souleyez 2.43.29__py3-none-any.whl → 2.43.34__py3-none-any.whl
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- souleyez/__init__.py +1 -2
- souleyez/ai/__init__.py +21 -15
- souleyez/ai/action_mapper.py +249 -150
- souleyez/ai/chain_advisor.py +116 -100
- souleyez/ai/claude_provider.py +29 -28
- souleyez/ai/context_builder.py +80 -62
- souleyez/ai/executor.py +158 -117
- souleyez/ai/feedback_handler.py +136 -121
- souleyez/ai/llm_factory.py +27 -20
- souleyez/ai/llm_provider.py +4 -2
- souleyez/ai/ollama_provider.py +6 -9
- souleyez/ai/ollama_service.py +44 -37
- souleyez/ai/path_scorer.py +91 -76
- souleyez/ai/recommender.py +176 -144
- souleyez/ai/report_context.py +74 -73
- souleyez/ai/report_service.py +84 -66
- souleyez/ai/result_parser.py +222 -229
- souleyez/ai/safety.py +67 -44
- souleyez/auth/__init__.py +23 -22
- souleyez/auth/audit.py +36 -26
- souleyez/auth/engagement_access.py +65 -48
- souleyez/auth/permissions.py +14 -3
- souleyez/auth/session_manager.py +54 -37
- souleyez/auth/user_manager.py +109 -64
- souleyez/commands/audit.py +40 -43
- souleyez/commands/auth.py +35 -15
- souleyez/commands/deliverables.py +55 -50
- souleyez/commands/engagement.py +47 -28
- souleyez/commands/license.py +32 -23
- souleyez/commands/screenshots.py +36 -32
- souleyez/commands/user.py +82 -36
- souleyez/config.py +52 -44
- souleyez/core/credential_tester.py +87 -81
- souleyez/core/cve_mappings.py +179 -192
- souleyez/core/cve_matcher.py +162 -148
- souleyez/core/msf_auto_mapper.py +100 -83
- souleyez/core/msf_chain_engine.py +294 -256
- souleyez/core/msf_database.py +153 -70
- souleyez/core/msf_integration.py +679 -673
- souleyez/core/msf_rpc_client.py +40 -42
- souleyez/core/msf_rpc_manager.py +77 -79
- souleyez/core/msf_sync_manager.py +241 -181
- souleyez/core/network_utils.py +22 -15
- souleyez/core/parser_handler.py +34 -25
- souleyez/core/pending_chains.py +114 -63
- souleyez/core/templates.py +158 -107
- souleyez/core/tool_chaining.py +9526 -2879
- souleyez/core/version_utils.py +79 -94
- souleyez/core/vuln_correlation.py +136 -89
- souleyez/core/web_utils.py +33 -32
- souleyez/data/wordlists/ad_users.txt +378 -0
- souleyez/data/wordlists/api_endpoints_large.txt +769 -0
- souleyez/data/wordlists/home_dir_sensitive.txt +39 -0
- souleyez/data/wordlists/lfi_payloads.txt +82 -0
- souleyez/data/wordlists/passwords_brute.txt +1548 -0
- souleyez/data/wordlists/passwords_crack.txt +2479 -0
- souleyez/data/wordlists/passwords_spray.txt +386 -0
- souleyez/data/wordlists/subdomains_large.txt +5057 -0
- souleyez/data/wordlists/usernames_common.txt +694 -0
- souleyez/data/wordlists/web_dirs_large.txt +4769 -0
- souleyez/detection/__init__.py +1 -1
- souleyez/detection/attack_signatures.py +12 -17
- souleyez/detection/mitre_mappings.py +61 -55
- souleyez/detection/validator.py +97 -86
- souleyez/devtools.py +23 -10
- souleyez/docs/README.md +4 -4
- souleyez/docs/api-reference/cli-commands.md +2 -2
- souleyez/docs/developer-guide/adding-new-tools.md +562 -0
- souleyez/docs/user-guide/auto-chaining.md +30 -8
- souleyez/docs/user-guide/getting-started.md +1 -1
- souleyez/docs/user-guide/installation.md +26 -3
- souleyez/docs/user-guide/metasploit-integration.md +2 -2
- souleyez/docs/user-guide/rbac.md +1 -1
- souleyez/docs/user-guide/scope-management.md +1 -1
- souleyez/docs/user-guide/siem-integration.md +1 -1
- souleyez/docs/user-guide/tools-reference.md +1 -8
- souleyez/docs/user-guide/worker-management.md +1 -1
- souleyez/engine/background.py +1239 -535
- souleyez/engine/base.py +4 -1
- souleyez/engine/job_status.py +17 -49
- souleyez/engine/log_sanitizer.py +103 -77
- souleyez/engine/manager.py +38 -7
- souleyez/engine/result_handler.py +2200 -1550
- souleyez/engine/worker_manager.py +50 -41
- souleyez/export/evidence_bundle.py +72 -62
- souleyez/feature_flags/features.py +16 -20
- souleyez/feature_flags.py +5 -9
- souleyez/handlers/__init__.py +11 -0
- souleyez/handlers/base.py +188 -0
- souleyez/handlers/bash_handler.py +277 -0
- souleyez/handlers/bloodhound_handler.py +243 -0
- souleyez/handlers/certipy_handler.py +311 -0
- souleyez/handlers/crackmapexec_handler.py +486 -0
- souleyez/handlers/dnsrecon_handler.py +344 -0
- souleyez/handlers/enum4linux_handler.py +400 -0
- souleyez/handlers/evil_winrm_handler.py +493 -0
- souleyez/handlers/ffuf_handler.py +815 -0
- souleyez/handlers/gobuster_handler.py +1114 -0
- souleyez/handlers/gpp_extract_handler.py +334 -0
- souleyez/handlers/hashcat_handler.py +444 -0
- souleyez/handlers/hydra_handler.py +563 -0
- souleyez/handlers/impacket_getuserspns_handler.py +343 -0
- souleyez/handlers/impacket_psexec_handler.py +222 -0
- souleyez/handlers/impacket_secretsdump_handler.py +426 -0
- souleyez/handlers/john_handler.py +286 -0
- souleyez/handlers/katana_handler.py +425 -0
- souleyez/handlers/kerbrute_handler.py +298 -0
- souleyez/handlers/ldapsearch_handler.py +636 -0
- souleyez/handlers/lfi_extract_handler.py +464 -0
