.module_selector.match_vulnerability_to_exploit(
-                    vuln_title=finding.get('title', ''),
-                    vuln_desc=finding.get('description', ''),
-                    cves=cves
+                    vuln_title=finding.get("title", ""),
+                    vuln_desc=finding.get("description", ""),
+                    cves=cves,
                 )
 
                 if exploits:
@@ -94,8 +96,8 @@ class MSFAutoMapper:
 
     def _extract_cves_from_finding(self, finding: Dict) -> List[str]:
         """Extract CVE IDs from finding title/description."""
-        text = finding.get('title', '') + ' ' + finding.get('description', '')
-        cve_pattern = r'CVE-\d{4}-\d{4,7}'
+        text = finding.get("title", "") + " " + finding.get("description", "")
+        cve_pattern = r"CVE-\d{4}-\d{4,7}"
 
         return re.findall(cve_pattern, text, re.IGNORECASE)
 
@@ -116,8 +118,9 @@ class MSFAutoMapper:
             # Count services
             total_services = len(service_map)
             exploitable_services = sum(
-                1 for modules in service_map.values()
-                if any(m.get('category') == 'exploit' for m in modules)
+                1
+                for modules in service_map.values()
+                if any(m.get("category") == "exploit" for m in modules)
             )
 
             # Identify critical targets
@@ -125,45 +128,51 @@ class MSFAutoMapper:
 
             for service_id, modules in service_map.items():
                 # Find high-value targets (exploits with high scores)
-                exploits = [m for m in modules if m.get('category') == 'exploit']
-                high_score_exploits = [e for e in exploits if e.get('score', 0) >= 80]
+                exploits = [m for m in modules if m.get("category") == "exploit"]
+                high_score_exploits = [e for e in exploits if e.get("score", 0) >= 80]
 
                 if high_score_exploits:
                     try:
                         service = hm.get_service(service_id)
                         if service:
-                            host = hm.get_host(service.get('host_id'))
-                            critical_targets.append({
-                                'host': host.get('ip_address', 'Unknown'),
-                                'service': service.get('service_name', 'Unknown'),
-                                'port': service.get('port', 0),
-                                'modules': [e.get('path') for e in high_score_exploits],
-                                'success_probability': 'high',
-                                'impact': 'critical',
-                                'top_score': max(e.get('score', 0) for e in high_score_exploits)
-                            })
+                            host = hm.get_host(service.get("host_id"))
+                            critical_targets.append(
+                                {
+                                    "host": host.get("ip_address", "Unknown"),
+                                    "service": service.get("service_name", "Unknown"),
+                                    "port": service.get("port", 0),
+                                    "modules": [
+                                        e.get("path") for e in high_score_exploits
+                                    ],
+                                    "success_probability": "high",
+                                    "impact": "critical",
+                                    "top_score": max(
+                                        e.get("score", 0) for e in high_score_exploits
+                                    ),
+                                }
+                            )
                     except:
                         pass
 
             # Sort critical targets by score
-            critical_targets.sort(key=lambda x: x.get('top_score', 0), reverse=True)
+            critical_targets.sort(key=lambda x: x.get("top_score", 0), reverse=True)
 
             report = {
-                'total_services': total_services,
-                'exploitable_services': exploitable_services,
-                'critical_targets': critical_targets[:10],  # Top 10
-                'total_findings_with_exploits': len(finding_map),
-                'recommended_attack_path': self._generate_attack_path(critical_targets)
+                "total_services": total_services,
+                "exploitable_services": exploitable_services,
+                "critical_targets": critical_targets[:10],  # Top 10
+                "total_findings_with_exploits": len(finding_map),
+                "recommended_attack_path": self._generate_attack_path(critical_targets),
             }
 
             return report
         except Exception as e:
             return {
-                'total_services': 0,
-                'exploitable_services': 0,
-                'critical_targets': [],
-                'total_findings_with_exploits': 0,
-                'recommended_attack_path': []
+                "total_services": 0,
+                "exploitable_services": 0,
+                "critical_targets": [],
+                "total_findings_with_exploits": 0,
+                "recommended_attack_path": [],
             }
 
     def _generate_attack_path(self, critical_targets: List[Dict]) -> List[str]:
@@ -189,9 +198,7 @@ class MSFAutoMapper:
 
