Gh0st
/
Nettacker
mirror of https://github.com/OWASP/Nettacker.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
Nettacker/nettacker/lib/graph/d3_tree_v1/engine.py

59 lines
2.3 KiB
Python
Raw Blame History

import json
from nettacker.config import Config
from nettacker.core.messages import messages
def escape_for_html_js(json_str: str) -> str:
"""
This is necessary because some payloads have HTML tags for XSS
as in waf.yaml, which break the HTML and output no graph. These are unicode escape
characters for the same
"""
return json_str.replace("<", "\\u003C").replace(">", "\\u003E").replace("&", "\\u0026")
def start(events):
"""
generate the d3_tree_v1_graph with events
Args:
events: all events
Returns:
a graph in HTML
"""
# define a normalised_json
normalisedjson = {"name": "Started attack", "children": {}}
# get data for normalised_json
for event in events:
if event["target"] not in normalisedjson["children"]:
normalisedjson["children"].update({event["target"]: {}})
normalisedjson["children"][event["target"]].update({event["module_name"]: []})
if event["module_name"] not in normalisedjson["children"][event["target"]]:
normalisedjson["children"][event["target"]].update({event["module_name"]: []})
normalisedjson["children"][event["target"]][event["module_name"]].append(
f"target: {event['target']}, module_name: {event['module_name']}, port: "
f"{event['port']}, event: {event['event']}"
)
# define a d3_structure_json
d3_structure = {"name": "Starting attack", "children": []}
# get data for normalised_json
for target in list(normalisedjson["children"].keys()):
for module_name in list(normalisedjson["children"][target].keys()):
for description in normalisedjson["children"][target][module_name]:
children_array = [{"name": module_name, "children": [{"name": description}]}]
d3_structure["children"].append({"name": target, "children": children_array})
data = (
open(Config.path.web_static_dir / "report/d3_tree_v1.html")
.read()
.replace("__data_will_locate_here__", escape_for_html_js(json.dumps(d3_structure)))
.replace("__title_to_replace__", messages("pentest_graphs"))
.replace("__description_to_replace__", messages("graph_message"))
.replace("__html_title_to_replace__", messages("nettacker_report"))
)
return data
Reference in New Issue View Git Blame Copy Permalink