- souleyez/handlers/msf_auxiliary_handler.py +408 -0
- souleyez/handlers/msf_exploit_handler.py +380 -0
- souleyez/handlers/nikto_handler.py +413 -0
- souleyez/handlers/nmap_handler.py +821 -0
- souleyez/handlers/nuclei_handler.py +359 -0
- souleyez/handlers/nxc_handler.py +371 -0
- souleyez/handlers/rdp_sec_check_handler.py +353 -0
- souleyez/handlers/registry.py +292 -0
- souleyez/handlers/responder_handler.py +232 -0
- souleyez/handlers/service_explorer_handler.py +434 -0
- souleyez/handlers/smbclient_handler.py +344 -0
- souleyez/handlers/smbmap_handler.py +510 -0
- souleyez/handlers/smbpasswd_handler.py +296 -0
- souleyez/handlers/sqlmap_handler.py +1116 -0
- souleyez/handlers/theharvester_handler.py +601 -0
- souleyez/handlers/web_login_test_handler.py +327 -0
- souleyez/handlers/whois_handler.py +277 -0
- souleyez/handlers/wpscan_handler.py +554 -0
- souleyez/history.py +32 -16
- souleyez/importers/msf_importer.py +106 -75
- souleyez/importers/smart_importer.py +208 -147
- souleyez/integrations/siem/__init__.py +10 -10
- souleyez/integrations/siem/base.py +17 -18
- souleyez/integrations/siem/elastic.py +108 -122
- souleyez/integrations/siem/factory.py +207 -80
- souleyez/integrations/siem/googlesecops.py +146 -154
- souleyez/integrations/siem/rule_mappings/__init__.py +1 -1
- souleyez/integrations/siem/rule_mappings/wazuh_rules.py +8 -5
- souleyez/integrations/siem/sentinel.py +107 -109
- souleyez/integrations/siem/splunk.py +246 -212
- souleyez/integrations/siem/wazuh.py +65 -71
- souleyez/integrations/wazuh/__init__.py +5 -5
- souleyez/integrations/wazuh/client.py +70 -93
- souleyez/integrations/wazuh/config.py +85 -57
- souleyez/integrations/wazuh/host_mapper.py +28 -36
- souleyez/integrations/wazuh/sync.py +78 -68
- souleyez/intelligence/__init__.py +4 -5
- souleyez/intelligence/correlation_analyzer.py +309 -295
- souleyez/intelligence/exploit_knowledge.py +661 -623
- souleyez/intelligence/exploit_suggestions.py +159 -139
- souleyez/intelligence/gap_analyzer.py +132 -97
- souleyez/intelligence/gap_detector.py +251 -214
- souleyez/intelligence/sensitive_tables.py +266 -129
- souleyez/intelligence/service_parser.py +137 -123
- souleyez/intelligence/surface_analyzer.py +407 -268
- souleyez/intelligence/target_parser.py +159 -162
- souleyez/licensing/__init__.py +6 -6
- souleyez/licensing/validator.py +17 -19
- souleyez/log_config.py +79 -54
- souleyez/main.py +1505 -687
- souleyez/migrations/fix_job_counter.py +16 -14
- souleyez/parsers/bloodhound_parser.py +41 -39
- souleyez/parsers/crackmapexec_parser.py +178 -111
- souleyez/parsers/dalfox_parser.py +72 -77
- souleyez/parsers/dnsrecon_parser.py +103 -91
- souleyez/parsers/enum4linux_parser.py +183 -153
- souleyez/parsers/ffuf_parser.py +29 -25
- souleyez/parsers/gobuster_parser.py +301 -41
- souleyez/parsers/hashcat_parser.py +324 -79
- souleyez/parsers/http_fingerprint_parser.py +350 -103
- souleyez/parsers/hydra_parser.py +131 -111
- souleyez/parsers/impacket_parser.py +231 -178
- souleyez/parsers/john_parser.py +98 -86
- souleyez/parsers/katana_parser.py +316 -0
- souleyez/parsers/msf_parser.py +943 -498
- souleyez/parsers/nikto_parser.py +346 -65
- souleyez/parsers/nmap_parser.py +262 -174
- souleyez/parsers/nuclei_parser.py +40 -44
- souleyez/parsers/responder_parser.py +26 -26
- souleyez/parsers/searchsploit_parser.py +74 -74
- souleyez/parsers/service_explorer_parser.py +279 -0
- souleyez/parsers/smbmap_parser.py +180 -124
- souleyez/parsers/sqlmap_parser.py +434 -308
- souleyez/parsers/theharvester_parser.py +75 -57
- souleyez/parsers/whois_parser.py +135 -94
- souleyez/parsers/wpscan_parser.py +278 -190
- souleyez/plugins/afp.py +44 -36
- souleyez/plugins/afp_brute.py +114 -46
- souleyez/plugins/ard.py +48 -37
- souleyez/plugins/bloodhound.py +95 -61
- souleyez/plugins/certipy.py +303 -0
- souleyez/plugins/crackmapexec.py +186 -85
- souleyez/plugins/dalfox.py +120 -59
- souleyez/plugins/dns_hijack.py +146 -41
- souleyez/plugins/dnsrecon.py +97 -61
- souleyez/plugins/enum4linux.py +91 -66
- souleyez/plugins/evil_winrm.py +291 -0
- souleyez/plugins/ffuf.py +166 -90
- souleyez/plugins/firmware_extract.py +133 -29
- souleyez/plugins/gobuster.py +387 -190
- souleyez/plugins/gpp_extract.py +393 -0
- souleyez/plugins/hashcat.py +100 -73
- souleyez/plugins/http_fingerprint.py +854 -267
- souleyez/plugins/hydra.py +566 -200
- souleyez/plugins/impacket_getnpusers.py +117 -69
- souleyez/plugins/impacket_psexec.py +84 -64
- souleyez/plugins/impacket_secretsdump.py +103 -69
- souleyez/plugins/impacket_smbclient.py +89 -75
- souleyez/plugins/john.py +86 -69
- souleyez/plugins/katana.py +313 -0
- souleyez/plugins/kerbrute.py +237 -0
- souleyez/plugins/lfi_extract.py +541 -0
- souleyez/plugins/macos_ssh.py +117 -48
- souleyez/plugins/mdns.py +35 -30
- souleyez/plugins/msf_auxiliary.py +253 -130
- souleyez/plugins/msf_exploit.py +239 -161
- souleyez/plugins/nikto.py +134 -78