         # Add lateral movement if multiple targets
         if len(critical_targets) > 1:
-            path.append(
-                "Step 3: Use credentials for lateral movement to other hosts"
-            )
+            path.append("Step 3: Use credentials for lateral movement to other hosts")
 
         return path
 
@@ -210,28 +217,32 @@ class MSFAutoMapper:
             hosts = hm.list_hosts(self.engagement_id)
 
             for host in hosts:
-                services = hm.get_host_services(host['id'])
+                services = hm.get_host_services(host["id"])
 
                 for service in services:
-                    service_name = service.get('service_name', '').lower()
-                    version = service.get('service_version', '')
-
-                    recommendations = self.module_selector.get_recommendations_for_service(
-                        service=service_name,
-                        version=version,
-                        engagement_id=self.engagement_id,
-                        include_cve_matches=True,
-                        risk_levels=['safe', 'noisy', 'moderate', 'dangerous']
+                    service_name = service.get("service_name", "").lower()
+                    version = service.get("service_version", "")
+
+                    recommendations = (
+                        self.module_selector.get_recommendations_for_service(
+                            service=service_name,
+                            version=version,
+                            engagement_id=self.engagement_id,
+                            include_cve_matches=True,
+                            risk_levels=["safe", "noisy", "moderate", "dangerous"],
+                        )
                     )
 
                     if recommendations:
-                        results.append({
-                            'ip_address': host.get('ip_address', '?'),
-                            'port': service.get('port', '?'),
-                            'service': service_name or 'unknown',
-                            'version': version,
-                            'modules': recommendations[:5]
-                        })
+                        results.append(
+                            {
+                                "ip_address": host.get("ip_address", "?"),
+                                "port": service.get("port", "?"),
+                                "service": service_name or "unknown",
+                                "version": version,
+                                "modules": recommendations[:5],
+                            }
+                        )
 
             return results
         except Exception:
@@ -255,18 +266,20 @@ class MSFAutoMapper:
                 cves = self._extract_cves_from_finding(finding)
 
                 exploits = self.module_selector.match_vulnerability_to_exploit(
-                    vuln_title=finding.get('title', ''),
-                    vuln_desc=finding.get('description', ''),
-                    cves=cves
+                    vuln_title=finding.get("title", ""),
+                    vuln_desc=finding.get("description", ""),
+                    cves=cves,
                 )
 
                 if exploits:
-                    results.append({
-                        'title': finding.get('title', '?'),
-                        'severity': finding.get('severity', 'unknown'),
-                        'cves': cves,
-                        'exploits': exploits[:5]
-                    })
+                    results.append(
+                        {
+                            "title": finding.get("title", "?"),
+                            "severity": finding.get("severity", "unknown"),
+                            "cves": cves,
+                            "exploits": exploits[:5],
+                        }
+                    )
 
             return results
         except Exception:
@@ -291,9 +304,9 @@ class MSFAutoMapper:
             if not service:
                 return {}
 
-            host = hm.get_host(service.get('host_id'))
-            service_name = service.get('service_name', '')
-            version = service.get('service_version', '')
+            host = hm.get_host(service.get("host_id"))
+            service_name = service.get("service_name", "")
+            version = service.get("service_version", "")
 
             # Get recommendations
             recommendations = self.module_selector.get_recommendations_for_service(
@@ -301,21 +314,25 @@ class MSFAutoMapper:
                 version=version,
                 engagement_id=self.engagement_id,
                 include_cve_matches=True,
-                risk_levels=['safe', 'noisy', 'moderate', 'dangerous']
+                risk_levels=["safe", "noisy", "moderate", "dangerous"],
             )
 
             # Separate scanners and exploits
-            scanners = [r for r in recommendations if r.get('category') == 'scanner']
-            exploits = [r for r in recommendations if r.get('category') == 'exploit']
+            scanners = [r for r in recommendations if r.get("category") == "scanner"]
+            exploits = [r for r in recommendations if r.get("category") == "exploit"]
 
             return {
-                'host': host.get('ip_address', 'Unknown'),
-                'service': service_name,
-                'version': version,
-                'port': service.get('port', 0),
-                'recommended_scanners': scanners[:5],
-                'recommended_exploits': exploits[:5],
-                'exploitation_complexity': 'low' if exploits and exploits[0].get('score', 0) >= 80 else 'medium'
+                "host": host.get("ip_address", "Unknown"),
+                "service": service_name,
+                "version": version,
+                "port": service.get("port", 0),
+                "recommended_scanners": scanners[:5],
+                "recommended_exploits": exploits[:5],
+                "exploitation_complexity": (
+                    "low"
+                    if exploits and exploits[0].get("score", 0) >= 80
+                    else "medium"
+                ),
             }
         except Exception as e:
             return {}