- souleyez/plugins/nmap.py +275 -91
- souleyez/plugins/nuclei.py +180 -89
- souleyez/plugins/nxc.py +285 -0
- souleyez/plugins/plugin_base.py +35 -36
- souleyez/plugins/plugin_template.py +13 -5
- souleyez/plugins/rdp_sec_check.py +130 -0
- souleyez/plugins/responder.py +112 -71
- souleyez/plugins/router_http_brute.py +76 -65
- souleyez/plugins/router_ssh_brute.py +118 -41
- souleyez/plugins/router_telnet_brute.py +124 -42
- souleyez/plugins/routersploit.py +91 -59
- souleyez/plugins/routersploit_exploit.py +77 -55
- souleyez/plugins/searchsploit.py +91 -77
- souleyez/plugins/service_explorer.py +1160 -0
- souleyez/plugins/smbmap.py +122 -72
- souleyez/plugins/smbpasswd.py +215 -0
- souleyez/plugins/sqlmap.py +301 -113
- souleyez/plugins/theharvester.py +127 -75
- souleyez/plugins/tr069.py +79 -57
- souleyez/plugins/upnp.py +65 -47
- souleyez/plugins/upnp_abuse.py +73 -55
- souleyez/plugins/vnc_access.py +129 -42
- souleyez/plugins/vnc_brute.py +109 -38
- souleyez/plugins/web_login_test.py +417 -0
- souleyez/plugins/whois.py +77 -58
- souleyez/plugins/wpscan.py +173 -69
- souleyez/reporting/__init__.py +2 -1
- souleyez/reporting/attack_chain.py +411 -346
- souleyez/reporting/charts.py +436 -501
- souleyez/reporting/compliance_mappings.py +334 -201
- souleyez/reporting/detection_report.py +126 -125
- souleyez/reporting/formatters.py +828 -591
- souleyez/reporting/generator.py +386 -302
- souleyez/reporting/metrics.py +72 -75
- souleyez/scanner.py +35 -29
- souleyez/security/__init__.py +37 -11
- souleyez/security/scope_validator.py +175 -106
- souleyez/security/validation.py +223 -149
- souleyez/security.py +22 -6
- souleyez/storage/credentials.py +247 -186
- souleyez/storage/crypto.py +296 -129
- souleyez/storage/database.py +73 -50
- souleyez/storage/db.py +58 -36
- souleyez/storage/deliverable_evidence.py +177 -128
- souleyez/storage/deliverable_exporter.py +282 -246
- souleyez/storage/deliverable_templates.py +134 -116
- souleyez/storage/deliverables.py +135 -130
- souleyez/storage/engagements.py +109 -56
- souleyez/storage/evidence.py +181 -152
- souleyez/storage/execution_log.py +31 -17
- souleyez/storage/exploit_attempts.py +93 -57
- souleyez/storage/exploits.py +67 -36
- souleyez/storage/findings.py +48 -61
- souleyez/storage/hosts.py +176 -144
- souleyez/storage/migrate_to_engagements.py +43 -19
- souleyez/storage/migrations/_001_add_credential_enhancements.py +22 -12
- souleyez/storage/migrations/_002_add_status_tracking.py +10 -7
- souleyez/storage/migrations/_003_add_execution_log.py +14 -8
- souleyez/storage/migrations/_005_screenshots.py +13 -5
- souleyez/storage/migrations/_006_deliverables.py +13 -5
- souleyez/storage/migrations/_007_deliverable_templates.py +12 -7
- souleyez/storage/migrations/_008_add_nuclei_table.py +10 -4
- souleyez/storage/migrations/_010_evidence_linking.py +17 -10
- souleyez/storage/migrations/_011_timeline_tracking.py +20 -13
- souleyez/storage/migrations/_012_team_collaboration.py +34 -21
- souleyez/storage/migrations/_013_add_host_tags.py +12 -6
- souleyez/storage/migrations/_014_exploit_attempts.py +22 -10
- souleyez/storage/migrations/_015_add_mac_os_fields.py +15 -7
- souleyez/storage/migrations/_016_add_domain_field.py +10 -4
- souleyez/storage/migrations/_017_msf_sessions.py +16 -8
- souleyez/storage/migrations/_018_add_osint_target.py +10 -6
- souleyez/storage/migrations/_019_add_engagement_type.py +10 -6
- souleyez/storage/migrations/_020_add_rbac.py +36 -15
- souleyez/storage/migrations/_021_wazuh_integration.py +20 -8
- souleyez/storage/migrations/_022_wazuh_indexer_columns.py +6 -4
- souleyez/storage/migrations/_023_fix_detection_results_fk.py +16 -6
- souleyez/storage/migrations/_024_wazuh_vulnerabilities.py +26 -10
- souleyez/storage/migrations/_025_multi_siem_support.py +3 -5
- souleyez/storage/migrations/_026_add_engagement_scope.py +31 -12
- souleyez/storage/migrations/_027_multi_siem_persistence.py +32 -15
- souleyez/storage/migrations/__init__.py +26 -26
- souleyez/storage/migrations/migration_manager.py +19 -19
- souleyez/storage/msf_sessions.py +100 -65
- souleyez/storage/osint.py +17 -24
- souleyez/storage/recommendation_engine.py +269 -235
- souleyez/storage/screenshots.py +33 -32
- souleyez/storage/smb_shares.py +136 -92
- souleyez/storage/sqlmap_data.py +183 -128
- souleyez/storage/team_collaboration.py +135 -141
- souleyez/storage/timeline_tracker.py +122 -94
- souleyez/storage/wazuh_vulns.py +64 -66
- souleyez/storage/web_paths.py +33 -37
- souleyez/testing/credential_tester.py +221 -205
- souleyez/ui/__init__.py +1 -1
- souleyez/ui/ai_quotes.py +12 -12
- souleyez/ui/attack_surface.py +2439 -1516
- souleyez/ui/chain_rules_view.py +914 -382
- souleyez/ui/correlation_view.py +312 -230
- souleyez/ui/dashboard.py +2382 -1130
- souleyez/ui/deliverables_view.py +148 -62
- souleyez/ui/design_system.py +13 -13
- souleyez/ui/errors.py +49 -49
- souleyez/ui/evidence_linking_view.py +284 -179
- souleyez/ui/evidence_vault.py +393 -285
- souleyez/ui/exploit_suggestions_view.py +555 -349
- souleyez/ui/export_view.py +100 -66
- souleyez/ui/gap_analysis_view.py +315 -171
- souleyez/ui/help_system.py +105 -97
- souleyez/ui/intelligence_view.py +436 -293
- souleyez/ui/interactive.py +22827 -10678
- souleyez/ui/interactive_selector.py +75 -68
- souleyez/ui/log_formatter.py +47 -39
- souleyez/ui/menu_components.py +22 -13
- souleyez/ui/msf_auxiliary_menu.py +184 -133
- souleyez/ui/pending_chains_view.py +336 -172
- souleyez/ui/progress_indicators.py +5 -3
- souleyez/ui/recommendations_view.py +195 -137
- souleyez/ui/rule_builder.py +343 -225
- souleyez/ui/setup_wizard.py +678 -284
- souleyez/ui/shortcuts.py +217 -165
- souleyez/ui/splunk_gap_analysis_view.py +452 -270
- souleyez/ui/splunk_vulns_view.py +139 -86
- souleyez/ui/team_dashboard.py +498 -335
- souleyez/ui/template_selector.py +196 -105
- souleyez/ui/terminal.py +6 -6
- souleyez/ui/timeline_view.py +198 -127
- souleyez/ui/tool_setup.py +264 -164
- souleyez/ui/tutorial.py +202 -72
- souleyez/ui/tutorial_state.py +40 -40
- souleyez/ui/wazuh_vulns_view.py +235 -141
- souleyez/ui/wordlist_browser.py +260 -107
- souleyez/ui.py +464 -312
- souleyez/utils/tool_checker.py +427 -367
- souleyez/utils.py +33 -29
- souleyez/wordlists.py +134 -167
- {souleyez-2.43.29.dist-info → souleyez-2.43.34.dist-info}/METADATA +1 -1
- souleyez-2.43.34.dist-info/RECORD +443 -0
- {souleyez-2.43.29.dist-info → souleyez-2.43.34.dist-info}/WHEEL +1 -1
- souleyez-2.43.29.dist-info/RECORD +0 -379
- {souleyez-2.43.29.dist-info → souleyez-2.43.34.dist-info}/entry_points.txt +0 -0
- {souleyez-2.43.29.dist-info → souleyez-2.43.34.dist-info}/licenses/LICENSE +0 -0
- {souleyez-2.43.29.dist-info → souleyez-2.43.34.dist-info}/top_level.txt +0 -0
|
@@ -1,26 +1,32 @@
|
|
|
1
1
|
"""
|
|
2
2
|
Migration: Add tags column to hosts table
|
|
3
3
|
|
|
4
|
-
This migration adds support for host tagging, allowing users to
|
|
4
|
+
This migration adds support for host tagging, allowing users to
|
|
5
5
|
categorize and organize hosts with custom labels.
|
|
6
6
|
"""
|
|
7
7
|
|
|
8
|
+
|
|
8
9
|
def upgrade(db):
|
|
9
10
|
"""Add tags column to hosts table."""
|
|
10
11
|
# Check if column already exists
|
|
11
12
|
cursor = db.execute("PRAGMA table_info(hosts)")
|
|
12
13
|
columns = [row[1] for row in cursor.fetchall()]
|
|
13
14
|
|
|
14
|
-
if
|
|
15
|
-
db.execute(
|
|
15
|
+
if "tags" not in columns:
|
|
16
|
+
db.execute(
|
|
17
|
+
"""
|
|
16
18
|
ALTER TABLE hosts
|
|
17
19
|
ADD COLUMN tags TEXT DEFAULT NULL
|
|
18
|
-
"""
|
|
20
|
+
"""
|
|
21
|
+
)
|
|
19
22
|
# If column already exists, migration is idempotent - do nothing
|
|
20
|
-
|
|
23
|
+
|
|
24
|
+
|
|
21
25
|
def downgrade(db):
|
|
22
26
|
"""
|
|
23
27
|
SQLite doesn't support DROP COLUMN before version 3.35.0.
|
|
24
28
|
For now, downgrade is not supported.
|
|
25
29
|
"""
|
|
26
|
-
raise NotImplementedError(
|
|
30
|
+
raise NotImplementedError(
|
|
31
|
+
"Downgrade not supported for SQLite ALTER TABLE ADD COLUMN"
|
|
32
|
+
)
|
|
@@ -6,9 +6,11 @@ their outcomes, and related metadata. This enables filtering by attempt status
|
|
|
6
6
|
and provides a historical record of exploitation activities.
|
|
7
7
|
"""
|
|
8
8
|
|
|
9
|
+
|
|
9
10
|
def upgrade(db):
|
|
10
11
|
"""Create exploit_attempts table."""
|
|
11
|
-
db.execute(
|
|
12
|
+
db.execute(
|
|
13
|
+
"""
|
|
12
14
|
CREATE TABLE IF NOT EXISTS exploit_attempts (
|
|
13
15
|
id INTEGER PRIMARY KEY AUTOINCREMENT,
|
|
14
16
|
engagement_id INTEGER NOT NULL,
|
|
@@ -26,28 +28,38 @@ def upgrade(db):
|
|
|
26
28
|
FOREIGN KEY (service_id) REFERENCES services(id) ON DELETE SET NULL,
|
|
27
29
|
UNIQUE(engagement_id, host_id, service_id, exploit_identifier)
|
|
28
30
|
)
|
|
29
|
-
"""
|
|
31
|
+
"""
|
|
32
|
+
)
|
|
30
33
|
|
|
31
34
|
# Create indexes for efficient querying
|
|
32
|
-
db.execute(
|
|
35
|
+
db.execute(
|
|
36
|
+
"""
|
|
33
37
|
CREATE INDEX IF NOT EXISTS idx_exploit_attempts_engagement
|
|
34
38
|
ON exploit_attempts(engagement_id)
|
|
35
|
-
"""
|
|
39
|
+
"""
|
|
40
|
+
)
|
|
36
41
|
|
|
37
|
-
db.execute(
|
|
42
|
+
db.execute(
|
|
43
|
+
"""
|
|
38
44
|
CREATE INDEX IF NOT EXISTS idx_exploit_attempts_host
|
|
39
45
|
ON exploit_attempts(host_id)
|
|
40
|
-
"""
|
|
46
|
+
"""
|
|
47
|
+
)
|
|
41
48
|
|
|
42
|
-
db.execute(
|
|
49
|
+
db.execute(
|
|
50
|
+
"""
|
|
43
51
|
CREATE INDEX IF NOT EXISTS idx_exploit_attempts_status
|
|
44
52
|
ON exploit_attempts(status)
|
|
45
|
-
"""
|
|
53
|
+
"""
|
|
54
|
+
)
|
|
46
55
|
|
|
47
|
-
db.execute(
|
|
56
|
+
db.execute(
|
|
57
|
+
"""
|
|
48
58
|
CREATE INDEX IF NOT EXISTS idx_exploit_attempts_identifier
|
|
49
59
|
ON exploit_attempts(exploit_identifier)
|
|
50
|
-
"""
|
|
60
|
+
"""
|
|
61
|
+
)
|
|
62
|
+
|
|
51
63
|
|
|
52
64
|
def downgrade(db):
|
|
53
65
|
"""Drop exploit_attempts table and indexes."""
|
|
@@ -5,27 +5,35 @@ This migration adds support for storing MAC addresses and OS detection
|
|
|
5
5
|
confidence scores from Nmap scans.
|
|
6
6
|
"""
|
|
7
7
|
|
|
8
|
+
|
|
8
9
|
def upgrade(db):
|
|
9
10
|
"""Add mac_address and os_accuracy columns to hosts table."""
|
|
10
11
|
# Check if columns already exist
|
|
11
12
|
cursor = db.execute("PRAGMA table_info(hosts)")
|
|
12
13
|
columns = [row[1] for row in cursor.fetchall()]
|
|
13
14
|
|
|
14
|
-
if
|
|
15
|
-
db.execute(
|
|
15
|
+
if "mac_address" not in columns:
|
|
16
|
+
db.execute(
|
|
17
|
+
"""
|
|
16
18
|
ALTER TABLE hosts
|
|
17
19
|
ADD COLUMN mac_address TEXT DEFAULT NULL
|
|
18
|
-
"""
|
|
20
|
+
"""
|
|
21
|
+
)
|
|
19
22
|
|
|
20
|
-
if
|
|
21
|
-
db.execute(
|
|
23
|
+
if "os_accuracy" not in columns:
|
|
24
|
+
db.execute(
|
|
25
|
+
"""
|
|
22
26
|
ALTER TABLE hosts
|
|
23
27
|
ADD COLUMN os_accuracy INTEGER DEFAULT NULL
|
|
24
|
-
"""
|
|
28
|
+
"""
|
|
29
|
+
)
|
|
30
|
+
|
|
25
31
|
|
|
26
32
|
def downgrade(db):
|
|
27
33
|
"""
|
|
28
34
|
SQLite doesn't support DROP COLUMN before version 3.35.0.
|
|
29
35
|
For now, downgrade is not supported.
|
|
30
36
|
"""
|
|
31
|
-
raise NotImplementedError(
|
|
37
|
+
raise NotImplementedError(
|
|
38
|
+
"Downgrade not supported for SQLite ALTER TABLE ADD COLUMN"
|
|
39
|
+
)
|
|
@@ -6,21 +6,27 @@ by tools like CrackMapExec/NetExec, which is needed for Active Directory
|
|
|
6
6
|
attacks like GetNPUsers.
|
|
7
7
|
"""
|
|
8
8
|
|
|
9
|
+
|
|
9
10
|
def upgrade(db):
|
|
10
11
|
"""Add domain column to hosts table."""
|
|
11
12
|
# Check if column already exists
|
|
12
13
|
cursor = db.execute("PRAGMA table_info(hosts)")
|
|
13
14
|
columns = [row[1] for row in cursor.fetchall()]
|
|
14
15
|
|
|
15
|
-
if
|
|
16
|
-
db.execute(
|
|
16
|
+
if "domain" not in columns:
|
|
17
|
+
db.execute(
|
|
18
|
+
"""
|
|
17
19
|
ALTER TABLE hosts
|
|
18
20
|
ADD COLUMN domain TEXT DEFAULT NULL
|
|
19
|
-
"""
|
|
21
|
+
"""
|
|
22
|
+
)
|
|
23
|
+
|
|
20
24
|
|
|
21
25
|
def downgrade(db):
|
|
22
26
|
"""
|
|
23
27
|
SQLite doesn't support DROP COLUMN before version 3.35.0.
|
|
24
28
|
For now, downgrade is not supported.
|
|
25
29
|
"""
|
|
26
|
-
raise NotImplementedError(
|
|
30
|
+
raise NotImplementedError(
|
|
31
|
+
"Downgrade not supported for SQLite ALTER TABLE ADD COLUMN"
|
|
32
|
+
)
|
|
@@ -13,7 +13,8 @@ def upgrade(conn):
|
|
|
13
13
|
cursor = conn.cursor()
|
|
14
14
|
|
|
15
15
|
# Create msf_sessions table
|
|
16
|
-
cursor.execute(
|
|
16
|
+
cursor.execute(
|
|
17
|
+
"""
|
|
17
18
|
CREATE TABLE IF NOT EXISTS msf_sessions (
|
|
18
19
|
id INTEGER PRIMARY KEY AUTOINCREMENT,
|
|
19
20
|
engagement_id INTEGER NOT NULL,
|
|
@@ -39,23 +40,30 @@ def upgrade(conn):
|
|
|
39
40
|
FOREIGN KEY (host_id) REFERENCES hosts(id) ON DELETE CASCADE,
|
|
40
41
|
UNIQUE(engagement_id, msf_session_id)
|
|
41
42
|
)
|
|
42
|
-
"""
|
|
43
|
+
"""
|
|
44
|
+
)
|
|
43
45
|
|
|
44
46
|
# Create index for faster lookups
|
|
45
|
-
cursor.execute(
|
|
47
|
+
cursor.execute(
|
|
48
|
+
"""
|
|
46
49
|
CREATE INDEX IF NOT EXISTS idx_msf_sessions_engagement
|
|
47
50
|
ON msf_sessions(engagement_id)
|
|
48
|
-
"""
|
|
51
|
+
"""
|
|
52
|
+
)
|
|
49
53
|
|
|
50
|
-
cursor.execute(
|
|
54
|
+
cursor.execute(
|
|
55
|
+
"""
|
|
51
56
|
CREATE INDEX IF NOT EXISTS idx_msf_sessions_host
|
|
52
57
|
ON msf_sessions(host_id)
|
|
53
|
-
"""
|
|
58
|
+
"""
|
|
59
|
+
)
|
|
54
60
|
|
|
55
|
-
cursor.execute(
|
|
61
|
+
cursor.execute(
|
|
62
|
+
"""
|
|
56
63
|
CREATE INDEX IF NOT EXISTS idx_msf_sessions_active
|
|
57
64
|
ON msf_sessions(is_active)
|
|
58
|
-
"""
|
|
65
|
+
"""
|
|
66
|
+
)
|
|
59
67
|
|
|
60
68
|
conn.commit()
|
|
61
69
|
|
|
@@ -15,18 +15,22 @@ def upgrade(conn):
|
|
|
15
15
|
# Check if column already exists
|
|
16
16
|
cursor.execute("PRAGMA table_info(osint_data)")
|
|
17
17
|
columns = [row[1] for row in cursor.fetchall()]
|
|
18
|
-
|
|
18
|
+
|
|
19
19
|
# Add target column only if it doesn't exist
|
|
20
|
-
if
|
|
21
|
-
cursor.execute(
|
|
20
|
+
if "target" not in columns:
|
|
21
|
+
cursor.execute(
|
|
22
|
+
"""
|
|
22
23
|
ALTER TABLE osint_data ADD COLUMN target TEXT
|
|
23
|
-
"""
|
|
24
|
+
"""
|
|
25
|
+
)
|
|
24
26
|
|
|
25
27
|
# Create index for faster lookups by target
|
|
26
|
-
cursor.execute(
|
|
28
|
+
cursor.execute(
|
|
29
|
+
"""
|
|
27
30
|
CREATE INDEX IF NOT EXISTS idx_osint_target
|
|
28
31
|
ON osint_data(target)
|
|
29
|
-
"""
|
|
32
|
+
"""
|
|
33
|
+
)
|
|
30
34
|
|
|
31
35
|
conn.commit()
|
|
32
36
|
|
|
@@ -15,18 +15,22 @@ def upgrade(conn):
|
|
|
15
15
|
# Check if column already exists
|
|
16
16
|
cursor.execute("PRAGMA table_info(engagements)")
|
|
17
17
|
columns = [row[1] for row in cursor.fetchall()]
|
|
18
|
-
|
|
18
|
+
|
|
19
19
|
# Add engagement_type column only if it doesn't exist
|
|
20
|
-
if
|
|
21
|
-
cursor.execute(
|
|
20
|
+
if "engagement_type" not in columns:
|
|
21
|
+
cursor.execute(
|
|
22
|
+
"""
|
|
22
23
|
ALTER TABLE engagements ADD COLUMN engagement_type TEXT DEFAULT 'custom'
|
|
23
|
-
"""
|
|
24
|
+
"""
|
|
25
|
+
)
|
|
24
26
|
|
|
25
27
|
# Create index for faster lookups by type
|
|
26
|
-
cursor.execute(
|
|
28
|
+
cursor.execute(
|
|
29
|
+
"""
|
|
27
30
|
CREATE INDEX IF NOT EXISTS idx_engagements_type
|
|
28
31
|
ON engagements(engagement_type)
|
|
29
|
-
"""
|
|
32
|
+
"""
|
|
33
|
+
)
|
|
30
34
|
|
|
31
35
|
conn.commit()
|
|
32
36
|
|
|
@@ -7,6 +7,7 @@ Tables created:
|
|
|
7
7
|
- audit_log: Security audit trail
|
|
8
8
|
- engagement_permissions: Team access to engagements
|
|
9
9
|
"""
|
|
10
|
+
|
|
10
11
|
import secrets
|
|
11
12
|
import hashlib
|
|
12
13
|
import os
|
|
@@ -16,7 +17,8 @@ def upgrade(conn):
|
|
|
16
17
|
"""Add RBAC tables."""
|
|
17
18
|
|
|
18
19
|
# Users table - core user accounts
|
|
19
|
-
conn.execute(
|
|
20
|
+
conn.execute(
|
|
21
|
+
"""
|
|
20
22
|
CREATE TABLE IF NOT EXISTS users (
|
|
21
23
|
id TEXT PRIMARY KEY,
|
|
22
24
|
username TEXT UNIQUE NOT NULL,
|
|
@@ -34,10 +36,12 @@ def upgrade(conn):
|
|
|
34
36
|
failed_login_attempts INTEGER DEFAULT 0,
|
|
35
37
|
locked_until TIMESTAMP
|
|
36
38
|
)
|
|
37
|
-
"""
|
|
39
|
+
"""
|
|
40
|
+
)
|
|
38
41
|
|
|
39
42
|
# Sessions table - active login sessions
|
|
40
|
-
conn.execute(
|
|
43
|
+
conn.execute(
|
|
44
|
+
"""
|
|
41
45
|
CREATE TABLE IF NOT EXISTS sessions (
|
|
42
46
|
id TEXT PRIMARY KEY,
|
|
43
47
|
user_id TEXT NOT NULL,
|
|
@@ -48,10 +52,12 @@ def upgrade(conn):
|
|
|
48
52
|
user_agent TEXT,
|
|
49
53
|
FOREIGN KEY (user_id) REFERENCES users(id) ON DELETE CASCADE
|
|
50
54
|
)
|
|
51
|
-
"""
|
|
55
|
+
"""
|
|
56
|
+
)
|
|
52
57
|
|
|
53
58
|
# Audit log - immutable security trail
|
|
54
|
-
conn.execute(
|
|
59
|
+
conn.execute(
|
|
60
|
+
"""
|
|
55
61
|
CREATE TABLE IF NOT EXISTS audit_log (
|
|
56
62
|
id INTEGER PRIMARY KEY AUTOINCREMENT,
|
|
57
63
|
timestamp TIMESTAMP DEFAULT CURRENT_TIMESTAMP,
|
|
@@ -64,10 +70,12 @@ def upgrade(conn):
|
|
|
64
70
|
ip_address TEXT,
|
|
65
71
|
success BOOLEAN DEFAULT TRUE
|
|
66
72
|
)
|
|
67
|
-
"""
|
|
73
|
+
"""
|
|
74
|
+
)
|
|
68
75
|
|
|
69
76
|
# Engagement permissions - team access control
|
|
70
|
-
conn.execute(
|
|
77
|
+
conn.execute(
|
|
78
|
+
"""
|
|
71
79
|
CREATE TABLE IF NOT EXISTS engagement_permissions (
|
|
72
80
|
id INTEGER PRIMARY KEY AUTOINCREMENT,
|
|
73
81
|
engagement_id INTEGER NOT NULL,
|
|
@@ -79,7 +87,8 @@ def upgrade(conn):
|
|
|
79
87
|
FOREIGN KEY (user_id) REFERENCES users(id) ON DELETE CASCADE,
|
|
80
88
|
UNIQUE(engagement_id, user_id)
|
|
81
89
|
)
|
|
82
|
-
"""
|
|
90
|
+
"""
|
|
91
|
+
)
|
|
83
92
|
|
|
84
93
|
# Add owner_id to engagements table
|
|
85
94
|
try:
|
|
@@ -89,17 +98,29 @@ def upgrade(conn):
|
|
|
89
98
|
|
|
90
99
|
# Indexes for performance
|
|
91
100
|
conn.execute("CREATE INDEX IF NOT EXISTS idx_sessions_user ON sessions(user_id)")
|
|
92
|
-
conn.execute(
|
|
93
|
-
|
|
94
|
-
|
|
95
|
-
conn.execute(
|
|
96
|
-
|
|
97
|
-
|
|
101
|
+
conn.execute(
|
|
102
|
+
"CREATE INDEX IF NOT EXISTS idx_sessions_token ON sessions(token_hash)"
|
|
103
|
+
)
|
|
104
|
+
conn.execute(
|
|
105
|
+
"CREATE INDEX IF NOT EXISTS idx_sessions_expires ON sessions(expires_at)"
|
|
106
|
+
)
|
|
107
|
+
conn.execute(
|
|
108
|
+
"CREATE INDEX IF NOT EXISTS idx_audit_user ON audit_log(user_id, timestamp DESC)"
|
|
109
|
+
)
|
|
110
|
+
conn.execute(
|
|
111
|
+
"CREATE INDEX IF NOT EXISTS idx_audit_action ON audit_log(action, timestamp DESC)"
|
|
112
|
+
)
|
|
113
|
+
conn.execute(
|
|
114
|
+
"CREATE INDEX IF NOT EXISTS idx_audit_timestamp ON audit_log(timestamp DESC)"
|
|
115
|
+
)
|
|
116
|
+
conn.execute(
|
|
117
|
+
"CREATE INDEX IF NOT EXISTS idx_engagement_perms ON engagement_permissions(user_id, engagement_id)"
|
|
118
|
+
)
|
|
98
119
|
|
|
99
120
|
conn.commit()
|
|
100
121
|
|
|
101
122
|
# Check if we should print (not in silent mode)
|
|
102
|
-
if not os.environ.get(
|
|
123
|
+
if not os.environ.get("SOULEYEZ_MIGRATION_SILENT"):
|
|
103
124
|
print("✅ Migration 020: RBAC tables created")
|
|
104
125
|
|
|
105
126
|
|
|
@@ -14,7 +14,8 @@ def upgrade(conn):
|
|
|
14
14
|
cursor = conn.cursor()
|
|
15
15
|
|
|
16
16
|
# Wazuh connection configuration
|
|
17
|
-
cursor.execute(
|
|
17
|
+
cursor.execute(
|
|
18
|
+
"""
|
|
18
19
|
CREATE TABLE IF NOT EXISTS wazuh_config (
|
|
19
20
|
id INTEGER PRIMARY KEY AUTOINCREMENT,
|
|
20
21
|
engagement_id INTEGER NOT NULL UNIQUE,
|
|
@@ -30,11 +31,13 @@ def upgrade(conn):
|
|
|
30
31
|
updated_at TIMESTAMP DEFAULT CURRENT_TIMESTAMP,
|
|
31
32
|
FOREIGN KEY (engagement_id) REFERENCES engagements(id) ON DELETE CASCADE
|
|
32
33
|
)
|
|
33
|
-
"""
|
|
34
|
+
"""
|
|
35
|
+
)
|
|
34
36
|
|
|
35
37
|
# Detection validation results per job
|
|
36
38
|
# Note: job_id references jobs.json (file-based), not a SQLite table
|
|
37
|
-
cursor.execute(
|
|
39
|
+
cursor.execute(
|
|
40
|
+
"""
|
|
38
41
|
CREATE TABLE IF NOT EXISTS detection_results (
|
|
39
42
|
id INTEGER PRIMARY KEY AUTOINCREMENT,
|
|
40
43
|
job_id INTEGER NOT NULL,
|
|
@@ -52,13 +55,22 @@ def upgrade(conn):
|
|
|
52
55
|
checked_at TIMESTAMP DEFAULT CURRENT_TIMESTAMP,
|
|
53
56
|
FOREIGN KEY (engagement_id) REFERENCES engagements(id) ON DELETE CASCADE
|
|
54
57
|
)
|
|
55
|
-
"""
|
|
58
|
+
"""
|
|
59
|
+
)
|
|
56
60
|
|
|
57
61
|
# Indexes
|
|
58
|
-
cursor.execute(
|
|
59
|
-
|
|
60
|
-
|
|
61
|
-
cursor.execute(
|
|
62
|
+
cursor.execute(
|
|
63
|
+
"CREATE INDEX IF NOT EXISTS idx_wazuh_config_engagement ON wazuh_config(engagement_id)"
|
|
64
|
+
)
|
|
65
|
+
cursor.execute(
|
|
66
|
+
"CREATE INDEX IF NOT EXISTS idx_detection_results_job ON detection_results(job_id)"
|
|
67
|
+
)
|
|
68
|
+
cursor.execute(
|
|
69
|
+
"CREATE INDEX IF NOT EXISTS idx_detection_results_engagement ON detection_results(engagement_id)"
|
|
70
|
+
)
|
|
71
|
+
cursor.execute(
|
|
72
|
+
"CREATE INDEX IF NOT EXISTS idx_detection_results_status ON detection_results(detection_status)"
|
|
73
|
+
)
|
|
62
74
|
|
|
63
75
|
conn.commit()
|
|
64
76
|
|
|
@@ -17,13 +17,15 @@ def upgrade(conn):
|
|
|
17
17
|
cursor.execute("PRAGMA table_info(wazuh_config)")
|
|
18
18
|
columns = [col[1] for col in cursor.fetchall()]
|
|
19
19
|
|
|
20
|
-
if
|
|
20
|
+
if "indexer_url" not in columns:
|
|
21
21
|
cursor.execute("ALTER TABLE wazuh_config ADD COLUMN indexer_url TEXT")
|
|
22
22
|
|
|
23
|
-
if
|
|
24
|
-
cursor.execute(
|
|
23
|
+
if "indexer_user" not in columns:
|
|
24
|
+
cursor.execute(
|
|
25
|
+
"ALTER TABLE wazuh_config ADD COLUMN indexer_user TEXT DEFAULT 'admin'"
|
|
26
|
+
)
|
|
25
27
|
|
|
26
|
-
if
|
|
28
|
+
if "indexer_password" not in columns:
|
|
27
29
|
cursor.execute("ALTER TABLE wazuh_config ADD COLUMN indexer_password TEXT")
|
|
28
30
|
|
|
29
31
|
conn.commit()
|
|
@@ -15,7 +15,9 @@ def upgrade(conn):
|
|
|
15
15
|
cursor = conn.cursor()
|
|
16
16
|
|
|
17
17
|
# Check if the bad FK exists by examining the schema
|
|
18
|
-
cursor.execute(
|
|
18
|
+
cursor.execute(
|
|
19
|
+
"SELECT sql FROM sqlite_master WHERE type='table' AND name='detection_results'"
|
|
20
|
+
)
|
|
19
21
|
row = cursor.fetchone()
|
|
20
22
|
|
|
21
23
|
if not row:
|
|
@@ -30,7 +32,8 @@ def upgrade(conn):
|
|
|
30
32
|
return
|
|
31
33
|
|
|
32
34
|
# Recreate table without the bad FK
|
|
33
|
-
cursor.execute(
|
|
35
|
+
cursor.execute(
|
|
36
|
+
"""
|
|
34
37
|
CREATE TABLE detection_results_new (
|
|
35
38
|
id INTEGER PRIMARY KEY AUTOINCREMENT,
|
|
36
39
|
job_id INTEGER NOT NULL,
|
|
@@ -48,7 +51,8 @@ def upgrade(conn):
|
|
|
48
51
|
checked_at TIMESTAMP DEFAULT CURRENT_TIMESTAMP,
|
|
49
52
|
FOREIGN KEY (engagement_id) REFERENCES engagements(id) ON DELETE CASCADE
|
|
50
53
|
)
|
|
51
|
-
"""
|
|
54
|
+
"""
|
|
55
|
+
)
|
|
52
56
|
|
|
53
57
|
# Copy existing data
|
|
54
58
|
cursor.execute("INSERT INTO detection_results_new SELECT * FROM detection_results")
|
|
@@ -58,9 +62,15 @@ def upgrade(conn):
|
|
|
58
62
|
cursor.execute("ALTER TABLE detection_results_new RENAME TO detection_results")
|
|
59
63
|
|
|
60
64
|
# Recreate indexes
|
|
61
|
-
cursor.execute(
|
|
62
|
-
|
|
63
|
-
|
|
65
|
+
cursor.execute(
|
|
66
|
+
"CREATE INDEX IF NOT EXISTS idx_detection_results_job ON detection_results(job_id)"
|
|
67
|
+
)
|
|
68
|
+
cursor.execute(
|
|
69
|
+
"CREATE INDEX IF NOT EXISTS idx_detection_results_engagement ON detection_results(engagement_id)"
|
|
70
|
+
)
|
|
71
|
+
cursor.execute(
|
|
72
|
+
"CREATE INDEX IF NOT EXISTS idx_detection_results_status ON detection_results(detection_status)"
|
|
73
|
+
)
|
|
64
74
|
|
|
65
75
|
conn.commit()
|
|
66
76
|
|
|
@@ -15,7 +15,8 @@ def upgrade(conn):
|
|
|
15
15
|
cursor = conn.cursor()
|
|
16
16
|
|
|
17
17
|
# Wazuh vulnerabilities table
|
|
18
|
-
cursor.execute(
|
|
18
|
+
cursor.execute(
|
|
19
|
+
"""
|
|
19
20
|
CREATE TABLE IF NOT EXISTS wazuh_vulnerabilities (
|
|
20
21
|
id INTEGER PRIMARY KEY AUTOINCREMENT,
|
|
21
22
|
engagement_id INTEGER NOT NULL,
|
|
@@ -58,10 +59,12 @@ def upgrade(conn):
|
|
|
58
59
|
|
|
59
60
|
UNIQUE(engagement_id, agent_id, cve_id, package_name)
|
|
60
61
|
)
|
|
61
|
-
"""
|
|
62
|
+
"""
|
|
63
|
+
)
|
|
62
64
|
|
|
63
65
|
# Sync metadata table
|
|
64
|
-
cursor.execute(
|
|
66
|
+
cursor.execute(
|
|
67
|
+
"""
|
|
65
68
|
CREATE TABLE IF NOT EXISTS wazuh_vuln_sync (
|
|
66
69
|
id INTEGER PRIMARY KEY AUTOINCREMENT,
|
|
67
70
|
engagement_id INTEGER NOT NULL UNIQUE,
|
|
@@ -71,15 +74,28 @@ def upgrade(conn):
|
|
|
71
74
|
last_sync_errors TEXT,
|
|
72
75
|
FOREIGN KEY (engagement_id) REFERENCES engagements(id) ON DELETE CASCADE
|
|
73
76
|
)
|
|
74
|
-
"""
|
|
77
|
+
"""
|
|
78
|
+
)
|
|
75
79
|
|
|
76
80
|
# Indexes for performance
|
|
77
|
-
cursor.execute(
|
|
78
|
-
|
|
79
|
-
|
|
80
|
-
cursor.execute(
|
|
81
|
-
|
|
82
|
-
|
|
81
|
+
cursor.execute(
|
|
82
|
+
"CREATE INDEX IF NOT EXISTS idx_wazuh_vulns_engagement ON wazuh_vulnerabilities(engagement_id)"
|
|
83
|
+
)
|
|
84
|
+
cursor.execute(
|
|
85
|
+
"CREATE INDEX IF NOT EXISTS idx_wazuh_vulns_host ON wazuh_vulnerabilities(host_id)"
|
|
86
|
+
)
|
|
87
|
+
cursor.execute(
|
|
88
|
+
"CREATE INDEX IF NOT EXISTS idx_wazuh_vulns_cve ON wazuh_vulnerabilities(cve_id)"
|
|
89
|
+
)
|
|
90
|
+
cursor.execute(
|
|
91
|
+
"CREATE INDEX IF NOT EXISTS idx_wazuh_vulns_severity ON wazuh_vulnerabilities(severity)"
|
|
92
|
+
)
|
|
93
|
+
cursor.execute(
|
|
94
|
+
"CREATE INDEX IF NOT EXISTS idx_wazuh_vulns_agent_ip ON wazuh_vulnerabilities(agent_ip)"
|
|
95
|
+
)
|
|
96
|
+
cursor.execute(
|
|
97
|
+
"CREATE INDEX IF NOT EXISTS idx_wazuh_vulns_status ON wazuh_vulnerabilities(status)"
|
|
98
|
+
)
|
|
83
99
|
|
|
84
100
|
conn.commit()
|
|
85
101
|
|
|
@@ -18,17 +18,15 @@ def upgrade(conn):
|
|
|
18
18
|
columns = [col[1] for col in cursor.fetchall()]
|
|
19
19
|
|
|
20
20
|
# Add siem_type column (default 'wazuh' for backwards compatibility)
|
|
21
|
-
if
|
|
21
|
+
if "siem_type" not in columns:
|
|
22
22
|
cursor.execute(
|
|
23
23
|
"ALTER TABLE wazuh_config ADD COLUMN siem_type TEXT DEFAULT 'wazuh'"
|
|
24
24
|
)
|
|
25
25
|
|
|
26
26
|
# Add config_json for storing SIEM-specific configuration
|
|
27
27
|
# This allows flexible storage of different fields per SIEM type
|
|
28
|
-
if
|
|
29
|
-
cursor.execute(
|
|
30
|
-
"ALTER TABLE wazuh_config ADD COLUMN config_json TEXT"
|
|
31
|
-
)
|
|
28
|
+
if "config_json" not in columns:
|
|
29
|
+
cursor.execute("ALTER TABLE wazuh_config ADD COLUMN config_json TEXT")
|
|
32
30
|
|
|
33
31
|
conn.commit()
|
|
34
32
|
|